Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/Ib9sbxgdwJuWYnKgkG0Kjd4vvPk.roa
File: Ib9sbxgdwJuWYnKgkG0Kjd4vvPk.roa (raw, json)
Hash identifier: 26j65QXzDT24pUrXquZJAOAwkWpxUFNtFdgptelYKPw=
Subject key identifier: 21:BF:6C:6F:18:1D:C0:9B:96:62:72:A0:90:6D:0A:8D:DE:2F:BC:F9
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 01909C27D458F83B05E148EAEEDCA848A164
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/Ib9sbxgdwJuWYnKgkG0Kjd4vvPk.roa
Signing time: Wed 10 Jul 2024 10:19:34 +0000
ROA not before: Wed 10 Jul 2024 10:19:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204203
IP address blocks: 89.44.240.0/24 maxlen: 24
185.239.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jul 2024 12:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9c:27:d4:58:f8:3b:05:e1:48:ea:ee:dc:a8:48:a1:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jul 10 10:19:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21bf6c6f181dc09b966272a0906d0a8dde2fbcf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:50:af:97:27:11:f9:d4:e5:9d:81:c6:c6:7e:
6f:f8:88:ea:9d:38:a4:12:c2:2a:49:d0:d9:2b:b7:
3b:37:d5:f4:7a:17:a2:89:b7:fd:63:3a:5c:4d:00:
aa:2e:25:7f:d8:2a:10:78:14:88:bf:2b:98:c7:af:
c0:2b:f6:37:03:18:87:db:70:9b:85:9e:aa:48:59:
9e:17:fd:e3:4c:cd:78:3e:8f:c2:9b:6c:c1:00:c0:
ef:35:b4:fb:2f:1f:4d:44:cc:fb:6a:34:73:9d:36:
20:46:ec:96:a3:6b:a7:f2:bb:18:68:76:b8:51:3a:
14:d9:7c:71:f3:f1:4b:a1:b8:ed:3d:02:4f:96:fa:
e2:26:03:09:63:15:40:7d:4f:43:30:da:6f:5b:93:
cc:cf:38:91:7f:21:01:7c:8b:6b:40:0b:8b:f7:b5:
db:61:37:94:76:25:6d:af:e8:0e:85:9c:1e:3e:77:
6f:28:7e:26:87:32:f9:92:3b:45:34:5a:32:85:53:
bc:eb:04:38:7c:2f:19:25:79:3a:6b:b6:c2:a2:ce:
7d:90:e6:d8:ed:dd:da:f3:32:2d:7f:a1:ba:fb:df:
9d:8a:50:44:05:11:08:63:0a:e9:41:9a:79:d1:e5:
73:14:7a:eb:94:59:c2:f5:b3:8d:f0:ab:62:94:d8:
ea:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:BF:6C:6F:18:1D:C0:9B:96:62:72:A0:90:6D:0A:8D:DE:2F:BC:F9
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/Ib9sbxgdwJuWYnKgkG0Kjd4vvPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.240.0/24
185.239.1.0/24
Signature Algorithm: sha256WithRSAEncryption
96:71:51:37:91:6c:10:62:49:1a:2d:18:c4:9c:37:e1:6d:a5:
87:0f:e1:aa:77:d0:0a:f3:37:23:b9:ff:9e:10:8e:c3:b9:dd:
6c:63:9b:87:cc:e7:0a:40:f3:14:f7:76:db:ea:9c:82:b8:e5:
eb:ea:af:0d:0b:10:a5:10:6a:e8:fa:b8:78:e8:c0:e3:59:1b:
f8:c1:34:c6:4c:5b:14:af:09:8a:ad:b0:ef:92:08:77:4a:22:
f6:05:3f:81:d3:e4:88:68:1d:30:b7:88:97:f3:0d:f1:ca:f9:
0c:83:21:3a:a9:b1:d8:ac:0a:d1:c3:18:cb:3c:c9:87:b0:5a:
1f:9d:ae:da:bb:db:ed:0a:f9:79:02:f7:7e:f9:39:36:3d:b5:
6d:bd:82:83:aa:b4:e2:3e:69:28:7f:27:d3:9c:26:59:69:8e:
2d:b2:da:62:f5:94:59:8d:55:e1:71:10:22:16:85:b6:9c:9d:
21:fd:31:03:0e:c1:e9:f1:29:99:ad:67:de:d2:f4:d0:44:74:
1b:7d:2b:e3:df:66:13:6f:b5:04:1e:27:a0:a2:32:4f:57:2e:
b3:fe:74:3b:a1:07:43:23:5e:11:50:13:78:6e:2c:a9:b4:58:
52:0a:50:6b:3b:e2:1c:29:5e:a3:2e:91:3f:16:49:5e:62:df:
cb:b9:43:c9
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZCcJ9RY+DsF4Ujq7tyoSKFkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz
MjdlYmUwHhcNMjQwNzEwMTAxOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMWJmNmM2ZjE4MWRjMDliOTY2MjcyYTA5MDZkMGE4ZGRlMmZiY2Y5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlCvlycR+dTlnYHGxn5v+IjqnTik
EsIqSdDZK7c7N9X0eheiibf9YzpcTQCqLiV/2CoQeBSIvyuYx6/AK/Y3AxiH23Cb
hZ6qSFmeF/3jTM14Po/Cm2zBAMDvNbT7Lx9NRMz7ajRznTYgRuyWo2un8rsYaHa4
UToU2Xxx8/FLobjtPQJPlvriJgMJYxVAfU9DMNpvW5PMzziRfyEBfItrQAuL97Xb
YTeUdiVtr+gOhZwePndvKH4mhzL5kjtFNFoyhVO86wQ4fC8ZJXk6a7bCos59kObY
7d3a8zItf6G6+9+dilBEBREIYwrpQZp50eVzFHrrlFnC9bON8KtilNjqtQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCG/bG8YHcCblmJyoJBtCo3eL7z5MB8GA1UdIwQY
MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt
M2RmYTUxMGQ2YjE2LzEvSWI5c2J4Z2R3SnVXWW5LZ2tHMEtqZDR2dlBrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2
LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWSzwAwQA
ue8BMA0GCSqGSIb3DQEBCwUAA4IBAQCWcVE3kWwQYkkaLRjEnDfhbaWHD+Gqd9AK
8zcjuf+eEI7Dud1sY5uHzOcKQPMU93bb6pyCuOXr6q8NCxClEGro+rh46MDjWRv4
wTTGTFsUrwmKrbDvkgh3SiL2BT+B0+SIaB0wt4iX8w3xyvkMgyE6qbHYrArRwxjL
PMmHsFofna7au9vtCvl5Avd++Tk2PbVtvYKDqrTiPmkofyfTnCZZaY4tstpi9ZRZ
jVXhcRAiFoW2nJ0h/TEDDsHp8SmZrWfe0vTQRHQbfSvj32YTb7UEHiegojJPVy6z
/nQ7oQdDI14RUBN4biyptFhSClBrO+IcKV6jLpE/FkleYt/LuUPJ
-----END CERTIFICATE-----
Generated at Sun Jul 14 14:26:35 2024 by rpki-client on console-ams.rpki-client.org