Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/hkHD-9T0quJpIx5AaJLNmeJxr7c.roa
File: hkHD-9T0quJpIx5AaJLNmeJxr7c.roa (raw, json)
Hash identifier: 0ZYFkdm/S1cw/2HJDtqxtWMzZVAkIgQ1mv6R6EY3Zm0=
Subject key identifier: 86:41:C3:FB:D4:F4:AA:E2:69:23:1E:40:68:92:CD:99:E2:71:AF:B7
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01881EF5DF2E4CDDE9C9F5946ACD587AE08E
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/hkHD-9T0quJpIx5AaJLNmeJxr7c.roa
Signing time: Mon 15 May 2023 10:30:09 +0000
ROA not before: Mon 15 May 2023 10:30:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399587
IP address blocks: 46.3.164.0/22 maxlen: 24
46.3.160.0/22 maxlen: 24
46.3.96.0/20 maxlen: 24
46.3.120.0/21 maxlen: 22
80.243.130.0/23 maxlen: 24
80.243.128.0/21 maxlen: 24
80.243.128.0/23 maxlen: 24
46.3.40.0/21 maxlen: 24
46.232.64.0/22 maxlen: 24
46.3.48.0/21 maxlen: 24
46.3.56.0/21 maxlen: 24
46.3.80.0/21 maxlen: 22
46.3.86.0/23 maxlen: 24
46.3.208.0/21 maxlen: 21
46.3.216.0/22 maxlen: 24
46.3.216.0/21 maxlen: 22
46.232.20.0/22 maxlen: 24
46.3.224.0/21 maxlen: 22
46.3.222.0/24 maxlen: 24
46.3.20.0/22 maxlen: 24
46.3.32.0/19 maxlen: 24
46.3.32.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:f5:df:2e:4c:dd:e9:c9:f5:94:6a:cd:58:7a:e0:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 15 10:30:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8641c3fbd4f4aae269231e406892cd99e271afb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6a:30:b3:5c:86:44:af:29:3a:67:19:b0:fb:
95:47:b0:cd:7a:ad:8b:e6:cc:55:f9:8d:e6:78:de:
0c:8e:b3:13:b0:0f:7c:c3:3e:21:c4:51:02:ce:6c:
a4:78:08:69:c6:37:65:af:9f:36:7b:18:d3:fb:d4:
5b:83:d9:5c:8e:2e:d2:61:8d:7e:9b:17:9e:6c:24:
7a:57:21:88:ab:e3:9b:34:b9:87:14:cb:0b:10:73:
0a:5c:9d:6c:56:00:4d:e8:70:54:26:5b:49:d2:dd:
22:66:72:f4:30:1c:5a:20:9d:f7:63:b6:58:a6:d0:
d8:64:9a:d9:57:6c:95:ea:38:13:8d:14:c2:05:55:
69:bf:e7:de:80:d4:a7:7f:e9:0e:c9:5b:a1:c2:ef:
98:85:7d:6e:e6:55:58:ed:e6:ad:fb:40:da:7a:88:
30:1f:28:aa:dd:96:80:f1:83:6b:44:b3:48:3b:9d:
4c:78:38:31:61:20:bf:9f:82:29:74:a9:2b:36:98:
ff:40:6b:e6:24:09:8b:65:0e:8b:17:d6:aa:1c:7c:
5f:11:72:9a:9f:c2:4b:e5:41:01:4d:81:c1:ae:83:
a2:34:63:8b:29:52:ab:54:bd:ea:2e:a3:dd:d7:be:
83:41:30:d1:7b:57:18:2b:5f:b6:ef:cf:ac:3d:f5:
1c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:41:C3:FB:D4:F4:AA:E2:69:23:1E:40:68:92:CD:99:E2:71:AF:B7
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/hkHD-9T0quJpIx5AaJLNmeJxr7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.20.0/22
46.3.32.0/19
46.3.80.0/21
46.3.96.0/20
46.3.120.0/21
46.3.160.0/21
46.3.208.0-46.3.231.255
46.232.20.0/22
46.232.64.0/22
80.243.128.0/21
Signature Algorithm: sha256WithRSAEncryption
47:a5:31:2f:78:83:76:84:65:a2:a1:bc:82:1e:40:ea:1c:49:
ec:9b:09:9b:ad:df:c6:43:87:a5:10:1b:3a:ba:10:6a:f8:56:
90:fb:37:ee:ef:19:bf:89:80:87:c7:9f:83:88:5b:17:26:ff:
66:b9:b6:39:d2:45:8d:23:97:2f:13:1f:cb:06:7e:13:c2:7a:
5e:ca:95:87:36:1d:9d:60:47:d7:c3:d7:4c:a5:b7:76:72:5b:
b7:95:7f:88:aa:8d:de:a1:b5:1d:48:02:60:9d:9f:03:a4:03:
9e:3a:28:2c:37:b3:09:78:04:98:4f:dc:6d:97:ba:68:e3:03:
4f:df:b7:a4:ea:5e:10:ff:0e:fe:ed:ba:36:8b:d1:08:0b:c0:
6e:8a:91:eb:18:81:f6:c4:93:82:73:00:8c:1e:7c:cf:33:68:
24:6c:31:86:97:51:0d:9a:7c:37:e5:e6:78:c1:18:14:28:32:
b7:bf:09:ee:81:b9:17:89:61:1e:fb:8c:55:d0:31:d9:a4:26:
8f:4a:53:5e:5e:24:9d:68:ee:31:98:3e:5f:2b:5b:f6:99:f5:
df:13:2c:74:1c:41:6d:8a:59:b5:42:f5:63:d8:e3:7c:a6:65:
e4:31:9c:7c:b7:f7:f1:48:b9:10:9b:7b:c5:bf:fd:71:6d:e6:
a5:de:61:61
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org