Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/6AZ9l6r3no_t4BGFw0T_qvNKnbE.roa
File: 6AZ9l6r3no_t4BGFw0T_qvNKnbE.roa (raw, json)
Hash identifier: gGdjXXvVdWQ8BMjdWGxA01hJfUA7EfuDbSJ+p1h3xa8=
Subject key identifier: E8:06:7D:97:AA:F7:9E:8F:ED:E0:11:85:C3:44:FF:AA:F3:4A:9D:B1
Certificate issuer: /CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Certificate serial: 018ECDF5929F955639DA619701B3AC09ABB6
Authority key identifier: 1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/6AZ9l6r3no_t4BGFw0T_qvNKnbE.roa
Signing time: Thu 11 Apr 2024 16:20:06 +0000
ROA not before: Thu 11 Apr 2024 16:20:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206728
IP address blocks: 109.120.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Jun 2024 20:39:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:cd:f5:92:9f:95:56:39:da:61:97:01:b3:ac:09:ab:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Validity
Not Before: Apr 11 16:20:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8067d97aaf79e8fede01185c344ffaaf34a9db1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:2d:76:ab:dc:5b:cc:11:aa:3c:8e:16:3d:a5:
a8:2b:b8:3d:5d:20:b7:9d:ef:74:b3:65:d3:cd:f8:
22:1e:08:be:21:d7:d3:e3:f6:20:55:51:fa:57:67:
aa:76:00:b5:55:87:07:2c:91:54:99:ba:b6:6f:c0:
b7:bb:32:b1:b5:82:ee:b5:f9:74:d9:7b:21:1b:c9:
a4:69:6b:5e:79:91:03:7b:7d:ba:54:f8:2e:a8:6e:
32:b6:ad:6e:1d:37:27:d6:98:cf:00:27:71:b4:91:
2e:78:48:a1:90:b1:11:1f:d2:5c:82:42:48:c6:af:
a3:b2:2c:43:d0:2a:9f:ca:b8:aa:fa:7c:8f:57:c1:
3a:a3:10:f4:8d:cf:be:4d:df:35:7f:0b:60:25:b8:
59:e3:e3:2c:a1:a1:4a:f5:b5:db:74:7f:3d:35:46:
f5:dc:3e:10:79:3c:55:87:52:3a:e7:a6:ff:da:8e:
26:83:43:5a:a1:1a:8f:7c:b3:aa:2d:0a:51:ae:fa:
0e:20:35:97:dc:c0:d8:29:da:f9:be:db:1b:c0:0b:
d7:bd:df:25:a6:12:f0:ad:5a:a5:d3:f4:9f:ee:a3:
32:3f:98:10:ff:87:0f:01:1c:07:b9:72:0a:df:17:
83:8c:b9:cc:b3:85:76:e1:6f:d8:95:41:41:83:b1:
e9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:06:7D:97:AA:F7:9E:8F:ED:E0:11:85:C3:44:FF:AA:F3:4A:9D:B1
X509v3 Authority Key Identifier:
keyid:1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/6AZ9l6r3no_t4BGFw0T_qvNKnbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.120.136.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:c6:97:c4:53:4f:06:69:e8:b3:f5:f2:e4:e7:9d:cb:40:1b:
43:41:04:21:36:68:bd:f5:ef:45:39:07:f5:5a:94:1f:5b:d3:
eb:bc:9f:fb:ce:ca:4a:39:16:de:19:d1:97:bb:6c:13:4f:93:
2f:72:3a:9c:a2:b3:d5:26:90:79:bf:7d:a5:b1:a7:15:db:78:
37:ce:b9:ff:fa:b3:08:dd:e6:76:4f:5a:ca:77:3d:0a:3e:4f:
20:01:22:a1:63:6b:62:92:10:e3:4e:b0:8f:b8:b9:55:f6:5e:
50:df:1d:7c:6d:fe:7d:5e:3f:0c:dc:ab:0f:23:b2:72:40:e0:
c1:8e:2c:05:95:8b:2d:04:6f:28:a5:72:31:b8:30:01:9b:69:
7b:d7:c7:e4:5a:da:8d:3f:fc:42:1e:18:e1:a3:6b:d8:f7:87:
22:31:79:3f:d9:e3:93:6c:ab:86:e9:e9:3f:75:e6:49:0a:eb:
37:59:28:57:05:cf:b2:44:57:53:25:7a:61:fb:f1:ce:b4:7e:
e3:d5:83:fe:47:7e:93:cb:64:4e:74:cd:53:9e:c0:a1:66:af:
c9:4d:5a:45:11:1d:06:58:a8:62:ca:4d:e2:9b:8c:d5:40:a6:
1a:5d:11:33:e1:8c:1b:57:84:5e:5f:36:a9:49:a8:56:c5:18:
4e:70:f8:26
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY7N9ZKflVY52mGXAbOsCau2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMmMyMTlmM2MyOTdiNzc1ODgwYzNiNjUxYTIwMDNmOWJl
NmRlNWUwHhcNMjQwNDExMTYyMDA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlODA2N2Q5N2FhZjc5ZThmZWRlMDExODVjMzQ0ZmZhYWYzNGE5ZGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgS12q9xbzBGqPI4WPaWoK7g9XSC3
ne90s2XTzfgiHgi+IdfT4/YgVVH6V2eqdgC1VYcHLJFUmbq2b8C3uzKxtYLutfl0
2XshG8mkaWteeZEDe326VPguqG4ytq1uHTcn1pjPACdxtJEueEihkLERH9JcgkJI
xq+jsixD0Cqfyriq+nyPV8E6oxD0jc++Td81fwtgJbhZ4+MsoaFK9bXbdH89NUb1
3D4QeTxVh1I656b/2o4mg0NaoRqPfLOqLQpRrvoOIDWX3MDYKdr5vtsbwAvXvd8l
phLwrVql0/Sf7qMyP5gQ/4cPARwHuXIK3xeDjLnMs4V24W/YlUFBg7HplwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOgGfZeq956P7eARhcNE/6rzSp2xMB8GA1UdIwQY
MBaAFBssIZ88KXt3WIDDtlGiAD+b5t5eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3l3aG56d3BlM2RZZ01PMlVhSUFQNXZtM2w0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9iMTFhNDAtNDhlOS00ZTA2LWJmMTEt
OTJjODFmMjJlNzEyLzEvNkFaOWw2cjNub190NEJHRncwVF9xdk5LbmJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi9iMTFhNDAtNDhlOS00ZTA2LWJmMTEtOTJjODFmMjJlNzEy
LzEvR3l3aG56d3BlM2RZZ01PMlVhSUFQNXZtM2w0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbXiIMA0G
CSqGSIb3DQEBCwUAA4IBAQBOxpfEU08Gaeiz9fLk553LQBtDQQQhNmi99e9FOQf1
WpQfW9PrvJ/7zspKORbeGdGXu2wTT5MvcjqcorPVJpB5v32lsacV23g3zrn/+rMI
3eZ2T1rKdz0KPk8gASKhY2tikhDjTrCPuLlV9l5Q3x18bf59Xj8M3KsPI7JyQODB
jiwFlYstBG8opXIxuDABm2l718fkWtqNP/xCHhjho2vY94ciMXk/2eOTbKuG6ek/
deZJCus3WShXBc+yRFdTJXph+/HOtH7j1YP+R36Ty2ROdM1TnsChZq/JTVpFER0G
WKhiyk3im4zVQKYaXREz4YwbV4ReXzapSahWxRhOcPgm
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:22 2024 by rpki-client on console-fra.rpki-client.org