Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/0e6250-5420-4318-9284-2c2771e8e177/1/hhddlu1w-HGfRL7hWSfupOUhXm0.roa
File: hhddlu1w-HGfRL7hWSfupOUhXm0.roa (raw, json)
Hash identifier: sFfK8bMrMYtDGfUePSC/w4fHPi/fyhli6FTgZT/Uuo8=
Subject key identifier: 86:17:5D:96:ED:70:F8:71:9F:44:BE:E1:59:27:EE:A4:E5:21:5E:6D
Certificate issuer: /CN=9436da805aeda0a3a50ffc66251dcbfb42f0f35e
Certificate serial: 01856C0A640F2ED5DE32FE21331F35B9F8AF
Authority key identifier: 94:36:DA:80:5A:ED:A0:A3:A5:0F:FC:66:25:1D:CB:FB:42:F0:F3:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDbagFrtoKOlD_xmJR3L-0Lw814.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/0e6250-5420-4318-9284-2c2771e8e177/1/hhddlu1w-HGfRL7hWSfupOUhXm0.roa
Signing time: Sun 01 Jan 2023 06:34:58 +0000
ROA not before: Sun 01 Jan 2023 06:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48602
IP address blocks: 185.140.244.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:64:0f:2e:d5:de:32:fe:21:33:1f:35:b9:f8:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9436da805aeda0a3a50ffc66251dcbfb42f0f35e
Validity
Not Before: Jan 1 06:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86175d96ed70f8719f44bee15927eea4e5215e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d1:54:0d:41:c5:5d:96:ae:da:ac:28:58:b3:
79:4e:e5:87:6e:07:10:27:e5:84:b4:63:3c:18:ff:
0a:b5:fa:8d:35:99:b7:73:05:42:ed:1f:61:77:5e:
e1:bc:00:4f:b0:59:61:a0:0b:82:38:0d:e7:f2:15:
af:1c:a3:76:f6:5a:36:0a:5d:2b:e9:f9:6a:2f:b6:
52:63:62:fd:c4:e3:c9:29:23:7a:35:9b:db:70:48:
6c:b0:46:f9:68:3b:f9:ca:a2:3f:b8:de:fc:5f:13:
51:8a:0e:5f:27:a5:f3:be:d8:08:c2:02:0a:c6:1a:
17:d7:17:51:a1:63:61:55:ea:f5:61:18:3d:a9:71:
13:25:f7:48:2c:02:0d:c4:7a:1f:9c:eb:c8:c5:0e:
63:f6:d5:4f:83:d3:cb:76:4a:95:05:1f:72:bb:91:
51:a6:8d:29:7f:76:f6:f9:a8:1d:c9:91:0a:67:86:
a7:96:0e:7e:46:50:31:cd:93:b4:70:91:13:2b:43:
2d:e2:10:7a:5f:54:4c:5a:3c:bd:66:c3:83:4e:53:
23:1d:bd:1a:66:22:a9:75:e0:cd:7e:e6:89:86:bd:
0b:49:ef:75:5e:64:e2:84:ef:26:c6:38:49:0a:aa:
00:50:2b:de:5a:e2:43:36:f0:02:ee:c1:db:01:15:
b4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:17:5D:96:ED:70:F8:71:9F:44:BE:E1:59:27:EE:A4:E5:21:5E:6D
X509v3 Authority Key Identifier:
keyid:94:36:DA:80:5A:ED:A0:A3:A5:0F:FC:66:25:1D:CB:FB:42:F0:F3:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDbagFrtoKOlD_xmJR3L-0Lw814.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0e6250-5420-4318-9284-2c2771e8e177/1/hhddlu1w-HGfRL7hWSfupOUhXm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0e6250-5420-4318-9284-2c2771e8e177/1/lDbagFrtoKOlD_xmJR3L-0Lw814.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.244.0/22
