Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/HWtkgXXA9qHnpxV3TrS_o6vdb6I.roa
File: HWtkgXXA9qHnpxV3TrS_o6vdb6I.roa (raw, json)
Hash identifier: LJyGpVjK26L/i9z+7FoQcrwKa0PjYc2OHqoE3kKTfuk=
Subject key identifier: 1D:6B:64:81:75:C0:F6:A1:E7:A7:15:77:4E:B4:BF:A3:AB:DD:6F:A2
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 01898951319F0F64A6EEB65815525E4FC4D9
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/HWtkgXXA9qHnpxV3TrS_o6vdb6I.roa
Signing time: Mon 24 Jul 2023 19:12:26 +0000
ROA not before: Mon 24 Jul 2023 19:12:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 37.153.132.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:89:51:31:9f:0f:64:a6:ee:b6:58:15:52:5e:4f:c4:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jul 24 19:12:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d6b648175c0f6a1e7a715774eb4bfa3abdd6fa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:84:89:8e:f9:8f:14:72:d8:8c:29:01:a8:4a:
24:d0:0e:f0:5a:ad:fa:41:23:b7:4d:ce:0a:33:6f:
04:9b:9e:27:e0:8c:6e:2c:d2:69:2d:bd:9b:98:19:
be:10:59:12:92:13:38:40:f2:77:ac:2a:43:b8:5d:
c8:3e:77:29:c4:45:5a:71:38:5b:e2:ac:fd:65:eb:
8d:7b:68:c0:59:ab:c0:7b:bb:f8:d5:fc:c3:93:cd:
56:b0:e6:e4:cb:b9:b6:39:ee:73:34:be:9c:26:ac:
b1:6e:9f:8d:e0:10:52:a4:7b:e4:3a:df:9d:25:f0:
8b:21:1f:8b:0d:87:e4:c2:b6:a9:ff:c3:98:a1:39:
73:fa:02:ca:9f:84:ee:4b:85:24:55:ea:3b:75:42:
ce:96:79:a6:dd:76:73:c3:7f:81:1c:92:db:75:47:
56:c0:6e:21:e6:07:13:06:97:3a:48:10:b7:f8:18:
62:0c:f1:0b:91:f6:34:77:a1:d7:d9:e0:09:0d:22:
f5:00:e4:e3:34:6f:22:75:89:bf:70:db:3c:53:e4:
8a:ed:80:32:d9:1e:68:88:a5:42:d3:13:79:c6:91:
0f:19:d9:59:80:d3:80:a0:69:3e:ca:5d:ee:84:03:
f7:e1:3c:1f:b7:29:7d:21:9f:f5:5f:66:22:78:8a:
81:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:6B:64:81:75:C0:F6:A1:E7:A7:15:77:4E:B4:BF:A3:AB:DD:6F:A2
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/HWtkgXXA9qHnpxV3TrS_o6vdb6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.132.0/24
Signature Algorithm: sha256WithRSAEncryption
51:6a:3f:46:91:b0:6c:45:c8:45:08:09:42:4e:54:32:43:5c:
ae:c7:03:86:ef:ec:e6:13:38:12:4b:34:45:c2:4a:04:74:ec:
4a:26:6c:23:b7:b5:f1:c6:11:2c:db:76:73:bd:c0:16:79:3b:
b0:63:7c:0c:dd:37:12:e6:09:af:73:ae:97:2a:90:d2:5c:aa:
ba:81:21:03:69:8c:b3:21:12:94:93:4b:40:bb:af:90:8c:84:
1e:2b:8c:05:b9:b0:d6:a6:b4:f7:ff:6c:71:0b:23:f3:d5:22:
4a:10:d8:a7:9f:e3:c9:7f:e7:03:ec:c7:99:e9:40:c7:f0:45:
0b:f2:15:a7:11:50:e9:41:85:04:cd:c8:f4:03:c6:ec:01:9d:
92:34:1d:df:50:0b:64:f8:35:75:e1:7b:27:fb:0a:8c:47:91:
93:69:0a:33:33:1d:3b:6f:40:8b:b9:c3:8f:2b:9f:c8:aa:a7:
eb:07:d7:4a:38:f1:f8:67:85:1a:6a:41:12:ee:4c:96:88:71:
63:59:0a:99:7c:9f:c1:af:24:cc:a8:b5:c7:07:63:fd:88:d8:
a5:3c:90:fd:c0:bb:da:26:ac:93:6f:9b:41:88:1a:76:48:26:
f1:6d:ee:09:f5:42:b2:fe:b8:d8:08:4c:db:65:44:72:19:d1:
79:09:21:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmJUTGfD2Sm7rZYFVJeT8TZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDBlOTgxOTUzMDYxOTcyYzg5NmJkNmQyNzczOGQwODNh
YWRiMGUwHhcNMjMwNzI0MTkxMjI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDZiNjQ4MTc1YzBmNmExZTdhNzE1Nzc0ZWI0YmZhM2FiZGQ2ZmEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhISJjvmPFHLYjCkBqEok0A7wWq36
QSO3Tc4KM28Em54n4IxuLNJpLb2bmBm+EFkSkhM4QPJ3rCpDuF3IPncpxEVacThb
4qz9ZeuNe2jAWavAe7v41fzDk81WsObky7m2Oe5zNL6cJqyxbp+N4BBSpHvkOt+d
JfCLIR+LDYfkwrap/8OYoTlz+gLKn4TuS4UkVeo7dULOlnmm3XZzw3+BHJLbdUdW
wG4h5gcTBpc6SBC3+BhiDPELkfY0d6HX2eAJDSL1AOTjNG8idYm/cNs8U+SK7YAy
2R5oiKVC0xN5xpEPGdlZgNOAoGk+yl3uhAP34Twftyl9IZ/1X2YieIqBhwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB1rZIF1wPah56cVd060v6Or3W+iMB8GA1UdIwQY
MBaAFNoA6YGVMGGXLIlr1tJ3ONCDqtsOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAt
OWE0OGVjZjllMTVlLzEvSFd0a2dYWEE5cUhucHhWM1RyU19vNnZkYjZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAtOWE0OGVjZjllMTVl
LzEvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJZmEMA0G
CSqGSIb3DQEBCwUAA4IBAQBRaj9GkbBsRchFCAlCTlQyQ1yuxwOG7+zmEzgSSzRF
wkoEdOxKJmwjt7XxxhEs23ZzvcAWeTuwY3wM3TcS5gmvc66XKpDSXKq6gSEDaYyz
IRKUk0tAu6+QjIQeK4wFubDWprT3/2xxCyPz1SJKENinn+PJf+cD7MeZ6UDH8EUL
8hWnEVDpQYUEzcj0A8bsAZ2SNB3fUAtk+DV14Xsn+wqMR5GTaQozMx07b0CLucOP
K5/IqqfrB9dKOPH4Z4UaakES7kyWiHFjWQqZfJ/BryTMqLXHB2P9iNilPJD9wLva
JqyTb5tBiBp2SCbxbe4J9UKy/rjYCEzbZURyGdF5CSGr
-----END CERTIFICATE-----
Generated at Tue Aug 8 04:12:29 2023 by rpki-client on console-ams.rpki-client.org