Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/9OIrP2AlHy3xoGV5oHxJKd9DcE0.roa
File: 9OIrP2AlHy3xoGV5oHxJKd9DcE0.roa (raw, json)
Hash identifier: YFGgi323TCQKV/CBtBcAsyHNEL9vw73GVHF7cxJtZPs=
Subject key identifier: F4:E2:2B:3F:60:25:1F:2D:F1:A0:65:79:A0:7C:49:29:DF:43:70:4D
Certificate issuer: /CN=fa2e72abf7b1728fda6aa0b0413d8854812ea361
Certificate serial: 01893F79C3E062A5D048EE630C582BDBC1FE
Authority key identifier: FA:2E:72:AB:F7:B1:72:8F:DA:6A:A0:B0:41:3D:88:54:81:2E:A3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-i5yq_exco_aaqCwQT2IVIEuo2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/9OIrP2AlHy3xoGV5oHxJKd9DcE0.roa
Signing time: Mon 10 Jul 2023 11:04:51 +0000
ROA not before: Mon 10 Jul 2023 11:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 185.240.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3f:79:c3:e0:62:a5:d0:48:ee:63:0c:58:2b:db:c1:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa2e72abf7b1728fda6aa0b0413d8854812ea361
Validity
Not Before: Jul 10 11:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4e22b3f60251f2df1a06579a07c4929df43704d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:99:34:e6:40:b3:d0:ed:d8:35:63:4d:0c:ed:
80:3c:72:b3:aa:a8:c9:35:80:dd:ff:7f:da:29:d3:
f8:84:cd:44:1b:b3:9a:85:58:ff:62:5a:1d:5b:0c:
de:36:1e:4a:ea:05:be:23:ff:94:8c:92:1c:b8:63:
14:4a:37:34:c1:ee:b3:69:a2:e3:ab:eb:8e:91:f3:
c5:c6:14:62:58:8e:bb:7b:27:d6:08:5a:7f:5d:bb:
3a:96:83:8c:81:26:0e:9b:c4:0f:cf:9a:d9:07:11:
35:63:26:8d:bd:c9:45:f9:89:f8:6c:f2:58:c9:fd:
45:70:35:0a:17:eb:54:b8:05:24:ba:b9:d9:6e:1b:
27:49:2f:b6:b5:58:f6:33:9c:57:1c:3b:6f:43:ff:
b1:c8:0c:13:10:e9:d0:1d:19:4f:30:8d:60:28:9e:
c3:20:84:64:f4:5a:88:d9:a7:8d:ac:bd:2d:8f:09:
40:c1:e1:81:3c:8e:d6:77:05:36:b9:c5:17:cc:b8:
f8:38:fe:7a:1e:0f:d9:1c:de:85:9c:c8:ba:d9:e2:
99:14:37:24:5b:fd:02:dd:28:01:5a:e6:8f:ae:0d:
4a:d7:cf:58:e5:60:a4:cb:f4:c7:49:cd:fe:27:56:
2d:6b:96:1e:80:2a:20:f4:20:28:28:6a:b9:d7:f2:
81:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E2:2B:3F:60:25:1F:2D:F1:A0:65:79:A0:7C:49:29:DF:43:70:4D
X509v3 Authority Key Identifier:
keyid:FA:2E:72:AB:F7:B1:72:8F:DA:6A:A0:B0:41:3D:88:54:81:2E:A3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-i5yq_exco_aaqCwQT2IVIEuo2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/9OIrP2AlHy3xoGV5oHxJKd9DcE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/1-i5yq_exco_aaqCwQT2IVIEuo2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.160.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:d8:f0:59:75:3f:fe:65:2b:75:91:98:6e:81:e1:95:c1:ab:
