Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/s9v6D1uiG7oxcFxnfLlA7iInDoU.roa
File: s9v6D1uiG7oxcFxnfLlA7iInDoU.roa (raw, json)
Hash identifier: Z05Scm/21J3G2glflb2PL11ruwI9RX7vf4nIXFTcavM=
Subject key identifier: B3:DB:FA:0F:5B:A2:1B:BA:31:70:5C:67:7C:B9:40:EE:22:27:0E:85
Certificate issuer: /CN=0aa2f1205553fa5960f1805c6ed9389e9e0dc92c
Certificate serial: 018570F07204441DE3039F504D903D53B7C3
Authority key identifier: 0A:A2:F1:20:55:53:FA:59:60:F1:80:5C:6E:D9:38:9E:9E:0D:C9:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CqLxIFVT-llg8YBcbtk4np4NySw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/s9v6D1uiG7oxcFxnfLlA7iInDoU.roa
Signing time: Mon 02 Jan 2023 05:24:44 +0000
ROA not before: Mon 02 Jan 2023 05:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16376
IP address blocks: 185.105.64.0/23 maxlen: 24
185.105.66.0/23 maxlen: 24
2a09:fd40::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:72:04:44:1d:e3:03:9f:50:4d:90:3d:53:b7:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0aa2f1205553fa5960f1805c6ed9389e9e0dc92c
Validity
Not Before: Jan 2 05:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3dbfa0f5ba21bba31705c677cb940ee22270e85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:91:a8:c3:be:41:f4:87:07:cf:da:4f:e5:e6:
39:a7:98:e7:24:da:55:05:41:90:a1:07:af:57:dc:
5f:ae:80:d7:8e:f9:b7:de:f0:a1:f0:32:ca:c6:e1:
78:6a:2e:cd:a5:42:cb:96:60:76:f3:3c:68:17:4d:
5b:32:59:32:c5:5a:8d:f0:c6:29:3b:66:07:7f:92:
ff:4b:2d:5e:39:f6:77:7b:ae:35:a7:05:00:e8:a4:
c0:4b:ba:b2:a1:c6:3c:51:e0:7e:28:88:db:ab:65:
1e:e7:3f:8f:40:6f:46:bc:0d:98:59:4a:a8:a4:ac:
c9:76:b4:3a:87:f1:a3:20:f0:fd:d9:aa:fc:db:ac:
b0:d1:14:ae:16:36:8b:b2:e2:2c:f0:f4:02:0a:45:
7d:07:1b:6c:0b:69:14:b0:20:c2:c1:fb:cf:33:b1:
db:f4:0e:a0:32:e2:e6:73:e9:31:5f:d9:f1:90:e5:
1e:cf:12:8a:13:09:db:e1:a7:41:f7:bc:88:95:a9:
a4:17:b4:7b:04:be:0b:aa:d8:1d:b2:a1:0b:b8:88:
0e:21:fa:31:a7:0c:e5:e6:4c:da:d3:1d:0a:45:c3:
d5:48:26:64:8c:30:0b:52:40:da:85:87:8b:f0:64:
cc:e4:37:03:01:2a:c0:0c:78:bc:33:93:4e:d2:23:
8e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:DB:FA:0F:5B:A2:1B:BA:31:70:5C:67:7C:B9:40:EE:22:27:0E:85
X509v3 Authority Key Identifier:
keyid:0A:A2:F1:20:55:53:FA:59:60:F1:80:5C:6E:D9:38:9E:9E:0D:C9:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CqLxIFVT-llg8YBcbtk4np4NySw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/s9v6D1uiG7oxcFxnfLlA7iInDoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/CqLxIFVT-llg8YBcbtk4np4NySw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.64.0/22
IPv6:
2a09:fd40::/48
