Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8fc395-b674-4137-bc75-9bbd1eebe33e/1/Ds2GYPbEAEW99HxaLfJz49vcgpk.roa
File: Ds2GYPbEAEW99HxaLfJz49vcgpk.roa (raw, json)
Hash identifier: OB96wc0B2EGVVqWb+I2LEL+OcbXZYD9HCsm1phhpbM4=
Subject key identifier: 0E:CD:86:60:F6:C4:00:45:BD:F4:7C:5A:2D:F2:73:E3:DB:DC:82:99
Certificate issuer: /CN=311f85188d082fd5640b5c3fe1221f60c501edb5
Certificate serial: 0186B7CC3C75379557497ADEAB85BC0F0CDE
Authority key identifier: 31:1F:85:18:8D:08:2F:D5:64:0B:5C:3F:E1:22:1F:60:C5:01:ED:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MR-FGI0IL9VkC1w_4SIfYMUB7bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8fc395-b674-4137-bc75-9bbd1eebe33e/1/Ds2GYPbEAEW99HxaLfJz49vcgpk.roa
Signing time: Mon 06 Mar 2023 16:41:00 +0000
ROA not before: Mon 06 Mar 2023 16:41:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197033
IP address blocks: 5.183.18.0/24 maxlen: 24
5.183.19.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b7:cc:3c:75:37:95:57:49:7a:de:ab:85:bc:0f:0c:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=311f85188d082fd5640b5c3fe1221f60c501edb5
Validity
Not Before: Mar 6 16:41:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ecd8660f6c40045bdf47c5a2df273e3dbdc8299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0f:38:f7:be:25:f1:99:98:5d:f5:ce:d8:a0:
ca:92:ed:4e:0e:78:ab:8b:07:96:7f:42:0a:a8:7c:
ac:81:31:06:3d:20:5b:6c:fc:07:ef:6c:3f:7e:04:
f7:17:59:0c:59:49:5b:1e:b6:25:88:b9:70:e3:1c:
ca:ba:16:6a:c0:75:73:17:6e:a5:79:a8:94:e5:16:
dd:30:64:24:7c:29:84:8f:af:f2:5b:79:13:0a:7d:
09:20:f9:54:d4:bd:d8:c1:f7:f2:67:ee:d1:11:02:
95:77:3a:34:ae:7a:99:85:99:02:ab:0e:bf:80:a1:
25:84:80:63:a8:90:0a:cf:e9:b2:9d:31:65:35:35:
7c:58:f4:21:ac:c0:b3:90:b6:d0:ce:a7:1f:9a:a9:
b4:8f:d0:fb:30:73:fa:a3:2d:2a:38:7d:36:54:ea:
b4:0d:62:87:cb:d8:c2:b5:4c:cd:a4:01:fc:ab:4b:
c3:95:f8:f3:48:2e:13:4c:79:28:b1:7e:83:9d:a8:
22:22:1f:a5:bb:ad:91:e3:9b:63:65:be:53:cd:79:
34:26:7d:a8:ab:6a:bb:a2:e5:16:5f:0e:fe:5f:94:
99:63:67:f3:1e:e4:9c:a2:44:c3:77:98:07:ae:c7:
6b:44:c4:a8:e0:1c:d6:9f:00:c7:3e:0f:70:bc:25:
d3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:CD:86:60:F6:C4:00:45:BD:F4:7C:5A:2D:F2:73:E3:DB:DC:82:99
X509v3 Authority Key Identifier:
keyid:31:1F:85:18:8D:08:2F:D5:64:0B:5C:3F:E1:22:1F:60:C5:01:ED:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MR-FGI0IL9VkC1w_4SIfYMUB7bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8fc395-b674-4137-bc75-9bbd1eebe33e/1/Ds2GYPbEAEW99HxaLfJz49vcgpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8fc395-b674-4137-bc75-9bbd1eebe33e/1/MR-FGI0IL9VkC1w_4SIfYMUB7bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.18.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:60:5e:d1:cb:f4:e8:a7:71:d0:0f:01:23:80:c3:8a:8a:77:
