Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/9B21GkwaRCz6Y_YxqioM-WqZHmQ.roa
File: 9B21GkwaRCz6Y_YxqioM-WqZHmQ.roa (raw, json)
Hash identifier: 7veehxopAVwng3mplDc0CIJqhd8SPkuOHnl/Qx40sVQ=
Subject key identifier: F4:1D:B5:1A:4C:1A:44:2C:FA:63:F6:31:AA:2A:0C:F9:6A:99:1E:64
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 0192226490277A05DBFF200CB6FE6F6D4C6A
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/9B21GkwaRCz6Y_YxqioM-WqZHmQ.roa
Signing time: Tue 24 Sep 2024 04:57:48 +0000
ROA not before: Tue 24 Sep 2024 04:57:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 185.110.62.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 24 Sep 2024 08:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:22:64:90:27:7a:05:db:ff:20:0c:b6:fe:6f:6d:4c:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Sep 24 04:57:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f41db51a4c1a442cfa63f631aa2a0cf96a991e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c9:e4:da:c1:2c:20:42:2f:0c:41:f2:8d:6e:
9c:5b:d5:69:22:84:91:8f:63:43:49:c2:28:c4:06:
5a:1c:02:e3:38:f8:18:8f:c6:a6:ab:df:53:0d:aa:
6b:51:d0:75:e7:df:02:8a:29:e5:d9:f5:1a:4d:c7:
c1:47:89:4c:78:89:42:9d:c6:1f:56:cd:62:b3:34:
6b:37:69:14:17:09:94:81:fe:12:6d:76:26:cc:26:
7e:78:e5:67:a1:af:ad:63:61:4e:61:cc:72:65:a5:
22:15:6c:a2:66:52:4b:22:e8:5d:1a:53:8f:67:d4:
0d:b5:f2:c0:76:04:71:2f:f4:ef:d7:36:07:4b:8e:
07:49:fc:ed:a9:c6:ce:bc:61:b7:65:1a:82:dd:96:
8d:7a:a4:ce:4e:05:12:b6:be:3e:3e:a3:7c:09:a2:
8d:91:1e:b1:cf:33:53:ba:18:81:b0:77:82:7f:2f:
79:eb:55:88:c4:a4:83:44:b2:0f:5c:1b:3b:7e:83:
f3:ca:e9:91:49:ee:12:af:d7:81:75:66:66:4c:e2:
85:cf:6d:67:cb:f8:57:2f:d7:3e:fe:fe:64:ff:60:
51:8b:b3:c3:fa:95:0f:a2:f2:ad:07:2b:6e:64:15:
ee:c7:7d:ad:a9:51:68:bf:42:4e:b1:81:c9:8c:3b:
f0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1D:B5:1A:4C:1A:44:2C:FA:63:F6:31:AA:2A:0C:F9:6A:99:1E:64
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/9B21GkwaRCz6Y_YxqioM-WqZHmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.62.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:60:6d:74:f7:9c:39:a8:0b:8b:38:50:fb:be:31:91:aa:d8:
12:64:26:b6:d3:70:48:78:ef:e9:f0:e8:72:31:0e:4d:d0:4d:
09:fd:f9:2c:66:e1:6e:cb:ed:ea:3f:5e:23:55:42:3a:08:e8:
f2:54:f7:a0:2e:40:47:f8:a6:d2:4b:70:92:6c:c0:4a:07:5e:
61:54:88:f1:2e:35:f3:1d:27:c5:7b:e3:68:54:a9:78:bb:8d:
93:5e:37:32:ef:6d:c8:11:9b:49:73:73:d8:69:58:45:92:00:
59:af:e1:66:ef:70:16:d9:0d:39:f7:10:50:04:56:2e:7f:a5:
9a:a2:8f:9b:63:68:eb:2b:e6:8e:60:38:cd:f8:5d:46:82:0d:
66:a7:5e:8b:47:39:3a:91:93:68:96:1c:d0:3e:13:5c:26:df:
61:a6:59:0c:dd:78:25:b6:8f:ad:86:84:36:fc:de:42:73:90:
d6:f9:98:63:2f:8f:08:cf:63:62:94:4b:25:7a:47:99:2a:bf:
9e:4b:7e:7c:d2:6e:42:70:d5:62:d7:fb:8f:68:5f:b9:65:85:
94:46:49:1a:42:44:86:5f:df:5b:36:e8:3e:cb:5d:76:e9:e6:
15:48:7c:7f:e3:b2:6b:16:fe:25:61:5a:15:b8:9c:c4:29:95:
00:85:00:07
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZIiZJAnegXb/yAMtv5vbUxqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNGViMjA0ZjM1ODAwNDc4ODIyNGUyZmIxOGU0ZDVlNzRi
ZWJmOGQwHhcNMjQwOTI0MDQ1NzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNDFkYjUxYTRjMWE0NDJjZmE2M2Y2MzFhYTJhMGNmOTZhOTkxZTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysnk2sEsIEIvDEHyjW6cW9VpIoSR
j2NDScIoxAZaHALjOPgYj8amq99TDaprUdB1598Ciinl2fUaTcfBR4lMeIlCncYf
Vs1iszRrN2kUFwmUgf4SbXYmzCZ+eOVnoa+tY2FOYcxyZaUiFWyiZlJLIuhdGlOP
Z9QNtfLAdgRxL/Tv1zYHS44HSfztqcbOvGG3ZRqC3ZaNeqTOTgUStr4+PqN8CaKN
kR6xzzNTuhiBsHeCfy9561WIxKSDRLIPXBs7foPzyumRSe4Sr9eBdWZmTOKFz21n
y/hXL9c+/v5k/2BRi7PD+pUPovKtBytuZBXux32tqVFov0JOsYHJjDvwQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPQdtRpMGkQs+mP2MaoqDPlqmR5kMB8GA1UdIwQY
MBaAFPBOsgTzWABHiCJOL7GOTV50vr+NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEU2eUJQTllBRWVJSWs0dnNZNU5YblMtdjQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS85YWI0MmEtZGY5Mi00ZTQyLTllMzMt
NWM1ODkyYWZhNDg3LzEvOUIyMUdrd2FSQ3o2WV9ZeHFpb00tV3FaSG1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS85YWI0MmEtZGY5Mi00ZTQyLTllMzMtNWM1ODkyYWZhNDg3
LzEvOEU2eUJQTllBRWVJSWs0dnNZNU5YblMtdjQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuW4+MA0G
CSqGSIb3DQEBCwUAA4IBAQAeYG1095w5qAuLOFD7vjGRqtgSZCa203BIeO/p8Ohy
MQ5N0E0J/fksZuFuy+3qP14jVUI6COjyVPegLkBH+KbSS3CSbMBKB15hVIjxLjXz
HSfFe+NoVKl4u42TXjcy723IEZtJc3PYaVhFkgBZr+Fm73AW2Q059xBQBFYuf6Wa
oo+bY2jrK+aOYDjN+F1Ggg1mp16LRzk6kZNolhzQPhNcJt9hplkM3Xglto+thoQ2
/N5Cc5DW+ZhjL48Iz2NilEslekeZKr+eS3580m5CcNVi1/uPaF+5ZYWURkkaQkSG
X99bNug+y1126eYVSHx/47JrFv4lYVoVuJzEKZUAhQAH
-----END CERTIFICATE-----
Generated at Tue Sep 24 10:41:53 2024 by rpki-client on console-fra.rpki-client.org