Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/b26c44-9d16-4c3d-9f1d-af646c8f4af6/1/Iw1F7qPBbnCjdJxQfUicSWpKF8A.roa
File: Iw1F7qPBbnCjdJxQfUicSWpKF8A.roa (raw, json)
Hash identifier: ueNkr3ylV1gCB2cIPxln4eb3kaHS2opDLDZ26ORDHOM=
Subject key identifier: 23:0D:45:EE:A3:C1:6E:70:A3:74:9C:50:7D:48:9C:49:6A:4A:17:C0
Certificate issuer: /CN=de37812bd45273ea3b2a53d9e96f6dba215826f3
Certificate serial: 018571278D44509668B8B4475AC838FD5092
Authority key identifier: DE:37:81:2B:D4:52:73:EA:3B:2A:53:D9:E9:6F:6D:BA:21:58:26:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3jeBK9RSc-o7KlPZ6W9tuiFYJvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/b26c44-9d16-4c3d-9f1d-af646c8f4af6/1/Iw1F7qPBbnCjdJxQfUicSWpKF8A.roa
Signing time: Mon 02 Jan 2023 06:24:55 +0000
ROA not before: Mon 02 Jan 2023 06:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48173
IP address blocks: 5.183.20.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 30 Mar 2023 10:16:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:8d:44:50:96:68:b8:b4:47:5a:c8:38:fd:50:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de37812bd45273ea3b2a53d9e96f6dba215826f3
Validity
Not Before: Jan 2 06:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=230d45eea3c16e70a3749c507d489c496a4a17c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e6:18:86:2b:de:c2:5a:e5:39:b7:56:1b:94:
18:0f:c6:94:10:3e:98:ca:33:5a:9d:99:72:10:8d:
c1:47:1e:ed:ec:66:71:01:44:f7:5c:c1:f3:eb:60:
4f:79:a3:b5:4f:0e:c4:bb:46:df:03:fe:5f:4f:94:
39:51:c6:80:82:a2:e1:d0:39:f4:0a:9e:b7:34:b1:
97:d1:e2:be:e2:fe:9a:dc:31:d7:ed:25:85:37:2a:
a6:75:03:5a:32:7f:72:48:59:d9:aa:72:48:78:7d:
48:d1:64:d6:9c:a6:c8:78:90:c3:75:99:08:79:49:
36:b8:fe:4a:98:29:c1:11:d2:14:7a:9f:80:bb:27:
4d:87:fa:40:fa:bb:50:b1:8c:07:41:39:15:ff:96:
01:00:3a:e6:4a:29:88:6e:bc:80:04:66:b3:93:61:
cf:00:9d:48:90:e2:cd:d5:fb:fc:aa:c5:4c:30:52:
09:72:ca:0e:e5:52:62:35:51:95:99:f9:af:79:14:
47:cb:1e:cc:c9:03:de:68:9c:e8:8a:92:e3:99:c6:
18:bb:52:75:8d:f9:f7:94:5a:74:f1:ab:25:41:06:
eb:17:2e:3d:e3:7c:24:a3:a1:52:7e:cb:d1:30:e3:
c3:6f:4f:e0:79:26:d3:66:bc:e1:96:3f:d3:8d:94:
54:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:0D:45:EE:A3:C1:6E:70:A3:74:9C:50:7D:48:9C:49:6A:4A:17:C0
X509v3 Authority Key Identifier:
keyid:DE:37:81:2B:D4:52:73:EA:3B:2A:53:D9:E9:6F:6D:BA:21:58:26:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3jeBK9RSc-o7KlPZ6W9tuiFYJvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b26c44-9d16-4c3d-9f1d-af646c8f4af6/1/Iw1F7qPBbnCjdJxQfUicSWpKF8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b26c44-9d16-4c3d-9f1d-af646c8f4af6/1/3jeBK9RSc-o7KlPZ6W9tuiFYJvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.20.0/22
