Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/XIG0cl6SrrphZ29GiXJvhYdRLf0.roa
File: XIG0cl6SrrphZ29GiXJvhYdRLf0.roa (raw, json)
Hash identifier: zBLbPQwCP4bpdCQidRWeSp9sIM88nZUJNQt3E8R00ZA=
Subject key identifier: 5C:81:B4:72:5E:92:AE:BA:61:67:6F:46:89:72:6F:85:87:51:2D:FD
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0191C3440D514EED6C9AF12606469748601A
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/XIG0cl6SrrphZ29GiXJvhYdRLf0.roa
Signing time: Thu 05 Sep 2024 17:38:22 +0000
ROA not before: Thu 05 Sep 2024 17:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 176.105.229.0/24 maxlen: 24
185.177.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 21:38:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c3:44:0d:51:4e:ed:6c:9a:f1:26:06:46:97:48:60:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Sep 5 17:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5c81b4725e92aeba61676f4689726f8587512dfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b9:eb:62:92:b7:3c:2e:13:58:a6:51:e7:70:
aa:1a:3d:d5:ec:38:83:95:65:f1:82:86:17:e1:05:
e4:2d:7c:8f:61:48:6a:3d:d3:ff:19:d2:27:5c:7a:
b4:d5:c0:89:85:79:33:fd:20:e2:67:1c:0e:7a:1f:
48:aa:bd:51:00:06:d2:23:1e:64:10:24:10:16:7b:
0d:3a:78:d4:e8:4f:98:a5:d9:e0:db:37:f3:df:f7:
ac:00:6d:2d:92:3e:6a:5b:73:b6:42:a9:e2:4e:91:
2e:50:ec:d6:7c:0f:65:26:60:1f:fe:11:93:af:90:
32:77:ee:b8:5b:01:96:89:76:ae:e3:66:d0:5f:02:
6a:71:46:cf:8c:5a:23:0c:7b:ca:37:2e:6e:fa:61:
cb:d6:de:5e:f4:e6:34:02:bb:27:cd:a7:b5:49:ee:
34:70:92:5c:00:14:91:a7:40:d8:d5:69:54:5d:23:
50:cd:ab:ec:4a:4c:18:75:f1:d4:2d:48:9b:06:74:
8f:c0:d8:4e:0d:ef:1f:71:95:90:9c:af:f6:8c:88:
d8:fb:91:82:b0:ee:7b:e0:8e:e6:eb:08:a3:69:8c:
0c:1a:ca:e5:47:78:a2:32:4c:a6:34:c4:cb:98:b3:
56:d3:61:11:3f:01:5e:c4:64:ed:65:ea:fd:9b:ae:
7a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:81:B4:72:5E:92:AE:BA:61:67:6F:46:89:72:6F:85:87:51:2D:FD
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/XIG0cl6SrrphZ29GiXJvhYdRLf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.229.0/24
185.177.27.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:ab:63:8b:e8:20:8d:9e:e4:fb:86:f0:55:69:c4:f0:48:11:
2f:2c:7a:63:c4:49:51:8d:a8:92:ab:70:de:f5:0d:35:dc:06:
25:30:f9:ba:25:07:56:9a:4a:3d:8e:9a:73:80:be:db:64:dc:
ba:bd:85:be:a3:9d:18:c5:48:16:d6:16:76:be:c9:41:c4:2d:
49:19:fb:bd:bb:73:18:53:0b:8b:9a:2f:c5:1e:dc:4b:aa:56:
53:9e:7f:08:6c:18:a9:50:bf:ef:d2:0e:2a:38:79:3a:3c:c1:
74:36:95:71:26:00:5c:9e:17:46:a1:28:a0:ae:ef:95:11:6f:
99:f9:f4:c7:9a:c9:88:d5:14:1f:88:da:77:21:cc:3c:fe:9b:
c3:87:52:0e:df:98:1e:ef:51:ee:35:30:b9:b9:46:4d:cf:ac:
57:7f:ac:dd:bc:11:00:cd:92:74:42:a6:d3:f9:0b:0e:34:c7:
6f:e6:8c:96:ac:a8:8a:0c:68:44:54:56:5e:59:af:a6:39:2f:
c5:88:4a:08:25:98:41:63:4c:66:a5:96:38:a9:d1:f0:83:06:
48:3b:69:20:30:16:ef:a2:d2:94:c7:de:54:ef:59:f4:c8:a9:
6b:90:93:2f:c9:d0:45:59:9f:be:52:8f:4d:dc:2b:18:d2:13:
a5:6d:c0:62
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZHDRA1RTu1smvEmBkaXSGAaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjQwOTA1MTczODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YzgxYjQ3MjVlOTJhZWJhNjE2NzZmNDY4OTcyNmY4NTg3NTEyZGZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrnrYpK3PC4TWKZR53CqGj3V7DiD
lWXxgoYX4QXkLXyPYUhqPdP/GdInXHq01cCJhXkz/SDiZxwOeh9Iqr1RAAbSIx5k
ECQQFnsNOnjU6E+Ypdng2zfz3/esAG0tkj5qW3O2QqniTpEuUOzWfA9lJmAf/hGT
r5Ayd+64WwGWiXau42bQXwJqcUbPjFojDHvKNy5u+mHL1t5e9OY0Arsnzae1Se40
cJJcABSRp0DY1WlUXSNQzavsSkwYdfHULUibBnSPwNhODe8fcZWQnK/2jIjY+5GC
sO574I7m6wijaYwMGsrlR3iiMkymNMTLmLNW02ERPwFexGTtZer9m656YQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFyBtHJekq66YWdvRolyb4WHUS39MB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvWElHMGNsNlNycnBoWjI5R2lYSnZoWWRSTGYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMtZThlZjJmMDk1OThl
LzEvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsGnlAwQA
ubEbMA0GCSqGSIb3DQEBCwUAA4IBAQDJq2OL6CCNnuT7hvBVacTwSBEvLHpjxElR
jaiSq3De9Q013AYlMPm6JQdWmko9jppzgL7bZNy6vYW+o50YxUgW1hZ2vslBxC1J
Gfu9u3MYUwuLmi/FHtxLqlZTnn8IbBipUL/v0g4qOHk6PMF0NpVxJgBcnhdGoSig
ru+VEW+Z+fTHmsmI1RQfiNp3Icw8/pvDh1IO35ge71HuNTC5uUZNz6xXf6zdvBEA
zZJ0QqbT+QsONMdv5oyWrKiKDGhEVFZeWa+mOS/FiEoIJZhBY0xmpZY4qdHwgwZI
O2kgMBbvotKUx95U71n0yKlrkJMvydBFWZ++Uo9N3CsY0hOlbcBi
-----END CERTIFICATE-----
Generated at Fri Sep 13 23:38:01 2024 by rpki-client on console-fra.rpki-client.org