Signature Algorithm: sha256WithRSAEncryption
1c:d4:34:c3:07:ef:aa:e1:b9:46:f2:5b:c5:b9:3d:44:cf:aa:
6e:b4:8b:b9:ca:25:cb:41:c6:5c:c8:48:79:21:91:ab:ae:45:
3f:a7:52:06:a5:8f:19:16:f7:76:0c:77:40:18:d7:0e:97:09:
4d:6c:a4:bc:4a:87:50:4a:92:a4:15:2c:20:a5:3a:83:e0:9d:
18:cc:4c:72:c4:db:e9:40:18:3b:ff:f1:ee:79:1d:25:ea:76:
8e:1a:81:fa:69:94:06:52:fd:3f:b0:97:d4:87:ff:4e:e9:85:
60:b8:2f:bf:1a:82:7d:1d:1e:50:16:4e:b2:d2:6d:4d:57:ea:
dd:09:9a:82:16:e9:57:32:22:a7:f9:27:98:8c:13:26:d6:b3:
f1:7e:dc:df:2d:47:db:be:03:68:1c:4a:57:ef:a5:b4:5b:39:
28:f1:25:82:66:b5:63:1e:79:7c:8e:d4:98:8c:8f:b0:4d:a0:
e8:ec:30:dc:06:bc:06:be:be:d8:cd:16:cb:a8:53:a0:f2:8e:
01:55:0a:94:3e:70:88:53:d0:94:c0:f6:28:98:48:e8:a3:8a:
1b:52:ab:d8:6b:c2:3e:5d:c1:c1:05:68:9e:72:70:62:02:d3:
4d:bd:f2:9b:f0:28:d5:07:ab:b7:b7:c3:8d:13:7a:a6:48:3d:
8f:42:16:ac
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVw8HIERB3jA59QTZA9U7fDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhYTJmMTIwNTU1M2ZhNTk2MGYxODA1YzZlZDkzODllOWUw
ZGM5MmMwHhcNMjMwMTAyMDUyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiM2RiZmEwZjViYTIxYmJhMzE3MDVjNjc3Y2I5NDBlZTIyMjcwZTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpGow75B9IcHz9pP5eY5p5jnJNpV
BUGQoQevV9xfroDXjvm33vCh8DLKxuF4ai7NpULLlmB28zxoF01bMlkyxVqN8MYp
O2YHf5L/Sy1eOfZ3e641pwUA6KTAS7qyocY8UeB+KIjbq2Ue5z+PQG9GvA2YWUqo
pKzJdrQ6h/GjIPD92ar826yw0RSuFjaLsuIs8PQCCkV9BxtsC2kUsCDCwfvPM7Hb
9A6gMuLmc+kxX9nxkOUezxKKEwnb4adB97yIlamkF7R7BL4LqtgdsqELuIgOIfox
pwzl5kza0x0KRcPVSCZkjDALUkDahYeL8GTM5DcDASrADHi8M5NO0iOOoQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLPb+g9bohu6MXBcZ3y5QO4iJw6FMB8GA1UdIwQY
MBaAFAqi8SBVU/pZYPGAXG7ZOJ6eDcksMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ3FMeElGVlQtbGxnOFlCY2J0azRucDROeVN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS82NGU0NDItMTM3ZS00MTAxLWJiNmMt
YjA2ODMxNTk2NDQ5LzEvczl2NkQxdWlHN294Y0Z4bmZMbEE3aUluRG9VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS82NGU0NDItMTM3ZS00MTAxLWJiNmMtYjA2ODMxNTk2NDQ5
LzEvQ3FMeElGVlQtbGxnOFlCY2J0azRucDROeVN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCuWlAMA8E
AgACMAkDBwAqCf1AAAAwDQYJKoZIhvcNAQELBQADggEBABzUNMMH76rhuUbyW8W5
PUTPqm60i7nKJctBxlzISHkhkauuRT+nUgaljxkW93YMd0AY1w6XCU1spLxKh1BK
kqQVLCClOoPgnRjMTHLE2+lAGDv/8e55HSXqdo4agfpplAZS/T+wl9SH/07phWC4
L78agn0dHlAWTrLSbU1X6t0JmoIW6VcyIqf5J5iMEybWs/F+3N8tR9u+A2gcSlfv
pbRbOSjxJYJmtWMeeXyO1JiMj7BNoOjsMNwGvAa+vtjNFsuoU6DyjgFVCpQ+cIhT
0JTA9iiYSOijihtSq9hrwj5dwcEFaJ5ycGIC00298pvwKNUHq7e3w40TeqZIPY9C
Fqw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:26 2024 by rpki-client on console-ams.rpki-client.org