Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/9mpINR0aXAHH1QMixPWd2HaBHVs.roa
File: 9mpINR0aXAHH1QMixPWd2HaBHVs.roa (raw, json)
Hash identifier: s60yC3ieWBXjnbCgZ0lyPwowpn0McA33Boj/2shIJ90=
Subject key identifier: F6:6A:48:35:1D:1A:5C:01:C7:D5:03:22:C4:F5:9D:D8:76:81:1D:5B
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 01921DF1A59C6F56C5F559DAE380AA1CB318
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/9mpINR0aXAHH1QMixPWd2HaBHVs.roa
Signing time: Mon 23 Sep 2024 08:13:48 +0000
ROA not before: Mon 23 Sep 2024 08:13:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 14.102.52.0/24 maxlen: 24
14.102.53.0/24 maxlen: 24
14.102.54.0/24 maxlen: 24
14.102.55.0/24 maxlen: 24
14.102.63.0/24 maxlen: 24
14.102.84.0/24 maxlen: 24
14.102.85.0/24 maxlen: 24
14.102.86.0/24 maxlen: 24
14.102.87.0/24 maxlen: 24
62.169.128.0/24 maxlen: 24
62.169.129.0/24 maxlen: 24
62.169.130.0/24 maxlen: 24
62.169.131.0/24 maxlen: 24
103.125.77.0/24 maxlen: 24
103.125.78.0/24 maxlen: 24
103.125.79.0/24 maxlen: 24
167.160.16.0/24 maxlen: 24
167.160.17.0/24 maxlen: 24
167.160.29.0/24 maxlen: 24
198.55.28.0/24 maxlen: 24
198.55.29.0/24 maxlen: 24
203.188.164.0/24 maxlen: 24
203.188.167.0/24 maxlen: 24
203.188.168.0/24 maxlen: 24
203.188.169.0/24 maxlen: 24
203.188.170.0/24 maxlen: 24
203.188.171.0/24 maxlen: 24
203.188.172.0/24 maxlen: 24
203.188.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Sep 2024 09:19:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1d:f1:a5:9c:6f:56:c5:f5:59:da:e3:80:aa:1c:b3:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Sep 23 08:13:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f66a48351d1a5c01c7d50322c4f59dd876811d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:10:74:f5:58:db:f0:d2:01:a4:a0:3f:dd:6e:
37:88:ce:8e:de:7c:4c:f9:8a:87:d8:fb:8e:d0:cb:
03:c8:c8:d9:10:2a:b1:ab:ce:dd:3d:d6:39:58:8a:
9b:e8:c5:e1:0b:92:67:e0:2b:f7:1d:c6:8b:c0:b0:
de:bb:f7:dd:f4:f9:8b:7a:e4:ca:6e:e4:a9:33:91:
9e:58:e0:06:5e:be:d7:37:0e:a0:44:83:41:51:4b:
66:9b:25:cd:46:28:63:87:cc:e1:35:24:72:c1:39:
d9:1d:66:a8:e6:61:73:0b:d9:b9:5d:24:ca:ad:5d:
5d:67:43:8e:f5:70:8f:11:eb:ca:27:bb:0b:68:d4:
7e:94:6a:c3:a5:2a:c6:cd:c8:11:fe:d5:9a:df:d9:
29:64:15:89:a0:85:26:e8:1b:a6:7f:01:40:73:07:
1d:29:9e:2f:23:4e:8b:f6:80:ad:04:60:65:65:eb:
e5:c4:a5:b9:f5:43:c3:95:16:36:5e:f1:89:04:33:
17:d1:f5:34:10:87:ed:32:5d:58:9d:02:5c:77:41:
ce:ad:c5:ed:7e:63:98:78:ec:47:df:34:c5:42:ec:
68:96:cd:94:9c:3f:53:55:19:a4:74:23:a9:71:26:
eb:35:df:32:8b:04:f1:46:6b:10:f8:12:fd:b4:34:
a2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:6A:48:35:1D:1A:5C:01:C7:D5:03:22:C4:F5:9D:D8:76:81:1D:5B
