Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/bc51cb-de0c-4881-b0b1-1aa277df3769/1/aSFR2Vl1_n8SU9yVrT3eWhkZpVs.roa
File: aSFR2Vl1_n8SU9yVrT3eWhkZpVs.roa (raw, json)
Hash identifier: isEVLuSQc4oiu3yGNcL62QtDtv5ZsnuspComOovvdy4=
Subject key identifier: 69:21:51:D9:59:75:FE:7F:12:53:DC:95:AD:3D:DE:5A:19:19:A5:5B
Certificate issuer: /CN=3e2bbf346ebd4aa0b76e10c58321ad33d72d519f
Certificate serial: 0193B0FA6E10902CA0B2E321686BFE51D3B9
Authority key identifier: 3E:2B:BF:34:6E:BD:4A:A0:B7:6E:10:C5:83:21:AD:33:D7:2D:51:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Piu_NG69SqC3bhDFgyGtM9ctUZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/bc51cb-de0c-4881-b0b1-1aa277df3769/1/aSFR2Vl1_n8SU9yVrT3eWhkZpVs.roa
Signing time: Tue 10 Dec 2024 14:30:22 +0000
ROA not before: Tue 10 Dec 2024 14:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214401
IP address blocks: 185.160.96.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b0:fa:6e:10:90:2c:a0:b2:e3:21:68:6b:fe:51:d3:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e2bbf346ebd4aa0b76e10c58321ad33d72d519f
Validity
Not Before: Dec 10 14:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=692151d95975fe7f1253dc95ad3dde5a1919a55b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fa:95:9e:13:cf:96:50:80:00:16:0a:09:3d:
c8:eb:db:a8:4c:54:25:da:f9:c5:0f:b1:65:d1:3a:
47:98:c8:da:b1:b2:47:e1:6c:76:be:35:f4:66:b2:
6b:81:2c:30:92:1c:65:f5:2c:2c:9e:04:4b:60:e8:
05:b2:6a:b2:67:19:22:48:c2:b1:fb:b3:ea:6c:2f:
63:45:bb:91:13:2e:5a:bb:46:28:ab:1b:fd:0b:b2:
ab:62:8a:bd:64:76:ef:c1:05:d0:aa:20:33:0f:cb:
6a:d9:78:39:b7:4d:86:e8:ce:59:57:8d:be:60:e4:
99:48:d9:e0:1f:fe:53:c9:1a:1b:ed:de:5d:0d:19:
27:af:cb:b3:bc:e6:50:90:51:14:0a:78:6d:0a:23:
a3:a2:b9:3b:ac:8c:0d:95:12:fb:af:8c:b1:ea:ba:
95:ec:f2:d3:c2:b2:66:5d:7d:b6:97:32:c1:f8:0f:
cb:c7:c6:46:34:4e:3b:e4:d3:8a:cf:8b:1d:da:d9:
f4:2f:21:62:a6:0a:10:66:ca:82:db:37:ce:ee:da:
bc:d3:e4:d5:0c:58:4c:d5:89:dc:c1:81:3a:a9:84:
84:b5:73:91:56:38:fd:04:41:32:8a:f5:15:5d:ce:
27:2d:4c:87:dc:6d:99:74:69:31:ff:c3:3e:95:71:
40:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:21:51:D9:59:75:FE:7F:12:53:DC:95:AD:3D:DE:5A:19:19:A5:5B
X509v3 Authority Key Identifier:
keyid:3E:2B:BF:34:6E:BD:4A:A0:B7:6E:10:C5:83:21:AD:33:D7:2D:51:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Piu_NG69SqC3bhDFgyGtM9ctUZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/bc51cb-de0c-4881-b0b1-1aa277df3769/1/aSFR2Vl1_n8SU9yVrT3eWhkZpVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/bc51cb-de0c-4881-b0b1-1aa277df3769/1/Piu_NG69SqC3bhDFgyGtM9ctUZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.96.0/22
