Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5a2919-6d5f-475b-ab0a-dc6315e7ed8b/1/bWIMM9rTvYBk_yHLKRFjkfzNODQ.roa
File: bWIMM9rTvYBk_yHLKRFjkfzNODQ.roa (raw, json)
Hash identifier: NwIsfgwTGenQuIWSgkFSkJIlJnqFBQj0bpSMcwNxess=
Subject key identifier: 6D:62:0C:33:DA:D3:BD:80:64:FF:21:CB:29:11:63:91:FC:CD:38:34
Certificate issuer: /CN=372535eac158c026727a25e1ebe46d8a5c9cfbbf
Certificate serial: 018570B0A0288282C9A09749042A9655807F
Authority key identifier: 37:25:35:EA:C1:58:C0:26:72:7A:25:E1:EB:E4:6D:8A:5C:9C:FB:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NyU16sFYwCZyeiXh6-Rtilyc-78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5a2919-6d5f-475b-ab0a-dc6315e7ed8b/1/bWIMM9rTvYBk_yHLKRFjkfzNODQ.roa
Signing time: Mon 02 Jan 2023 04:15:01 +0000
ROA not before: Mon 02 Jan 2023 04:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202862
IP address blocks: 185.151.180.0/23 maxlen: 23
185.151.180.0/22 maxlen: 22
185.151.182.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:a0:28:82:82:c9:a0:97:49:04:2a:96:55:80:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=372535eac158c026727a25e1ebe46d8a5c9cfbbf
Validity
Not Before: Jan 2 04:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d620c33dad3bd8064ff21cb29116391fccd3834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:77:4c:ad:9b:5c:8f:03:23:cb:f5:1a:da:ac:
09:20:84:09:3b:4d:f3:12:4b:82:c7:ca:de:93:89:
2b:ee:ba:a3:93:76:50:ab:a1:ed:25:76:e8:9c:aa:
0c:b1:16:d9:52:7c:82:e3:a8:19:90:f2:e6:47:f8:
19:c3:15:ce:1f:11:e1:62:7e:19:57:8a:23:07:a1:
c1:01:9d:4d:59:d5:1a:c1:3f:57:9e:fd:c5:ef:8b:
02:2f:76:01:cb:9a:3c:8a:9f:be:a0:87:c8:e8:5b:
3c:99:30:ca:82:02:89:27:f4:71:42:a0:6b:1d:bc:
08:66:3f:c1:f5:05:42:3c:5f:35:4b:c0:46:db:ee:
34:3e:cb:0f:c5:5e:cc:10:b7:b7:2b:66:fc:de:ab:
94:b6:b4:7b:4b:cd:b8:7e:5d:dc:37:34:9b:c8:20:
f3:57:b6:30:b9:b8:03:7a:43:62:3f:86:a5:9b:f0:
07:9a:6e:5a:92:c6:e6:8b:be:bd:c2:4e:5f:18:fa:
d9:1a:ba:e9:b1:a7:63:a8:e9:08:f9:2e:d1:9c:87:
be:da:48:56:9c:62:07:13:c2:b2:14:2f:96:86:51:
34:9a:84:13:69:fa:19:25:c3:5f:34:18:b7:29:91:
dc:39:58:e4:48:a2:44:3f:bf:f6:db:3a:af:69:c9:
c5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:62:0C:33:DA:D3:BD:80:64:FF:21:CB:29:11:63:91:FC:CD:38:34
X509v3 Authority Key Identifier:
keyid:37:25:35:EA:C1:58:C0:26:72:7A:25:E1:EB:E4:6D:8A:5C:9C:FB:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NyU16sFYwCZyeiXh6-Rtilyc-78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5a2919-6d5f-475b-ab0a-dc6315e7ed8b/1/bWIMM9rTvYBk_yHLKRFjkfzNODQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5a2919-6d5f-475b-ab0a-dc6315e7ed8b/1/NyU16sFYwCZyeiXh6-Rtilyc-78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.180.0/22
