Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/_UsezBTV3wSH6AsrVxuh-YUxJ1w.roa
File: _UsezBTV3wSH6AsrVxuh-YUxJ1w.roa (raw, json)
Hash identifier: MtPA2lV73tSVsTRf+8TweNI38gTsrWB0Y/+QOKvcxZg=
Subject key identifier: FD:4B:1E:CC:14:D5:DF:04:87:E8:0B:2B:57:1B:A1:F9:85:31:27:5C
Certificate issuer: /CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Certificate serial: 01857303903190BFF13C48DCA19F4F89FBD1
Authority key identifier: 35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/_UsezBTV3wSH6AsrVxuh-YUxJ1w.roa
Signing time: Mon 02 Jan 2023 15:04:51 +0000
ROA not before: Mon 02 Jan 2023 15:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60111
IP address blocks: 185.183.40.0/22 maxlen: 22
2a0b:380::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:03:90:31:90:bf:f1:3c:48:dc:a1:9f:4f:89:fb:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Validity
Not Before: Jan 2 15:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd4b1ecc14d5df0487e80b2b571ba1f98531275c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2e:63:9b:2a:f2:ca:9b:f8:87:5e:95:30:11:
fa:9f:d8:d7:3c:a7:a4:a7:af:27:74:04:73:9d:1d:
e6:89:72:f6:04:98:1b:07:1d:77:23:9c:34:bf:28:
3b:be:93:b6:fe:35:d2:48:da:d1:7b:c3:58:3c:fe:
ef:d1:2c:3f:6f:8a:24:ab:06:f8:dc:97:10:4b:00:
6b:43:e2:18:c9:52:5b:44:21:cc:4b:e1:34:71:27:
20:3a:33:9a:ae:0e:b9:57:fe:80:53:13:95:fc:3c:
42:70:0e:07:08:76:3d:d4:1f:68:69:87:31:1a:9e:
f0:86:00:87:06:5c:6a:df:53:4c:65:1a:8d:e4:a4:
1b:ff:98:8e:55:85:d5:c8:8a:71:2b:2a:75:2a:40:
e3:57:06:c3:70:b5:cf:0e:3c:61:d9:4a:b9:84:ca:
f1:dc:2d:72:a8:4c:02:bb:3b:ae:44:b6:97:bd:5d:
7e:d7:49:be:97:c9:70:93:00:22:74:28:40:fa:f3:
f7:f4:c8:c8:f0:c5:ab:73:ac:8f:00:9d:36:04:2e:
09:08:9a:41:68:78:92:1e:0e:dc:61:d0:fc:fb:a4:
25:3f:75:ea:cb:88:ae:c9:99:1b:ce:8b:e4:3e:b4:
7f:86:97:24:d4:a5:d7:e6:a7:fe:f8:22:49:c3:a3:
8d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:4B:1E:CC:14:D5:DF:04:87:E8:0B:2B:57:1B:A1:F9:85:31:27:5C
X509v3 Authority Key Identifier:
keyid:35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/_UsezBTV3wSH6AsrVxuh-YUxJ1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.40.0/22
IPv6:
2a0b:380::/29
Signature Algorithm: sha256WithRSAEncryption
35:0e:29:81:54:b4:e3:2e:a7:e3:3e:62:02:bc:a4:26:cb:08:
89:0f:ef:29:5a:34:38:d1:3b:65:e0:37:7e:54:8f:d9:6e:98:
ef:1c:fd:5b:7f:e4:09:a6:e5:1a:bb:17:68:10:e1:3f:eb:8b:
31:22:23:3a:15:45:fc:52:ad:d6:94:5d:56:82:b9:51:da:d3:
6a:00:90:ea:6f:fe:96:c4:f5:9f:97:dd:4d:d2:54:67:61:ff:
82:df:7c:0e:62:9d:34:73:b3:f2:eb:c2:2f:03:6c:0d:75:25:
88:40:bc:8f:89:eb:68:23:cb:bc:55:d1:b5:d6:38:24:a6:2a:
ab:17:b9:dc:6f:b0:85:b5:88:76:7b:b3:b1:59:43:bc:14:fc:
d5:b9:67:35:15:6e:80:51:5e:cf:58:ad:31:1a:67:59:6f:fb:
be:9f:ab:18:07:c9:71:ac:4b:70:67:3e:84:b3:20:8b:91:c2:
0c:76:1d:16:cd:bd:00:27:75:06:d2:53:7d:5f:9e:2e:1d:9d:
00:86:b6:28:ce:7e:46:4e:28:27:c6:e8:db:e9:08:17:0a:96:
25:44:cb:98:61:13:dc:a6:fb:82:5c:86:ee:60:14:90:d4:e1:
bb:3d:fc:27:7b:ee:0c:43:fc:03:3d:b3:c1:cf:33:1f:24:8f:
f9:b3:e6:14
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVzA5AxkL/xPEjcoZ9PifvRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1M2YxN2Y0YmJiMTkzNDZkYzVhZmMwYzIzNTg3OWZiZTYz
NTdjNmQwHhcNMjMwMTAyMTUwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDRiMWVjYzE0ZDVkZjA0ODdlODBiMmI1NzFiYTFmOTg1MzEyNzVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsi5jmyryypv4h16VMBH6n9jXPKek
p68ndARznR3miXL2BJgbBx13I5w0vyg7vpO2/jXSSNrRe8NYPP7v0Sw/b4okqwb4
3JcQSwBrQ+IYyVJbRCHMS+E0cScgOjOarg65V/6AUxOV/DxCcA4HCHY91B9oaYcx
Gp7whgCHBlxq31NMZRqN5KQb/5iOVYXVyIpxKyp1KkDjVwbDcLXPDjxh2Uq5hMrx
3C1yqEwCuzuuRLaXvV1+10m+l8lwkwAidChA+vP39MjI8MWrc6yPAJ02BC4JCJpB
aHiSHg7cYdD8+6QlP3Xqy4iuyZkbzovkPrR/hpck1KXX5qf++CJJw6ONGQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFP1LHswU1d8Eh+gLK1cbofmFMSdcMB8GA1UdIwQY
MBaAFDU/F/S7sZNG3Fr8DCNYefvmNXxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlQ4WDlMdXhrMGJjV3Z3TUkxaDUtLVkxZkcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wYTI0YjUtYjlhZC00OGE2LWFkZjct
OWZkODRjNzliMGVmLzEvX1VzZXpCVFYzd1NINkFzclZ4dWgtWVV4SjF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8wYTI0YjUtYjlhZC00OGE2LWFkZjctOWZkODRjNzliMGVm
LzEvTlQ4WDlMdXhrMGJjV3Z3TUkxaDUtLVkxZkcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCubcoMA0E
AgACMAcDBQMqCwOAMA0GCSqGSIb3DQEBCwUAA4IBAQA1DimBVLTjLqfjPmICvKQm
ywiJD+8pWjQ40Ttl4Dd+VI/ZbpjvHP1bf+QJpuUauxdoEOE/64sxIiM6FUX8Uq3W
lF1WgrlR2tNqAJDqb/6WxPWfl91N0lRnYf+C33wOYp00c7Py68IvA2wNdSWIQLyP
ietoI8u8VdG11jgkpiqrF7ncb7CFtYh2e7OxWUO8FPzVuWc1FW6AUV7PWK0xGmdZ
b/u+n6sYB8lxrEtwZz6EsyCLkcIMdh0Wzb0AJ3UG0lN9X54uHZ0AhrYozn5GTign
xujb6QgXCpYlRMuYYRPcpvuCXIbuYBSQ1OG7Pfwne+4MQ/wDPbPBzzMfJI/5s+YU
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:58 2024 by rpki-client on console-ams.rpki-client.org