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/9mpINR0aXAHH1QMixPWd2HaBHVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.52.0/22
14.102.63.0/24
14.102.84.0/22
62.169.128.0/22
103.125.77.0-103.125.79.255
167.160.16.0/23
167.160.29.0/24
198.55.28.0/23
203.188.164.0/24
203.188.167.0-203.188.173.255
Signature Algorithm: sha256WithRSAEncryption
91:9c:e3:02:cf:2f:1d:87:99:b3:c1:cd:f1:f8:54:a2:da:76:
f4:0c:e6:31:10:27:e1:b3:2c:f6:9a:47:79:b5:a5:d3:b5:7b:
23:21:a4:5f:ae:8f:2f:a2:d9:aa:20:ed:16:2a:2b:e4:60:39:
f7:5d:e5:82:00:de:a0:e9:4a:6c:d9:e5:0d:79:c4:1b:0e:5f:
4b:0a:0f:19:c9:19:17:da:00:12:fb:18:2d:46:87:3b:25:de:
34:8a:8a:cd:f4:a2:62:78:90:37:8d:76:ed:32:91:f2:b7:9e:
9a:38:98:6a:23:1e:90:5c:ef:f8:73:f5:0c:3f:89:9e:e2:60:
e0:c7:dd:4a:c0:4a:3c:be:40:13:a2:4c:9d:c4:80:02:1f:4d:
90:40:ce:e9:3b:02:cc:3e:65:66:24:27:f7:23:d3:a6:3c:4d:
df:ee:e6:2d:a8:2f:e6:aa:a4:cd:67:90:97:a7:d7:b5:bb:88:
44:c6:7a:8f:d2:68:ad:55:43:be:33:c5:e0:6c:58:fa:ae:b0:
54:70:65:c9:8b:4a:f4:0d:d8:1a:57:80:13:28:bd:49:47:87:
16:a5:bc:7e:c3:7f:85:4c:52:26:64:8b:61:6a:fb:6b:39:1a:
40:6a:8e:d6:6a:30:6b:89:86:50:a7:91:7a:f6:ad:89:43:21:
f5:c4:c0:67
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgISAZId8aWcb1bF9Vna44CqHLMYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5
NTkyZGEwHhcNMjQwOTIzMDgxMzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjZhNDgzNTFkMWE1YzAxYzdkNTAzMjJjNGY1OWRkODc2ODExZDViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBB09Vjb8NIBpKA/3W43iM6O3nxM
+YqH2PuO0MsDyMjZECqxq87dPdY5WIqb6MXhC5Jn4Cv3HcaLwLDeu/fd9PmLeuTK
buSpM5GeWOAGXr7XNw6gRINBUUtmmyXNRihjh8zhNSRywTnZHWao5mFzC9m5XSTK
rV1dZ0OO9XCPEevKJ7sLaNR+lGrDpSrGzcgR/tWa39kpZBWJoIUm6BumfwFAcwcd
KZ4vI06L9oCtBGBlZevlxKW59UPDlRY2XvGJBDMX0fU0EIftMl1YnQJcd0HOrcXt
fmOYeOxH3zTFQuxols2UnD9TVRmkdCOpcSbrNd8yiwTxRmsQ+BL9tDSilQIDAQAB
o4ICTzCCAkswHQYDVR0OBBYEFPZqSDUdGlwBx9UDIsT1ndh2gR1bMB8GA1UdIwQY
MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt
ZjVmYjcxYjlhNTFmLzEvOW1wSU5SMGFYQUhIMVFNaXhQV2QySGFCSFZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm
LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGUGCCsGAQUFBwEHAQH/BFYwVDBSBAIAATBMAwQCDmY0AwQA
DmY/AwQCDmZUAwQCPqmAMAwDBABnfU0DBARnfUADBAGnoBADBACnoB0DBAHGNxwD
BADLvKQwDAMEAMu8pwMEAcu8rDANBgkqhkiG9w0BAQsFAAOCAQEAkZzjAs8vHYeZ
s8HN8fhUotp29AzmMRAn4bMs9ppHebWl07V7IyGkX66PL6LZqiDtFior5GA5913l
ggDeoOlKbNnlDXnEGw5fSwoPGckZF9oAEvsYLUaHOyXeNIqKzfSiYniQN4127TKR
8reemjiYaiMekFzv+HP1DD+JnuJg4MfdSsBKPL5AE6JMncSAAh9NkEDO6TsCzD5l
ZiQn9yPTpjxN3+7mLagv5qqkzWeQl6fXtbuIRMZ6j9JorVVDvjPF4GxY+q6wVHBl
yYtK9A3YGleAEyi9SUeHFqW8fsN/hUxSJmSLYWr7azkaQGqO1mowa4mGUKeRevat
iUMh9cTAZw==
-----END CERTIFICATE-----
Generated at Mon Sep 23 12:23:18 2024 by rpki-client on console-fra.rpki-client.org