Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/uysiZJAeCYyAUOSlwaFRKgSK6l4.roa
File: uysiZJAeCYyAUOSlwaFRKgSK6l4.roa (raw, json)
Hash identifier: 96oQOyn3o7WQ3az0S3PWvuYv2zKD/oooSu8PELvCHvM=
Subject key identifier: BB:2B:22:64:90:1E:09:8C:80:50:E4:A5:C1:A1:51:2A:04:8A:EA:5E
Certificate issuer: /CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Certificate serial: 01856F26E0D37627562C99C65777E55A1104
Authority key identifier: 6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/uysiZJAeCYyAUOSlwaFRKgSK6l4.roa
Signing time: Sun 01 Jan 2023 21:04:56 +0000
ROA not before: Sun 01 Jan 2023 21:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201625
IP address blocks: 185.68.164.0/22 maxlen: 32
2a05:1220::/29 maxlen: 48
2a05:1220::/30 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:e0:d3:76:27:56:2c:99:c6:57:77:e5:5a:11:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Validity
Not Before: Jan 1 21:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb2b2264901e098c8050e4a5c1a1512a048aea5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:64:58:93:0d:d6:9b:5e:9f:8e:1d:df:84:1e:
6a:d6:cc:2d:c3:f0:58:0b:91:d7:c9:61:cb:3d:69:
2f:3e:77:61:2b:e8:b2:b2:78:15:cf:e8:23:1e:f5:
18:8a:ba:f3:c9:d7:48:26:45:65:3a:4c:7c:05:e1:
2c:30:8e:6a:6b:a4:32:46:2d:dc:7f:ff:8c:a5:3a:
40:09:ae:c4:cc:f7:09:1d:2c:1d:71:5c:d2:36:32:
41:d3:e1:e2:8b:9b:b8:4b:bd:50:f9:6c:0e:45:1e:
a6:89:54:d0:d6:69:94:d3:59:17:b0:26:60:48:e5:
87:01:28:ef:1f:5b:eb:d4:f5:07:b4:e0:74:50:42:
91:a6:5e:f1:96:ce:e1:c8:c9:49:4d:0b:a1:05:3b:
07:f9:44:2e:7e:0f:df:29:e6:0e:1b:dc:5b:63:a7:
b0:45:2b:18:a3:d2:ed:29:a3:5d:27:44:bc:a3:cb:
2c:98:ab:7a:01:1b:b8:81:6a:f3:1f:49:5d:8a:28:
60:6a:41:ba:94:bb:89:61:68:79:0c:9b:83:1e:25:
e0:8b:6c:62:bb:8c:e2:26:a2:17:57:7f:69:d6:ca:
4c:e3:a9:4b:7f:33:db:e9:21:92:53:f4:75:48:3b:
37:f5:ea:ce:8b:5d:8d:33:54:8f:0e:b9:29:7f:23:
01:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2B:22:64:90:1E:09:8C:80:50:E4:A5:C1:A1:51:2A:04:8A:EA:5E
X509v3 Authority Key Identifier:
keyid:6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/uysiZJAeCYyAUOSlwaFRKgSK6l4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/bss_s76ozI4249p9nEcEm_xv-xQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.164.0/22
IPv6:
2a05:1220::/29
Signature Algorithm: sha256WithRSAEncryption
11:48:9b:d4:2c:3f:05:38:7f:f6:b2:43:57:16:db:be:c3:7b:
9c:f7:14:a4:9e:87:30:37:97:85:4a:21:2e:47:5b:df:07:58:
41:23:26:16:bd:a8:f6:aa:f0:b9:f5:75:fd:4a:8d:08:7e:e4:
eb:3c:e8:1d:0d:64:eb:b5:16:a7:47:ad:2a:10:d3:58:ef:d3:
b9:10:6e:91:5d:09:74:3b:61:22:54:b2:46:aa:45:b7:8f:59:
7c:86:d1:9f:2d:b8:16:d3:2b:3a:db:a1:ba:1d:a8:61:b0:f8:
5e:0d:38:5e:8e:56:ba:39:6c:c2:a7:48:8a:dd:c7:3b:88:3b:
4d:36:19:f6:1c:35:9f:b7:44:65:1d:93:2d:df:e8:a5:69:e2:
14:76:28:b9:4f:53:10:f3:b0:fc:2a:ab:3d:c6:65:84:93:b5:
8c:85:39:0f:a5:e1:a2:4b:16:6a:dd:84:d6:1b:db:e0:a4:61:
b5:fc:60:ea:76:b5:d3:87:60:34:b3:8b:c5:be:ea:ba:dd:13:
5a:53:65:cc:13:9e:97:50:37:00:e7:88:e4:0c:57:65:28:45:
c6:d4:7f:c4:e9:b6:16:32:4e:c9:c9:9c:62:48:70:8b:db:f5:
11:d2:e3:27:54:e5:67:d2:eb:ad:1c:74:a5:5f:9e:26:77:6d:
09:26:49:56
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVvJuDTdidWLJnGV3flWhEEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlY2IzZmIzYmVhOGNjOGUzNmUzZGE3ZDljNDcwNDliZmM2
ZmZiMTQwHhcNMjMwMTAxMjEwNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjJiMjI2NDkwMWUwOThjODA1MGU0YTVjMWExNTEyYTA0OGFlYTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWRYkw3Wm16fjh3fhB5q1swtw/BY
C5HXyWHLPWkvPndhK+iysngVz+gjHvUYirrzyddIJkVlOkx8BeEsMI5qa6QyRi3c
f/+MpTpACa7EzPcJHSwdcVzSNjJB0+Hii5u4S71Q+WwORR6miVTQ1mmU01kXsCZg
SOWHASjvH1vr1PUHtOB0UEKRpl7xls7hyMlJTQuhBTsH+UQufg/fKeYOG9xbY6ew
RSsYo9LtKaNdJ0S8o8ssmKt6ARu4gWrzH0ldiihgakG6lLuJYWh5DJuDHiXgi2xi
u4ziJqIXV39p1spM46lLfzPb6SGSU/R1SDs39erOi12NM1SPDrkpfyMBKwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLsrImSQHgmMgFDkpcGhUSoEiupeMB8GA1UdIwQY
MBaAFG7LP7O+qMyONuPafZxHBJv8b/sUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnNzX3M3Nm96STQyNDlwOW5FY0VtX3h2LXhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8wYmE3ZTItNjNhMi00YzQxLTg2YjUt
YTM3MGY0YmEyZDJiLzEvdXlzaVpKQWVDWXlBVU9TbHdhRlJLZ1NLNmw0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS8wYmE3ZTItNjNhMi00YzQxLTg2YjUtYTM3MGY0YmEyZDJi
LzEvYnNzX3M3Nm96STQyNDlwOW5FY0VtX3h2LXhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuUSkMA0E
AgACMAcDBQMqBRIgMA0GCSqGSIb3DQEBCwUAA4IBAQARSJvULD8FOH/2skNXFtu+
w3uc9xSknocwN5eFSiEuR1vfB1hBIyYWvaj2qvC59XX9So0IfuTrPOgdDWTrtRan
R60qENNY79O5EG6RXQl0O2EiVLJGqkW3j1l8htGfLbgW0ys626G6HahhsPheDThe
jla6OWzCp0iK3cc7iDtNNhn2HDWft0RlHZMt3+ilaeIUdii5T1MQ87D8Kqs9xmWE
k7WMhTkPpeGiSxZq3YTWG9vgpGG1/GDqdrXTh2A0s4vFvuq63RNaU2XME56XUDcA
54jkDFdlKEXG1H/E6bYWMk7JyZxiSHCL2/UR0uMnVOVn0uutHHSlX54md20JJklW
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:18 2024 by rpki-client on console-ams.rpki-client.org