Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/9sWzlgTHgDAo5BGCBOGcLX9enDs.roa
File: 9sWzlgTHgDAo5BGCBOGcLX9enDs.roa (raw, json)
Hash identifier: mZL0g9On2icnpalEzqDcI1vjkSCXfEIk0yfT9x0gkCE=
Subject key identifier: F6:C5:B3:96:04:C7:80:30:28:E4:11:82:04:E1:9C:2D:7F:5E:9C:3B
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 01867DFC153C902838E54D89328304D22472
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/9sWzlgTHgDAo5BGCBOGcLX9enDs.roa
Signing time: Thu 23 Feb 2023 11:15:17 +0000
ROA not before: Thu 23 Feb 2023 11:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204210
IP address blocks: 109.160.11.0/24 maxlen: 24
109.160.12.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7d:fc:15:3c:90:28:38:e5:4d:89:32:83:04:d2:24:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Feb 23 11:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6c5b39604c7803028e4118204e19c2d7f5e9c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2a:da:f9:c8:77:f2:7c:64:6a:8c:b4:82:25:
8e:a9:8c:77:e3:2b:44:1a:1d:6c:c9:bf:6c:bc:76:
d0:93:e0:af:0c:35:ac:0a:a9:99:6d:6e:da:9a:07:
53:4d:72:49:e7:a0:3f:25:80:b6:28:2e:bf:ad:9a:
2b:24:c2:9e:b8:86:53:d2:ee:d9:dd:03:21:b7:d8:
3a:19:56:d2:d3:9d:df:f3:ad:c8:77:0a:0c:8e:37:
09:e5:00:d9:88:29:97:81:34:cb:54:1c:39:60:a6:
dc:e7:fa:20:be:cd:13:c7:d4:95:59:a7:68:41:93:
4d:21:53:a8:1c:08:eb:44:04:16:9a:3c:96:3d:86:
c2:6e:d9:0e:2f:00:55:c7:69:1a:a6:27:e2:33:e5:
a7:f9:b0:ce:42:9b:6e:df:5b:98:4c:3e:c7:ab:28:
92:32:9d:24:53:f1:84:b6:a5:49:9f:4e:1e:25:14:
53:3a:52:66:71:24:3c:db:af:28:b6:7e:5b:a8:09:
89:ae:62:7f:a4:e5:2f:6a:53:57:de:bf:ea:11:99:
aa:36:ee:ec:a4:8b:0f:41:52:84:89:ad:a4:ba:05:
e3:68:69:72:2a:cb:23:11:15:59:17:40:a9:00:a5:
cb:d3:6d:05:9f:92:e2:95:56:e8:32:8d:d6:0a:82:
e2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:C5:B3:96:04:C7:80:30:28:E4:11:82:04:E1:9C:2D:7F:5E:9C:3B
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/9sWzlgTHgDAo5BGCBOGcLX9enDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.11.0-109.160.12.255
Signature Algorithm: sha256WithRSAEncryption
85:15:58:83:64:2d:5f:00:7b:6e:50:e7:23:f6:a8:c7:d3:7c:
4f:2a:30:b0:3f:03:0c:f2:b4:fc:9b:1d:1e:13:d1:8e:b7:1d:
41:22:79:8b:38:9b:27:0f:31:1e:72:dc:fa:ef:7e:9d:22:7f:
27:8e:6d:52:d6:fa:a8:79:33:21:63:b4:a2:56:84:d2:b4:b8:
86:4d:20:d1:7e:9b:0e:d3:a4:bc:38:d4:f4:cd:4b:da:ef:7b:
bc:b2:00:9d:74:38:e9:92:c9:6a:45:8c:37:8a:68:d3:c0:29:
a9:78:67:2f:38:04:f4:06:b7:3d:e3:e5:f6:62:74:fb:11:49:
16:17:d3:25:e2:c4:12:f8:10:d8:70:c5:f1:4d:72:dc:a6:fa:
cf:59:75:da:87:10:10:ae:93:be:a3:f1:5c:63:41:c1:1c:e9:
66:d5:f5:dc:de:fb:7c:3d:f2:97:a6:ea:0b:98:e1:c3:71:2d:
6a:bc:1b:cd:24:ad:ca:1f:9a:ba:9c:02:f7:8b:21:6c:bf:ac:
b8:0f:4d:34:c9:9b:58:3c:8d:aa:e9:d2:af:98:a9:67:b0:a9:
c2:58:da:de:16:c3:31:f1:c2:d8:25:a9:e6:54:92:36:9d:3d:
c4:cc:9b:f2:f1:05:11:fe:ab:14:b2:f2:6c:19:4d:6b:65:d9:
bc:06:c2:8f
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYZ9/BU8kCg45U2JMoME0iRyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMmE4YzFkMzExODk1MDE2MTA4ZmZiZDE0NTc1Yzc3Y2My
ODc3M2EwHhcNMjMwMjIzMTExNTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNmM1YjM5NjA0Yzc4MDMwMjhlNDExODIwNGUxOWMyZDdmNWU5YzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiCra+ch38nxkaoy0giWOqYx34ytE
Gh1syb9svHbQk+CvDDWsCqmZbW7amgdTTXJJ56A/JYC2KC6/rZorJMKeuIZT0u7Z
3QMht9g6GVbS053f863IdwoMjjcJ5QDZiCmXgTTLVBw5YKbc5/ogvs0Tx9SVWado
QZNNIVOoHAjrRAQWmjyWPYbCbtkOLwBVx2kapifiM+Wn+bDOQptu31uYTD7HqyiS
Mp0kU/GEtqVJn04eJRRTOlJmcSQ8268otn5bqAmJrmJ/pOUvalNX3r/qEZmqNu7s
pIsPQVKEia2kugXjaGlyKssjERVZF0CpAKXL020Fn5LilVboMo3WCoLiEQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFPbFs5YEx4AwKOQRggThnC1/Xpw7MB8GA1UdIwQY
MBaAFHIqjB0xGJUBYQj/vRRXXHfMKHc6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2lxTUhURVlsUUZoQ1AtOUZGZGNkOHdvZHpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9iMWY2ZWUtYzRlZi00MzU1LWFmMzYt
YTU1OGVlNjU0MzFmLzEvOXNXemxnVEhnREFvNUJHQ0JPR2NMWDllbkRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9iMWY2ZWUtYzRlZi00MzU1LWFmMzYtYTU1OGVlNjU0MzFm
LzEvY2lxTUhURVlsUUZoQ1AtOUZGZGNkOHdvZHpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBABtoAsD
BABtoAwwDQYJKoZIhvcNAQELBQADggEBAIUVWINkLV8Ae25Q5yP2qMfTfE8qMLA/
AwzytPybHR4T0Y63HUEieYs4mycPMR5y3Prvfp0ifyeObVLW+qh5MyFjtKJWhNK0
uIZNINF+mw7TpLw41PTNS9rve7yyAJ10OOmSyWpFjDeKaNPAKal4Zy84BPQGtz3j
5fZidPsRSRYX0yXixBL4ENhwxfFNctym+s9ZddqHEBCuk76j8VxjQcEc6WbV9dze
+3w98pem6guY4cNxLWq8G80krcofmrqcAveLIWy/rLgPTTTJm1g8jarp0q+YqWew
qcJY2t4WwzHxwtglqeZUkjadPcTMm/LxBRH+qxSy8mwZTWtl2bwGwo8=
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:42 2024 by rpki-client on console-fra.rpki-client.org