Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/2wYzicQsA2lRCNhpArlW9i_mpuo.roa
File: 2wYzicQsA2lRCNhpArlW9i_mpuo.roa (raw, json)
Hash identifier: JO+jUurNzn/LAiI3l6UOnLmfX6xDCeCfdmAz0f+aGCU=
Subject key identifier: DB:06:33:89:C4:2C:03:69:51:08:D8:69:02:B9:56:F6:2F:E6:A6:EA
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0189C48ACF78340130AA1ADC002FE6BEECA8
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/2wYzicQsA2lRCNhpArlW9i_mpuo.roa
Signing time: Sat 05 Aug 2023 07:12:58 +0000
ROA not before: Sat 05 Aug 2023 07:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 264825
IP address blocks: 185.181.32.0/22 maxlen: 22
185.181.32.0/23 maxlen: 23
185.181.34.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c4:8a:cf:78:34:01:30:aa:1a:dc:00:2f:e6:be:ec:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Aug 5 07:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db063389c42c03695108d86902b956f62fe6a6ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:82:26:a6:d9:93:45:cf:55:11:53:a1:80:a4:
d1:83:d8:d2:85:fc:80:a4:fa:a8:d5:4e:71:07:21:
3e:0b:6f:72:53:85:8f:bb:5d:80:d0:72:32:62:67:
2d:f5:b3:36:aa:a1:09:7a:38:9b:2d:f6:73:3b:26:
f5:70:6d:ff:40:02:62:80:15:eb:50:d0:e4:b3:a4:
ea:55:a1:88:41:4e:6e:94:bc:b6:5c:ee:82:12:5f:
09:58:43:d7:ab:e2:37:a3:34:78:25:a2:4a:20:82:
db:34:52:a3:07:99:3d:59:07:ae:01:21:e2:e2:e9:
fe:ca:3c:94:75:6c:1a:de:5f:1b:ac:38:f9:5f:29:
05:5e:7b:25:7b:74:c0:43:65:4c:d0:b5:e6:bb:45:
dd:ad:87:9e:0b:5d:70:59:2f:56:57:d2:16:ae:c1:
7d:81:28:7c:78:48:7e:2e:1f:89:9d:93:27:e0:32:
b3:88:65:73:cf:87:1f:96:48:1a:15:9c:11:27:98:
0d:76:4e:c6:db:42:f1:f5:e6:1c:68:c1:1a:4f:1e:
32:61:d3:a0:db:63:d0:18:78:ce:78:13:3e:d0:8c:
76:10:d4:9e:4a:9d:22:17:3a:d9:d2:51:48:a1:54:
03:21:7c:6c:0b:48:3c:db:27:0a:62:30:90:7e:ed:
f8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:06:33:89:C4:2C:03:69:51:08:D8:69:02:B9:56:F6:2F:E6:A6:EA
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/2wYzicQsA2lRCNhpArlW9i_mpuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.32.0/22
Signature Algorithm: sha256WithRSAEncryption
c5:29:9b:76:ea:0b:69:54:dd:f7:1a:c5:65:55:95:fc:9a:cd:
7d:8a:ae:c1:4a:e3:48:64:e6:01:fc:70:bf:22:56:9e:55:cb:
af:02:61:8e:d1:7b:7b:4d:5d:fc:07:de:62:f7:c5:09:f5:a5:
c2:f4:74:70:bc:1b:48:6e:79:6e:30:73:1b:4e:d4:62:fd:18:
2d:67:22:39:b2:bd:2f:ce:a4:8c:f1:2a:cd:1d:7a:e4:d8:79:
12:f9:f7:4a:dc:85:f8:d8:0e:9f:9a:97:79:e7:28:a1:dc:54:
00:b9:c4:f5:3b:04:ab:f6:c3:83:b4:a8:25:9e:99:ee:73:4c:
2a:03:af:a9:8e:1b:6b:d7:ba:c8:19:3a:6f:4d:06:55:c0:3e:
15:e1:f2:c1:0a:bc:3b:dd:0f:52:27:41:89:5b:42:c2:c6:e4:
f5:8e:3e:ee:a3:41:85:e3:f9:a0:b3:70:98:14:c9:6f:a9:aa:
45:96:3d:d6:c4:7b:72:29:02:31:4d:4d:80:f0:a6:2d:ea:a2:
a7:b8:0c:36:e3:63:7b:fe:2d:fb:22:b1:ed:60:24:e9:ac:04:
15:27:cb:4d:25:55:26:08:ef:7a:6f:7d:d8:d0:c4:14:0a:f1:
58:7b:ea:b7:1b:18:a5:a4:0b:5f:9c:83:92:1b:6a:18:a0:51:
2d:bd:94:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnEis94NAEwqhrcAC/mvuyoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjMwODA1MDcxMjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjA2MzM4OWM0MmMwMzY5NTEwOGQ4NjkwMmI5NTZmNjJmZTZhNmVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4ImptmTRc9VEVOhgKTRg9jShfyA
pPqo1U5xByE+C29yU4WPu12A0HIyYmct9bM2qqEJejibLfZzOyb1cG3/QAJigBXr
UNDks6TqVaGIQU5ulLy2XO6CEl8JWEPXq+I3ozR4JaJKIILbNFKjB5k9WQeuASHi
4un+yjyUdWwa3l8brDj5XykFXnsle3TAQ2VM0LXmu0XdrYeeC11wWS9WV9IWrsF9
gSh8eEh+Lh+JnZMn4DKziGVzz4cflkgaFZwRJ5gNdk7G20Lx9eYcaMEaTx4yYdOg
22PQGHjOeBM+0Ix2ENSeSp0iFzrZ0lFIoVQDIXxsC0g82ycKYjCQfu34KQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNsGM4nELANpUQjYaQK5VvYv5qbqMB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvMndZemljUXNBMmxSQ05ocEFybFc5aV9tcHVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubUgMA0G
CSqGSIb3DQEBCwUAA4IBAQDFKZt26gtpVN33GsVlVZX8ms19iq7BSuNIZOYB/HC/
IlaeVcuvAmGO0Xt7TV38B95i98UJ9aXC9HRwvBtIbnluMHMbTtRi/RgtZyI5sr0v
zqSM8SrNHXrk2HkS+fdK3IX42A6fmpd55yih3FQAucT1OwSr9sODtKglnpnuc0wq
A6+pjhtr17rIGTpvTQZVwD4V4fLBCrw73Q9SJ0GJW0LCxuT1jj7uo0GF4/mgs3CY
FMlvqapFlj3WxHtyKQIxTU2A8KYt6qKnuAw242N7/i37IrHtYCTprAQVJ8tNJVUm
CO96b33Y0MQUCvFYe+q3GxilpAtfnIOSG2oYoFEtvZTU
-----END CERTIFICATE-----
Generated at Tue Aug 29 19:02:51 2023 by rpki-client on console-ams.rpki-client.org