Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/H1yGXx6LMrWDIwT00QUAapNuPdw.roa
File: H1yGXx6LMrWDIwT00QUAapNuPdw.roa (raw, json)
Hash identifier: tIQ25J3bZ2aIADv/XUYFhD9xXP7qD4yjvAh8IR2Sp3Y=
Subject key identifier: 1F:5C:86:5F:1E:8B:32:B5:83:23:04:F4:D1:05:00:6A:93:6E:3D:DC
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 01896553B739F9F650F5A2295014312AC76D
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/H1yGXx6LMrWDIwT00QUAapNuPdw.roa
Signing time: Mon 17 Jul 2023 19:28:52 +0000
ROA not before: Mon 17 Jul 2023 19:28:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395092
IP address blocks: 45.158.44.0/24 maxlen: 24
2.57.151.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:53:b7:39:f9:f6:50:f5:a2:29:50:14:31:2a:c7:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jul 17 19:28:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f5c865f1e8b32b5832304f4d105006a936e3ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d2:0b:e4:05:4c:5c:7f:21:e9:9a:44:c0:53:
1e:24:83:f2:d1:d2:4e:bd:6b:b3:50:bc:97:3d:34:
60:41:33:b7:de:55:4f:6a:09:35:b0:f6:42:59:8a:
0b:a4:7e:c5:10:18:79:d0:91:73:11:0e:b6:12:3f:
95:2b:41:b2:1a:58:9d:ce:8e:06:88:93:39:ff:35:
d9:3f:6f:b6:67:23:7d:65:dc:0d:9a:24:f2:5b:91:
0a:17:76:43:37:82:16:9b:7c:79:58:f0:0c:01:2b:
eb:63:1c:39:7d:81:6d:04:2b:4e:8e:6b:2d:03:50:
7e:d0:91:76:8a:c4:96:52:c5:89:c2:91:b5:41:e0:
f7:4e:42:5f:a8:27:72:db:70:25:9a:d3:65:40:a1:
18:a4:38:cb:57:69:3a:4c:20:83:4e:9b:32:ef:74:
b0:8e:76:21:19:83:f0:c2:62:db:db:77:f8:a0:5c:
4c:24:fa:e6:9e:7c:1e:78:61:03:ba:ab:1d:e0:9b:
a8:68:7a:14:0c:c8:dd:7a:32:05:1e:5e:d8:d2:00:
3b:aa:9d:29:b3:89:44:e0:e5:2f:fc:fa:d7:63:06:
20:6b:78:6f:25:19:8b:3d:66:5d:8c:af:2d:ee:13:
69:85:80:60:a0:2d:1d:8f:c9:2e:48:3c:fb:3e:44:
83:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5C:86:5F:1E:8B:32:B5:83:23:04:F4:D1:05:00:6A:93:6E:3D:DC
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/H1yGXx6LMrWDIwT00QUAapNuPdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.151.0/24
45.158.44.0/24
Signature Algorithm: sha256WithRSAEncryption
16:05:3a:67:0b:52:05:b4:e5:6b:97:4a:8c:60:d8:bc:32:4e:
c2:e2:fc:41:d0:0c:26:95:62:1c:21:fa:4c:a6:11:0c:81:20:
c7:54:04:15:9c:a2:50:a4:37:da:13:f2:ad:a9:63:48:9e:4e:
a3:4d:6d:b8:88:68:a3:35:1e:93:36:67:52:2f:54:92:a1:88:
21:7c:57:21:b9:1a:62:74:08:da:a8:5b:82:9e:84:1a:ec:67:
48:45:44:b3:21:73:66:27:39:41:63:fe:55:f7:7a:97:d9:a3:
97:0e:28:06:08:2f:92:b5:f5:fd:f4:01:79:ff:ac:c0:9f:d2:
5c:1a:66:dc:fc:7a:1a:94:9e:ae:e0:a9:e3:ee:41:9b:fd:77:
b8:83:e7:8c:9a:4c:a3:f7:cf:3c:78:60:b8:57:bf:c6:e8:ef:
4b:d7:0a:e0:d2:19:2f:ba:52:75:64:5e:a9:35:32:53:c5:2c:
f8:ff:cd:42:d6:54:6d:35:3a:fb:cd:0b:99:6c:ef:bb:e9:81:
59:c1:10:57:a6:72:8c:54:53:3c:44:0f:85:6b:37:4f:ab:7f:
fc:6f:82:5d:af:b4:a6:c6:91:e2:40:ba:4c:d5:6d:01:c9:75:
47:aa:a7:06:d4:98:fc:a5:a8:d7:01:ee:1a:7b:6d:0e:4b:de:
e8:4d:ea:b9
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYllU7c5+fZQ9aIpUBQxKsdtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjMwNzE3MTkyODUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjVjODY1ZjFlOGIzMmI1ODMyMzA0ZjRkMTA1MDA2YTkzNmUzZGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9IL5AVMXH8h6ZpEwFMeJIPy0dJO
vWuzULyXPTRgQTO33lVPagk1sPZCWYoLpH7FEBh50JFzEQ62Ej+VK0GyGlidzo4G
iJM5/zXZP2+2ZyN9ZdwNmiTyW5EKF3ZDN4IWm3x5WPAMASvrYxw5fYFtBCtOjmst
A1B+0JF2isSWUsWJwpG1QeD3TkJfqCdy23AlmtNlQKEYpDjLV2k6TCCDTpsy73Sw
jnYhGYPwwmLb23f4oFxMJPrmnnweeGEDuqsd4JuoaHoUDMjdejIFHl7Y0gA7qp0p
s4lE4OUv/PrXYwYga3hvJRmLPWZdjK8t7hNphYBgoC0dj8kuSDz7PkSDiQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFB9chl8eizK1gyME9NEFAGqTbj3cMB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEvSDF5R1h4NkxNcldESXdUMDBRVUFhcE51UGR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAAjmXAwQA
LZ4sMA0GCSqGSIb3DQEBCwUAA4IBAQAWBTpnC1IFtOVrl0qMYNi8Mk7C4vxB0Awm
lWIcIfpMphEMgSDHVAQVnKJQpDfaE/KtqWNInk6jTW24iGijNR6TNmdSL1SSoYgh
fFchuRpidAjaqFuCnoQa7GdIRUSzIXNmJzlBY/5V93qX2aOXDigGCC+StfX99AF5
/6zAn9JcGmbc/HoalJ6u4Knj7kGb/Xe4g+eMmkyj9888eGC4V7/G6O9L1wrg0hkv
ulJ1ZF6pNTJTxSz4/81C1lRtNTr7zQuZbO+76YFZwRBXpnKMVFM8RA+FazdPq3/8
b4Jdr7SmxpHiQLpM1W0ByXVHqqcG1Jj8pajXAe4ae20OS97oTeq5
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:48 2024 by rpki-client on console-ams.rpki-client.org