cd:ce:11:1b:78:0b:16:54:72:88:89:b2:2b:c2:13:cf:50:0b:
2c:a2:fd:68:ba:35:3f:18:c6:bd:18:41:74:e6:a3:c0:60:4e:
2d:4c:90:6a:38:75:11:bc:ff:02:10:85:e4:9f:22:72:aa:44:
70:8a:4d:cb:b3:66:5a:bc:34:c1:a0:3b:14:f3:5a:91:df:7b:
2d:db:d4:08:2e:a9:2f:dc:a3:f7:e0:f8:b8:d3:c1:8a:cc:b2:
ab:5b:ff:66:f8:9c:b2:b6:81:0a:6a:1e:52:98:d3:c7:1d:8a:
e5:7d:02:cc:04:37:1e:15:54:67:0a:b5:f5:19:52:bb:d4:ec:
c1:f1:26:3f:d2:90:63:bd:e3:cc:69:14:f5:13:ba:80:09:03:
99:2e:7c:b2:46:9b:34:19:df:d4:e3:b5:a8:12:cc:e6:95:1b:
a7:ca:0a:40:bf:b3:b0:7f:93:53:0e:20:bc:6e:26:47:b5:e2:
84:eb:24:27:e6:ec:9e:04:ee:3a:0f:8f:47:43:dd:ba:f2:e4:
08:6f:61:56:1b:ac:e9:ba:c4:24:a8:7a:7f:f5:fe:ef:d0:19:
1b:57:f2:53:54:5b:b1:c4:f8:97:7b:a1:af:f2:79:e8:29:17:
71:f5:fc:a7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYa3zDx1N5VXSXreq4W8DwzeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxMWY4NTE4OGQwODJmZDU2NDBiNWMzZmUxMjIxZjYwYzUw
MWVkYjUwHhcNMjMwMzA2MTY0MTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZWNkODY2MGY2YzQwMDQ1YmRmNDdjNWEyZGYyNzNlM2RiZGM4Mjk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQ84974l8ZmYXfXO2KDKku1ODnir
iweWf0IKqHysgTEGPSBbbPwH72w/fgT3F1kMWUlbHrYliLlw4xzKuhZqwHVzF26l
eaiU5RbdMGQkfCmEj6/yW3kTCn0JIPlU1L3YwffyZ+7REQKVdzo0rnqZhZkCqw6/
gKElhIBjqJAKz+mynTFlNTV8WPQhrMCzkLbQzqcfmqm0j9D7MHP6oy0qOH02VOq0
DWKHy9jCtUzNpAH8q0vDlfjzSC4TTHkosX6DnagiIh+lu62R45tjZb5TzXk0Jn2o
q2q7ouUWXw7+X5SZY2fzHuScokTDd5gHrsdrRMSo4BzWnwDHPg9wvCXTfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA7NhmD2xABFvfR8Wi3yc+Pb3IKZMB8GA1UdIwQY
MBaAFDEfhRiNCC/VZAtcP+EiH2DFAe21MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVItRkdJMElMOVZrQzF3XzRTSWZZTVVCN2JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi84ZmMzOTUtYjY3NC00MTM3LWJjNzUt
OWJiZDFlZWJlMzNlLzEvRHMyR1lQYkVBRVc5OUh4YUxmSno0OXZjZ3BrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi84ZmMzOTUtYjY3NC00MTM3LWJjNzUtOWJiZDFlZWJlMzNl
LzEvTVItRkdJMElMOVZrQzF3XzRTSWZZTVVCN2JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBbcSMA0G
CSqGSIb3DQEBCwUAA4IBAQBbYF7Ry/Top3HQDwEjgMOKinfNzhEbeAsWVHKIibIr
whPPUAssov1oujU/GMa9GEF05qPAYE4tTJBqOHURvP8CEIXknyJyqkRwik3Ls2Za
vDTBoDsU81qR33st29QILqkv3KP34Pi408GKzLKrW/9m+JyytoEKah5SmNPHHYrl
fQLMBDceFVRnCrX1GVK71OzB8SY/0pBjvePMaRT1E7qACQOZLnyyRps0Gd/U47Wo
EszmlRunygpAv7Owf5NTDiC8biZHteKE6yQn5uyeBO46D49HQ9268uQIb2FWG6zp
usQkqHp/9f7v0BkbV/JTVFuxxPiXe6Gv8nnoKRdx9fyn
-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:58 2024 by rpki-client on console-ams.rpki-client.org