68:db:7a:21:f6:14:91:bb:b7:22:77:1f:23:8d:ca:cf:b4:3e:
a6:48:9e:70:b6:23:fc:53:53:4b:15:92:d0:fd:7e:a7:3b:16:
f6:b6:87:d3:4c:e0:b1:2c:35:f0:e7:26:0d:dd:d6:84:02:b4:
9c:8f:c9:9a:77:e1:55:5e:45:e5:e4:03:5c:0d:86:e4:42:ac:
9d:e7:74:15:71:fb:be:47:08:7d:a6:db:ed:42:da:36:de:ad:
b0:48:73:d4:ba:51:14:06:9f:f8:1b:4c:79:17:63:5c:22:2b:
32:1a:f8:6f:04:9d:52:5c:55:b4:4d:47:77:e9:5f:9f:b5:3a:
0c:56:d1:cf:fc:03:0c:68:57:51:84:d1:43:bf:83:2c:9c:cf:
74:68:e6:ff:f7:ad:4a:7d:60:4a:1d:08:34:f6:1c:ed:8f:22:
fc:6a:d1:ea:e3:63:29:8e:1f:24:a5:7f:92:7b:8c:24:0e:03:
5c:fe:73:4b:93:de:48:65:02:8b:4b:29:9f:5b:b4:f5:7b:9d:
ff:3c:78:eb:ce:86:43:12:bb:12:58:3c:62:98:a2:10:4b:66:
46:73:38:ef:ce:72:75:5c:26:35:f7:a5:bc:9c:b6:49:6c:6a:
5c:ad:ac:68
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYk/ecPgYqXQSO5jDFgr28H+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhMmU3MmFiZjdiMTcyOGZkYTZhYTBiMDQxM2Q4ODU0ODEy
ZWEzNjEwHhcNMjMwNzEwMTEwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNGUyMmIzZjYwMjUxZjJkZjFhMDY1NzlhMDdjNDkyOWRmNDM3MDRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiZk05kCz0O3YNWNNDO2APHKzqqjJ
NYDd/3/aKdP4hM1EG7OahVj/YlodWwzeNh5K6gW+I/+UjJIcuGMUSjc0we6zaaLj
q+uOkfPFxhRiWI67eyfWCFp/Xbs6loOMgSYOm8QPz5rZBxE1YyaNvclF+Yn4bPJY
yf1FcDUKF+tUuAUkurnZbhsnSS+2tVj2M5xXHDtvQ/+xyAwTEOnQHRlPMI1gKJ7D
IIRk9FqI2aeNrL0tjwlAweGBPI7WdwU2ucUXzLj4OP56Hg/ZHN6FnMi62eKZFDck
W/0C3SgBWuaPrg1K189Y5WCky/THSc3+J1Yta5YegCog9CAoKGq51/KBhwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFPTiKz9gJR8t8aBleaB8SSnfQ3BNMB8GA1UdIwQY
MBaAFPoucqv3sXKP2mqgsEE9iFSBLqNhMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1pNXlxX2V4Y29fYWFxQ3dRVDJJVklFdW8yRS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMvZjYxNTkxLTdjYTgtNGE5YS04OTlm
LWEzNjZkYTI1MWE4My8xLzlPSXJQMkFsSHkzeG9HVjVvSHhKS2Q5RGNFMC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvOWMvZjYxNTkxLTdjYTgtNGE5YS04OTlmLWEzNjZkYTI1MWE4
My8xLzEtaTV5cV9leGNvX2FhcUN3UVQySVZJRXVvMkUuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC58KAw
DQYJKoZIhvcNAQELBQADggEBAC/Y8Fl1P/5lK3WRmG6B4ZXBq2jbeiH2FJG7tyJ3
HyONys+0PqZInnC2I/xTU0sVktD9fqc7Fva2h9NM4LEsNfDnJg3d1oQCtJyPyZp3
4VVeReXkA1wNhuRCrJ3ndBVx+75HCH2m2+1C2jberbBIc9S6URQGn/gbTHkXY1wi
KzIa+G8EnVJcVbRNR3fpX5+1OgxW0c/8AwxoV1GE0UO/gyycz3Ro5v/3rUp9YEod
CDT2HO2PIvxq0erjYymOHySlf5J7jCQOA1z+c0uT3khlAotLKZ9btPV7nf88eOvO
hkMSuxJYPGKYohBLZkZzOO/OcnVcJjX3pbyctklsalytrGg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:54 2024 by rpki-client on console-fra.rpki-client.org