Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/PLrz5DeU9vurL1fR4f-O-ANG8eI.roa
File: PLrz5DeU9vurL1fR4f-O-ANG8eI.roa (raw, json)
Hash identifier: C4JW5+5sl4SZGheYN3QJmwRMQHrLmP5WrxgYWGg2dAo=
Subject key identifier: 3C:BA:F3:E4:37:94:F6:FB:AB:2F:57:D1:E1:FF:8E:F8:03:46:F1:E2
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEECCEBD484BF692B0F82DC249C2795
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/PLrz5DeU9vurL1fR4f-O-ANG8eI.roa
Signing time: Sun 01 Jan 2023 06:04:50 +0000
ROA not before: Sun 01 Jan 2023 06:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201113
IP address blocks: 188.114.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:cc:eb:d4:84:bf:69:2b:0f:82:dc:24:9c:27:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cbaf3e43794f6fbab2f57d1e1ff8ef80346f1e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:2b:1e:22:4a:00:c7:a7:b2:67:d4:71:5a:87:
9e:83:86:89:be:4f:49:bd:44:6c:6f:66:e1:49:0b:
9d:d6:d0:f0:b9:05:ef:5e:21:a9:57:94:f7:92:82:
c3:1a:b5:06:af:71:dd:c6:c6:fb:a7:4c:bd:81:6f:
f2:48:7f:d8:6d:78:ed:49:5e:2d:93:0f:4b:4c:cb:
b1:78:be:71:4a:8a:99:dc:46:70:56:40:ac:4b:01:
ee:15:18:24:aa:4d:8a:49:8e:70:55:5c:b8:a2:f4:
42:3e:a6:3b:f4:8d:98:bb:7a:26:4c:20:2e:18:6e:
fb:f4:4b:e6:e1:0a:cf:3b:bb:85:26:0e:1d:0e:e9:
d4:5e:d6:ea:ba:56:87:c2:06:af:da:c8:a9:dc:0f:
16:b5:48:ed:13:61:32:85:a5:71:20:53:e0:ce:e9:
56:c0:21:36:05:41:a2:6c:f1:83:c1:7f:5c:50:29:
b9:06:a7:97:da:55:eb:7b:23:ad:c9:cc:f1:1c:1f:
5f:e4:95:0b:29:df:64:ee:11:0e:63:64:0f:1f:cb:
cf:f4:61:4a:bb:9b:79:4c:7e:18:ed:05:9b:25:53:
f3:0e:0e:e7:d7:51:6e:15:4d:35:bd:1f:fb:53:d8:
ee:3d:1d:86:ac:40:f2:7b:87:7c:9a:ee:30:f8:1b:
81:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:BA:F3:E4:37:94:F6:FB:AB:2F:57:D1:E1:FF:8E:F8:03:46:F1:E2
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/PLrz5DeU9vurL1fR4f-O-ANG8eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.114.66.0/24
Signature Algorithm: sha256WithRSAEncryption
76:33:2b:72:0c:7e:fd:f5:10:03:e5:53:fe:08:c3:bc:98:ba:
14:32:73:0a:2c:d2:a2:00:fb:df:1f:64:2b:30:91:34:fb:35:
69:73:df:d7:94:98:ab:23:ff:c2:fd:f6:82:7a:54:40:36:00:
45:cd:98:77:0a:16:4d:79:9a:ab:26:c5:20:6a:c2:9f:10:32:
b4:4f:cd:4d:58:60:2e:2d:2e:d0:b9:f6:b3:e2:ec:ac:cb:73:
27:33:dd:dc:78:ef:ea:8b:08:2b:3f:4e:ff:96:6e:ec:40:a9:
3d:5f:fc:61:e6:28:8f:e1:58:b8:bd:40:84:90:fe:a5:40:4c:
80:ce:bf:36:a2:d9:cf:e0:2d:1a:61:b5:fe:02:ea:7e:d0:70:
15:8f:94:58:f6:c3:1b:34:68:eb:03:8e:3b:b3:f0:47:7b:9b:
ec:42:09:bc:7a:03:e4:b0:c0:ef:83:53:1c:94:d5:dc:13:01:
05:0c:37:2d:4e:68:91:cc:62:ea:6e:34:cc:d5:3b:25:55:f1:
dd:ed:db:2b:e9:66:c0:ab:eb:be:a3:eb:b5:74:bb:d9:32:45:
3f:62:e9:d1:0e:25:61:58:48:60:2a:aa:4b:54:bc:75:ba:3b:
07:75:63:82:40:92:ce:87:52:6a:89:8d:c8:c2:06:26:4d:18:
a4:96:ab:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr7szr1IS/aSsPgtwknCeVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjMwMTAxMDYwNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2JhZjNlNDM3OTRmNmZiYWIyZjU3ZDFlMWZmOGVmODAzNDZmMWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5CseIkoAx6eyZ9RxWoeeg4aJvk9J
vURsb2bhSQud1tDwuQXvXiGpV5T3koLDGrUGr3Hdxsb7p0y9gW/ySH/YbXjtSV4t
kw9LTMuxeL5xSoqZ3EZwVkCsSwHuFRgkqk2KSY5wVVy4ovRCPqY79I2Yu3omTCAu
GG779Evm4QrPO7uFJg4dDunUXtbqulaHwgav2sip3A8WtUjtE2EyhaVxIFPgzulW
wCE2BUGibPGDwX9cUCm5BqeX2lXreyOtyczxHB9f5JULKd9k7hEOY2QPH8vP9GFK
u5t5TH4Y7QWbJVPzDg7n11FuFU01vR/7U9juPR2GrEDye4d8mu4w+BuBRwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDy68+Q3lPb7qy9X0eH/jvgDRvHiMB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvUExyejVEZVU5dnVyTDFmUjRmLU8tQU5HOGVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3
LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvHJCMA0G
CSqGSIb3DQEBCwUAA4IBAQB2MytyDH799RAD5VP+CMO8mLoUMnMKLNKiAPvfH2Qr
MJE0+zVpc9/XlJirI//C/faCelRANgBFzZh3ChZNeZqrJsUgasKfEDK0T81NWGAu
LS7Qufaz4uysy3MnM93ceO/qiwgrP07/lm7sQKk9X/xh5iiP4Vi4vUCEkP6lQEyA
zr82otnP4C0aYbX+Aup+0HAVj5RY9sMbNGjrA447s/BHe5vsQgm8egPksMDvg1Mc
lNXcEwEFDDctTmiRzGLqbjTM1TslVfHd7dsr6WbAq+u+o+u1dLvZMkU/YunRDiVh
WEhgKqpLVLx1ujsHdWOCQJLOh1JqiY3IwgYmTRiklqsW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org