Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8349e4-69cc-4140-a744-abed74415b8f/1/J0EY9dlS5Fy2iJZ2MEr8K7LYqOU.roa
File: J0EY9dlS5Fy2iJZ2MEr8K7LYqOU.roa (raw, json)
Hash identifier: v9BxGDVqJsBW2XiI/VC3EArvvnhsbypmf0UyPQPIGPE=
Subject key identifier: 27:41:18:F5:D9:52:E4:5C:B6:88:96:76:30:4A:FC:2B:B2:D8:A8:E5
Certificate issuer: /CN=914b7d1e6e72d55c8d1c4a3e8241d71dcf8e3bf1
Certificate serial: 01857102C3BA9FC1B47E0606B147B692BE11
Authority key identifier: 91:4B:7D:1E:6E:72:D5:5C:8D:1C:4A:3E:82:41:D7:1D:CF:8E:3B:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUt9Hm5y1VyNHEo-gkHXHc-OO_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/8349e4-69cc-4140-a744-abed74415b8f/1/J0EY9dlS5Fy2iJZ2MEr8K7LYqOU.roa
Signing time: Mon 02 Jan 2023 05:44:44 +0000
ROA not before: Mon 02 Jan 2023 05:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62058
IP address blocks: 185.153.40.0/23 maxlen: 23
185.153.40.0/22 maxlen: 22
185.153.42.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:c3:ba:9f:c1:b4:7e:06:06:b1:47:b6:92:be:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=914b7d1e6e72d55c8d1c4a3e8241d71dcf8e3bf1
Validity
Not Before: Jan 2 05:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=274118f5d952e45cb6889676304afc2bb2d8a8e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:81:1b:cf:18:e1:a9:2a:0e:a2:17:0c:c9:86:
0a:ac:17:fa:ef:a0:83:a1:7a:32:6c:46:70:fc:f6:
24:80:8e:22:49:3e:04:4f:49:fa:6d:07:05:f4:43:
aa:05:9f:e5:ab:1d:e4:8a:dc:f2:21:1a:37:9f:a4:
6c:74:51:53:07:7a:62:b8:96:8e:dd:f6:68:46:a9:
83:27:51:89:1d:34:50:9e:17:52:03:96:95:0e:d2:
6f:14:1a:31:18:98:c4:3e:7c:06:bc:91:a0:c5:3d:
c3:4f:15:aa:f5:87:4c:9e:cc:2c:9d:c0:e1:66:a5:
0e:23:87:c7:95:a8:8e:e8:04:2a:47:65:fe:1c:81:
fd:b9:35:ed:83:11:d5:cc:7c:51:33:82:0d:d6:db:
f1:82:5b:41:23:75:8e:56:8d:e3:92:71:94:52:0a:
ea:11:07:5c:27:26:dc:19:c3:a1:93:4a:e1:ae:75:
7b:94:36:de:f0:c1:bc:7b:39:36:33:f5:d6:95:96:
48:ab:90:60:60:c4:e8:10:d2:49:3c:33:5f:16:c9:
fa:39:2b:fb:08:28:b6:26:37:88:97:b8:19:9c:26:
28:dc:45:d0:17:5e:95:b3:1a:7b:32:81:d4:75:44:
18:e0:56:c4:e3:ff:6a:d9:41:0a:8d:1d:dc:ab:ac:
aa:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:41:18:F5:D9:52:E4:5C:B6:88:96:76:30:4A:FC:2B:B2:D8:A8:E5
X509v3 Authority Key Identifier:
keyid:91:4B:7D:1E:6E:72:D5:5C:8D:1C:4A:3E:82:41:D7:1D:CF:8E:3B:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUt9Hm5y1VyNHEo-gkHXHc-OO_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8349e4-69cc-4140-a744-abed74415b8f/1/J0EY9dlS5Fy2iJZ2MEr8K7LYqOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8349e4-69cc-4140-a744-abed74415b8f/1/kUt9Hm5y1VyNHEo-gkHXHc-OO_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.40.0/22
