Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/PTInk28IQfWMgJRqukno64y-29A.roa
File: PTInk28IQfWMgJRqukno64y-29A.roa (raw, json)
Hash identifier: PNjEFabdnHUPGO/rnolMZ3Xcy/Fj4YsKR/MxPfA8xww=
Subject key identifier: 3D:32:27:93:6F:08:41:F5:8C:80:94:6A:BA:49:E8:EB:8C:BE:DB:D0
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 018BF5EE1089BC000E6C93590324E9623046
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/PTInk28IQfWMgJRqukno64y-29A.roa
Signing time: Wed 22 Nov 2023 07:28:21 +0000
ROA not before: Wed 22 Nov 2023 07:28:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 328126
IP address blocks: 80.15.255.0/24 maxlen: 32
80.15.254.0/24 maxlen: 32
90.84.143.0/24 maxlen: 32
90.84.148.0/24 maxlen: 32
90.84.153.0/24 maxlen: 32
80.15.243.0/24 maxlen: 32
80.15.244.0/24 maxlen: 32
80.15.245.0/24 maxlen: 32
80.15.246.0/24 maxlen: 32
80.15.242.0/24 maxlen: 32
80.15.247.0/24 maxlen: 32
80.15.251.0/24 maxlen: 32
80.15.248.0/24 maxlen: 32
80.15.252.0/24 maxlen: 32
80.15.249.0/24 maxlen: 32
80.15.253.0/24 maxlen: 32
80.15.250.0/24 maxlen: 32
2a01:c9c0:c008::/48 maxlen: 128
2a01:c9c0:c01e::/48 maxlen: 128
2a01:c9c0:c01c::/48 maxlen: 128
2a01:c9c0:c012::/48 maxlen: 128
2a01:c9c0:c000::/48 maxlen: 128
2a01:c9c0:c016::/48 maxlen: 128
2a01:c9c0:c014::/48 maxlen: 128
2a01:c9c0:c00a::/48 maxlen: 128
2a01:c9c0:c018::/48 maxlen: 128
2a01:c9c0:c00c::/48 maxlen: 128
2a01:c9c0:c002::/48 maxlen: 128
2a01:c9c0:c010::/48 maxlen: 128
2a01:c9c0:c006::/48 maxlen: 128
2a01:c9c0:c004::/48 maxlen: 128
2a01:c9c0:c01a::/48 maxlen: 128
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f5:ee:10:89:bc:00:0e:6c:93:59:03:24:e9:62:30:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Nov 22 07:28:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d3227936f0841f58c80946aba49e8eb8cbedbd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:08:0d:ae:52:87:8a:6b:c5:5f:93:70:dd:34:
5c:03:4b:52:a3:6c:b7:81:79:a3:19:e7:87:b4:52:
94:78:c6:0b:ce:7d:a4:27:16:4b:52:c0:66:0f:62:
0c:38:8c:76:32:60:62:96:7f:7d:09:94:77:df:3b:
e1:23:3d:93:03:96:50:17:1d:08:d6:98:8f:dd:5b:
ea:cc:fe:c0:85:91:5f:e7:48:b7:89:e4:7b:f6:0f:
3d:eb:66:04:f8:0b:61:fa:d8:df:42:95:ce:79:96:
91:92:f7:a6:ba:e5:cf:2a:01:58:31:7b:5b:6e:f3:
c1:e9:9f:5f:98:f5:56:d9:4d:d5:33:06:26:77:53:
2c:00:ff:ad:c4:be:de:f7:64:de:24:17:0e:57:f7:
df:98:e5:09:9c:23:df:d5:00:45:b5:21:13:5a:d5:
d0:38:a8:73:50:4f:d7:50:d2:d5:50:9c:31:5b:d9:
e8:f7:27:ad:fc:40:ee:c0:14:05:71:9b:2a:71:55:
b3:bf:8c:12:a5:25:64:31:3c:5b:e1:01:aa:13:eb:
0e:d2:e7:00:d8:bc:f2:45:1b:55:34:71:e3:12:e6:
12:3a:59:3e:4d:61:d6:94:4b:e1:78:d9:84:b5:53:
0c:58:22:4e:63:29:cb:e8:61:6a:a7:f1:48:1e:90:
27:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:32:27:93:6F:08:41:F5:8C:80:94:6A:BA:49:E8:EB:8C:BE:DB:D0
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/PTInk28IQfWMgJRqukno64y-29A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.15.242.0-80.15.255.255
90.84.143.0/24
90.84.148.0/24
90.84.153.0/24
IPv6:
2a01:c9c0:c000::/48
2a01:c9c0:c002::/48
2a01:c9c0:c004::/48
2a01:c9c0:c006::/48
2a01:c9c0:c008::/48
2a01:c9c0:c00a::/48
2a01:c9c0:c00c::/48
2a01:c9c0:c010::/48
2a01:c9c0:c012::/48
2a01:c9c0:c014::/48
2a01:c9c0:c016::/48
2a01:c9c0:c018::/48
2a01:c9c0:c01a::/48
2a01:c9c0:c01c::/48
2a01:c9c0:c01e::/48
Signature Algorithm: sha256WithRSAEncryption
44:c7:41:67:a2:55:d5:9d:b1:c7:7b:dd:d3:8f:5a:35:d1:f6:
e3:51:c4:a4:da:56:73:04:67:5c:65:ba:98:fb:e0:90:f1:88:
4d:a8:13:17:2a:24:92:b0:04:5e:87:74:75:ce:e7:7f:94:42:
82:84:a7:aa:29:4a:48:97:0c:4b:18:00:44:e7:1f:bd:2f:ce:
57:18:7d:a7:3a:85:1d:e0:bc:0c:58:7c:a5:e1:03:70:23:14:
2a:00:9e:75:2b:76:23:54:78:ae:9d:85:42:d4:d8:34:ce:9f:
b9:7e:d9:cc:96:0d:8a:9f:92:9f:2e:9e:45:e9:36:20:14:27:
89:63:69:93:c4:0a:29:b0:db:0f:84:1f:9d:28:9e:10:88:87:
8a:68:61:f1:ea:01:79:fb:56:65:1c:75:b7:78:9f:a3:34:41:
82:f8:a4:a6:5b:fa:b1:71:67:aa:88:bd:83:fd:a4:ad:7d:82:
4e:da:78:93:3e:02:39:0f:a4:ad:78:12:52:1c:27:5d:03:d1:
81:af:1b:c0:8c:9b:1b:03:cd:99:8a:85:02:eb:72:53:ce:a8:
67:f4:7e:12:32:07:2a:2a:92:b1:17:3e:4d:00:8a:2e:1a:ac:
4b:14:03:ba:16:a5:82:45:56:8c:01:de:6f:29:ac:2f:da:45:
61:67:1e:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org