Signature Algorithm: sha256WithRSAEncryption
04:23:fa:0e:23:26:68:be:a3:60:bb:b4:77:28:07:52:45:de:
c9:35:72:d2:17:88:66:37:0f:ea:d4:f7:58:46:72:e2:c5:c8:
f6:98:49:2b:a8:40:d9:0e:3b:68:b1:20:68:39:7f:66:d7:1e:
a4:1b:36:42:8f:27:cf:ca:f8:b6:89:cc:52:6d:94:5c:08:93:
dd:e2:c4:4d:a8:92:b5:fc:73:ab:32:ad:39:f4:5b:3d:4a:62:
ac:00:e9:78:44:79:eb:62:60:8f:54:6c:89:8b:63:79:0c:9b:
18:50:bc:8b:4d:b0:88:52:ee:32:08:64:d2:73:78:49:f1:fb:
17:53:ed:58:ab:6e:57:77:37:e4:2b:b5:80:8e:6b:e0:7c:93:
fc:04:2b:1c:38:e5:0f:04:00:d2:c5:c2:da:af:06:47:cd:67:
e9:3c:dd:f3:2e:7f:95:af:42:f1:9a:f1:56:13:6b:93:74:92:
d0:47:7b:55:3e:58:86:39:2a:39:2a:4d:f0:29:9f:6b:e6:6d:
6c:cb:4d:3f:27:e2:53:e1:d3:f6:f3:5f:d9:3f:85:95:f3:08:
14:d0:82:0e:89:86:63:e2:94:b4:a3:3d:2d:1e:a2:71:bb:4c:
9c:1f:c9:ab:ef:0e:2c:e5:83:69:fc:61:8e:e1:44:c7:05:90:
79:98:fd:0c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwsKAogoLJoJdJBCqWVYB/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3MjUzNWVhYzE1OGMwMjY3MjdhMjVlMWViZTQ2ZDhhNWM5
Y2ZiYmYwHhcNMjMwMTAyMDQxNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZDYyMGMzM2RhZDNiZDgwNjRmZjIxY2IyOTExNjM5MWZjY2QzODM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3dMrZtcjwMjy/Ua2qwJIIQJO03z
EkuCx8rek4kr7rqjk3ZQq6HtJXbonKoMsRbZUnyC46gZkPLmR/gZwxXOHxHhYn4Z
V4ojB6HBAZ1NWdUawT9Xnv3F74sCL3YBy5o8ip++oIfI6Fs8mTDKggKJJ/RxQqBr
HbwIZj/B9QVCPF81S8BG2+40PssPxV7MELe3K2b83quUtrR7S824fl3cNzSbyCDz
V7YwubgDekNiP4alm/AHmm5aksbmi769wk5fGPrZGrrpsadjqOkI+S7RnIe+2khW
nGIHE8KyFC+WhlE0moQTafoZJcNfNBi3KZHcOVjkSKJEP7/22zqvacnFFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG1iDDPa072AZP8hyykRY5H8zTg0MB8GA1UdIwQY
MBaAFDclNerBWMAmcnol4evkbYpcnPu/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnlVMTZzRll3Q1p5ZWlYaDYtUnRpbHljLTc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni81YTI5MTktNmQ1Zi00NzViLWFiMGEt
ZGM2MzE1ZTdlZDhiLzEvYldJTU05clR2WUJrX3lITEtSRmprZnpOT0RRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni81YTI5MTktNmQ1Zi00NzViLWFiMGEtZGM2MzE1ZTdlZDhi
LzEvTnlVMTZzRll3Q1p5ZWlYaDYtUnRpbHljLTc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZe0MA0G
CSqGSIb3DQEBCwUAA4IBAQAEI/oOIyZovqNgu7R3KAdSRd7JNXLSF4hmNw/q1PdY
RnLixcj2mEkrqEDZDjtosSBoOX9m1x6kGzZCjyfPyvi2icxSbZRcCJPd4sRNqJK1
/HOrMq059Fs9SmKsAOl4RHnrYmCPVGyJi2N5DJsYULyLTbCIUu4yCGTSc3hJ8fsX
U+1Yq25XdzfkK7WAjmvgfJP8BCscOOUPBADSxcLarwZHzWfpPN3zLn+Vr0LxmvFW
E2uTdJLQR3tVPliGOSo5Kk3wKZ9r5m1sy00/J+JT4dP281/ZP4WV8wgU0IIOiYZj
4pS0oz0tHqJxu0ycH8mr7w4s5YNp/GGO4UTHBZB5mP0M
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:39 2024 by rpki-client on console-fra.rpki-client.org