Signature Algorithm: sha256WithRSAEncryption
00:14:d6:f7:6b:3f:23:b7:8b:b7:9e:97:44:c5:5c:ac:5a:ca:
82:1f:74:57:16:21:91:4f:90:61:a0:23:ce:6e:12:69:14:e2:
08:0f:f8:55:ee:ce:2d:bd:72:1b:ba:8d:f0:a5:c3:a3:db:fb:
b8:8f:ce:03:fa:d7:09:94:0c:8b:66:8b:a4:f2:14:64:3f:3f:
6f:36:a4:d0:b6:50:75:e2:a0:72:3e:65:31:8d:46:35:42:5f:
35:bd:e2:cc:f7:ea:96:53:13:d0:14:0e:25:f5:98:49:a7:c3:
e5:83:60:ba:49:bb:a3:1c:a7:b7:10:d1:11:6b:c6:b1:48:3a:
e7:2a:9c:3d:b6:c1:30:69:0c:d3:db:11:56:72:a0:5b:db:38:
f0:ab:93:8f:31:48:e1:1e:18:cd:57:35:67:d8:fc:72:4a:c1:
1a:3f:e2:1f:b7:11:0f:f9:4e:4b:3f:81:e1:7b:66:5d:9b:7a:
83:2d:9b:93:ee:df:22:b3:10:16:ec:14:f9:f6:be:ca:b9:ce:
b8:e8:36:85:b4:0b:cb:39:66:1c:0c:db:5b:0e:2f:ca:0e:61:
62:de:de:c6:b8:c7:ee:bf:80:ca:6e:77:31:38:d5:21:ae:fb:
80:34:6b:c2:27:f1:47:b5:97:54:51:46:06:d3:93:fc:64:8b:
ec:ac:7f:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxAsO6n8G0fgYGsUe2kr4RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxNGI3ZDFlNmU3MmQ1NWM4ZDFjNGEzZTgyNDFkNzFkY2Y4
ZTNiZjEwHhcNMjMwMTAyMDU0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzQxMThmNWQ5NTJlNDVjYjY4ODk2NzYzMDRhZmMyYmIyZDhhOGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiIEbzxjhqSoOohcMyYYKrBf676CD
oXoybEZw/PYkgI4iST4ET0n6bQcF9EOqBZ/lqx3kitzyIRo3n6RsdFFTB3piuJaO
3fZoRqmDJ1GJHTRQnhdSA5aVDtJvFBoxGJjEPnwGvJGgxT3DTxWq9YdMnswsncDh
ZqUOI4fHlaiO6AQqR2X+HIH9uTXtgxHVzHxRM4IN1tvxgltBI3WOVo3jknGUUgrq
EQdcJybcGcOhk0rhrnV7lDbe8MG8ezk2M/XWlZZIq5BgYMToENJJPDNfFsn6OSv7
CCi2JjeIl7gZnCYo3EXQF16Vsxp7MoHUdUQY4FbE4/9q2UEKjR3cq6yqQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCdBGPXZUuRctoiWdjBK/Cuy2KjlMB8GA1UdIwQY
MBaAFJFLfR5uctVcjRxKPoJB1x3PjjvxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1V0OUhtNXkxVnlOSEVvLWdrSFhIYy1PT19FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy84MzQ5ZTQtNjljYy00MTQwLWE3NDQt
YWJlZDc0NDE1YjhmLzEvSjBFWTlkbFM1RnkyaUpaMk1FcjhLN0xZcU9VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy84MzQ5ZTQtNjljYy00MTQwLWE3NDQtYWJlZDc0NDE1Yjhm
LzEva1V0OUhtNXkxVnlOSEVvLWdrSFhIYy1PT19FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZkoMA0G
CSqGSIb3DQEBCwUAA4IBAQAAFNb3az8jt4u3npdExVysWsqCH3RXFiGRT5BhoCPO
bhJpFOIID/hV7s4tvXIbuo3wpcOj2/u4j84D+tcJlAyLZouk8hRkPz9vNqTQtlB1
4qByPmUxjUY1Ql81veLM9+qWUxPQFA4l9ZhJp8Plg2C6SbujHKe3ENERa8axSDrn
Kpw9tsEwaQzT2xFWcqBb2zjwq5OPMUjhHhjNVzVn2PxySsEaP+IftxEP+U5LP4Hh
e2Zdm3qDLZuT7t8isxAW7BT59r7Kuc646DaFtAvLOWYcDNtbDi/KDmFi3t7GuMfu
v4DKbncxONUhrvuANGvCJ/FHtZdUUUYG05P8ZIvsrH+E
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:28:16 2024 by rpki-client on console-fra.rpki-client.org