Signature Algorithm: sha256WithRSAEncryption
09:3f:d0:80:70:1b:7d:e1:7c:ba:fc:14:4f:33:92:29:25:57:
b9:f6:d1:7d:14:55:9a:47:22:5a:6f:25:38:cb:b8:12:a6:d4:
43:52:28:de:91:65:c5:cc:12:68:1e:ea:17:1b:08:26:3a:73:
c4:76:78:f3:7f:6b:de:b3:30:1b:d5:38:75:55:29:36:fe:c6:
75:61:09:72:a6:85:ba:81:4a:6f:75:26:c1:59:4a:99:03:25:
42:3d:e2:ee:81:cf:1e:09:a2:01:b3:90:47:2c:8b:af:d4:52:
7d:e1:7a:c3:f2:45:f9:b4:ae:6a:6d:70:b0:d7:dc:32:c2:d0:
a4:60:2e:0e:0e:87:90:6c:38:eb:84:df:65:50:68:5a:75:2b:
e4:b2:04:b7:cf:e1:03:35:df:34:9a:40:57:f7:6b:04:5e:f3:
7b:86:c3:98:00:97:ca:e9:9c:ff:f8:57:4b:1b:a9:18:22:fe:
ca:fa:fa:56:34:e8:c4:f8:b9:61:2d:78:13:eb:8b:98:65:60:
85:e2:3d:c3:9c:02:95:2a:71:0a:f1:1d:7d:ae:50:13:ee:27:
04:00:54:a6:58:11:6c:d9:8b:b8:1d:08:ae:aa:1d:52:cd:4c:
30:0f:2b:92:d1:3e:e6:20:16:0e:06:67:43:6a:ba:9f:4a:49:
33:69:46:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZOw+m4QkCygsuMhaGv+UdO5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlMmJiZjM0NmViZDRhYTBiNzZlMTBjNTgzMjFhZDMzZDcy
ZDUxOWYwHhcNMjQxMjEwMTQzMDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTIxNTFkOTU5NzVmZTdmMTI1M2RjOTVhZDNkZGU1YTE5MTlhNTViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvqVnhPPllCAABYKCT3I69uoTFQl
2vnFD7Fl0TpHmMjasbJH4Wx2vjX0ZrJrgSwwkhxl9SwsngRLYOgFsmqyZxkiSMKx
+7PqbC9jRbuREy5au0Yoqxv9C7KrYoq9ZHbvwQXQqiAzD8tq2Xg5t02G6M5ZV42+
YOSZSNngH/5TyRob7d5dDRknr8uzvOZQkFEUCnhtCiOjork7rIwNlRL7r4yx6rqV
7PLTwrJmXX22lzLB+A/Lx8ZGNE475NOKz4sd2tn0LyFipgoQZsqC2zfO7tq80+TV
DFhM1YncwYE6qYSEtXORVjj9BEEyivUVXc4nLUyH3G2ZdGkx/8M+lXFAewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGkhUdlZdf5/ElPcla093loZGaVbMB8GA1UdIwQY
MBaAFD4rvzRuvUqgt24QxYMhrTPXLVGfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGl1X05HNjlTcUMzYmhERmd5R3RNOWN0VVo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9iYzUxY2ItZGUwYy00ODgxLWIwYjEt
MWFhMjc3ZGYzNzY5LzEvYVNGUjJWbDFfbjhTVTl5VnJUM2VXaGtacFZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9iYzUxY2ItZGUwYy00ODgxLWIwYjEtMWFhMjc3ZGYzNzY5
LzEvUGl1X05HNjlTcUMzYmhERmd5R3RNOWN0VVo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaBgMA0G
CSqGSIb3DQEBCwUAA4IBAQAJP9CAcBt94Xy6/BRPM5IpJVe59tF9FFWaRyJabyU4
y7gSptRDUijekWXFzBJoHuoXGwgmOnPEdnjzf2veszAb1Th1VSk2/sZ1YQlypoW6
gUpvdSbBWUqZAyVCPeLugc8eCaIBs5BHLIuv1FJ94XrD8kX5tK5qbXCw19wywtCk
YC4ODoeQbDjrhN9lUGhadSvksgS3z+EDNd80mkBX92sEXvN7hsOYAJfK6Zz/+FdL
G6kYIv7K+vpWNOjE+LlhLXgT64uYZWCF4j3DnAKVKnEK8R19rlAT7icEAFSmWBFs
2Yu4HQiuqh1SzUwwDyuS0T7mIBYOBmdDarqfSkkzaUa3
-----END CERTIFICATE-----
Generated at Mon Apr 21 05:36:16 2025 by rpki-client