Signature Algorithm: sha256WithRSAEncryption
20:46:0f:8d:97:b0:16:47:72:ac:14:fc:1d:ce:06:cc:03:e9:
cd:54:9e:94:d2:7a:a2:b7:8f:95:cf:b9:8e:94:43:a7:ab:1e:
79:cb:93:ea:69:cb:25:38:0a:f8:5a:4a:9e:8d:d7:ea:63:da:
52:e0:da:28:18:39:1f:77:de:fb:ff:f4:12:20:e3:78:f2:75:
ec:00:63:d1:33:cc:09:4b:6d:06:3f:4f:c9:24:10:07:59:90:
b6:31:2e:8e:58:2e:bc:3a:0c:1f:1b:95:13:c0:25:3c:8c:20:
30:38:ad:9e:67:a2:8f:bd:98:50:16:96:42:a5:b5:b1:50:90:
66:33:c7:b6:b6:fe:68:e7:2c:59:90:85:3e:87:b1:7b:23:2e:
1d:a2:df:d1:b4:d6:a6:aa:38:03:f4:84:23:c3:1b:22:4d:8d:
e3:50:6e:74:a3:0e:5d:8a:d3:e5:ce:0d:b9:96:86:52:36:99:
7c:17:0c:ea:38:29:70:0e:41:e5:8e:59:a6:53:a3:6c:2c:80:
05:a7:07:7f:e9:a3:d8:e0:0d:b5:59:62:9d:bd:ca:48:cd:b9:
58:fe:df:b5:1e:ad:ba:ae:ab:5a:bc:08:be:4d:dd:54:c1:93:
80:5f:29:e1:a3:1b:40:cb:5b:0b:bd:d0:48:46:e7:47:24:75:
e7:a9:41:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxJ41EUJZouLRHWsg4/VCSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMzc4MTJiZDQ1MjczZWEzYjJhNTNkOWU5NmY2ZGJhMjE1
ODI2ZjMwHhcNMjMwMTAyMDYyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzBkNDVlZWEzYzE2ZTcwYTM3NDljNTA3ZDQ4OWM0OTZhNGExN2MwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkOYYhivewlrlObdWG5QYD8aUED6Y
yjNanZlyEI3BRx7t7GZxAUT3XMHz62BPeaO1Tw7Eu0bfA/5fT5Q5UcaAgqLh0Dn0
Cp63NLGX0eK+4v6a3DHX7SWFNyqmdQNaMn9ySFnZqnJIeH1I0WTWnKbIeJDDdZkI
eUk2uP5KmCnBEdIUep+AuydNh/pA+rtQsYwHQTkV/5YBADrmSimIbryABGazk2HP
AJ1IkOLN1fv8qsVMMFIJcsoO5VJiNVGVmfmveRRHyx7MyQPeaJzoipLjmcYYu1J1
jfn3lFp08aslQQbrFy4943wko6FSfsvRMOPDb0/geSbTZrzhlj/TjZRURQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCMNRe6jwW5wo3ScUH1InElqShfAMB8GA1UdIwQY
MBaAFN43gSvUUnPqOypT2elvbbohWCbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2plQks5UlNjLW83S2xQWjZXOXR1aUZZSnZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9iMjZjNDQtOWQxNi00YzNkLTlmMWQt
YWY2NDZjOGY0YWY2LzEvSXcxRjdxUEJibkNqZEp4UWZVaWNTV3BLRjhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9iMjZjNDQtOWQxNi00YzNkLTlmMWQtYWY2NDZjOGY0YWY2
LzEvM2plQks5UlNjLW83S2xQWjZXOXR1aUZZSnZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBbcUMA0G
CSqGSIb3DQEBCwUAA4IBAQAgRg+Nl7AWR3KsFPwdzgbMA+nNVJ6U0nqit4+Vz7mO
lEOnqx55y5PqacslOAr4WkqejdfqY9pS4NooGDkfd977//QSION48nXsAGPRM8wJ
S20GP0/JJBAHWZC2MS6OWC68OgwfG5UTwCU8jCAwOK2eZ6KPvZhQFpZCpbWxUJBm
M8e2tv5o5yxZkIU+h7F7Iy4dot/RtNamqjgD9IQjwxsiTY3jUG50ow5ditPlzg25
loZSNpl8FwzqOClwDkHljlmmU6NsLIAFpwd/6aPY4A21WWKdvcpIzblY/t+1Hq26
rqtavAi+Td1UwZOAXynhoxtAy1sLvdBIRudHJHXnqUEF
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:57 2024 by rpki-client on console-ams.rpki-client.org