Signature Algorithm: sha256WithRSAEncryption
87:0c:cb:6d:8f:d3:cc:ec:69:7f:08:48:ac:52:a9:44:c6:95:
e2:c5:b9:a6:cc:38:37:29:f0:01:9a:e7:1d:59:8d:b2:cd:81:
60:b4:c6:c3:2b:c3:ce:99:d5:1e:b4:2f:a4:50:a9:a3:59:06:
7f:69:74:6e:8f:bd:a6:73:f2:1c:38:4d:9e:1c:35:5b:2e:f0:
51:87:d4:ac:84:92:bc:66:a3:fa:82:66:61:ce:4b:a9:18:0a:
e5:b6:f2:8d:ed:8f:1d:92:04:90:fa:4c:d6:bf:67:57:39:2f:
e7:7c:e8:9e:9f:d6:55:9f:6d:04:bb:52:e7:a8:cb:15:8d:d0:
51:c1:eb:b1:28:90:8a:0b:d0:79:b6:d8:fd:9b:71:18:93:6f:
4f:0c:38:a4:b7:6d:dd:c8:73:1f:f7:37:df:db:bb:5d:42:b8:
3d:30:36:21:b2:f8:7d:ae:8a:fd:d9:17:c7:29:fe:fa:05:6d:
20:87:0b:5f:81:08:d3:cd:e2:3b:50:9e:9b:82:c6:6b:e4:25:
0c:58:1f:ac:60:93:7e:01:82:16:38:75:7d:05:fd:85:14:0e:
69:48:b6:0b:f9:e1:22:21:8d:8f:d9:5e:5b:b2:56:4d:ff:0d:
73:1c:62:8c:b8:b0:30:18:76:74:97:9f:30:6e:f4:04:ea:57:
7d:f9:de:1c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsCmQPLtXeMv4hMx81ufivMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0MzZkYTgwNWFlZGEwYTNhNTBmZmM2NjI1MWRjYmZiNDJm
MGYzNWUwHhcNMjMwMTAxMDYzNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjE3NWQ5NmVkNzBmODcxOWY0NGJlZTE1OTI3ZWVhNGU1MjE1ZTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnNFUDUHFXZau2qwoWLN5TuWHbgcQ
J+WEtGM8GP8KtfqNNZm3cwVC7R9hd17hvABPsFlhoAuCOA3n8hWvHKN29lo2Cl0r
6flqL7ZSY2L9xOPJKSN6NZvbcEhssEb5aDv5yqI/uN78XxNRig5fJ6XzvtgIwgIK
xhoX1xdRoWNhVer1YRg9qXETJfdILAINxHofnOvIxQ5j9tVPg9PLdkqVBR9yu5FR
po0pf3b2+agdyZEKZ4anlg5+RlAxzZO0cJETK0Mt4hB6X1RMWjy9ZsODTlMjHb0a
ZiKpdeDNfuaJhr0LSe91XmTihO8mxjhJCqoAUCveWuJDNvAC7sHbARW0RwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIYXXZbtcPhxn0S+4Vkn7qTlIV5tMB8GA1UdIwQY
MBaAFJQ22oBa7aCjpQ/8ZiUdy/tC8PNeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbERiYWdGcnRvS09sRF94bUpSM0wtMEx3ODE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8wZTYyNTAtNTQyMC00MzE4LTkyODQt
MmMyNzcxZThlMTc3LzEvaGhkZGx1MXctSEdmUkw3aFdTZnVwT1VoWG0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS8wZTYyNTAtNTQyMC00MzE4LTkyODQtMmMyNzcxZThlMTc3
LzEvbERiYWdGcnRvS09sRF94bUpSM0wtMEx3ODE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYz0MA0G
CSqGSIb3DQEBCwUAA4IBAQCHDMttj9PM7Gl/CEisUqlExpXixbmmzDg3KfABmucd
WY2yzYFgtMbDK8POmdUetC+kUKmjWQZ/aXRuj72mc/IcOE2eHDVbLvBRh9SshJK8
ZqP6gmZhzkupGArltvKN7Y8dkgSQ+kzWv2dXOS/nfOien9ZVn20Eu1LnqMsVjdBR
weuxKJCKC9B5ttj9m3EYk29PDDikt23dyHMf9zff27tdQrg9MDYhsvh9ror92RfH
Kf76BW0ghwtfgQjTzeI7UJ6bgsZr5CUMWB+sYJN+AYIWOHV9Bf2FFA5pSLYL+eEi
IY2P2V5bslZN/w1zHGKMuLAwGHZ0l58wbvQE6ld9+d4c
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:04 2024 by rpki-client on console-fra.rpki-client.org