Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PWQ_wRAZuvvYtD_-8m1WQfFK7Ek.roa
File: PWQ_wRAZuvvYtD_-8m1WQfFK7Ek.roa (raw, json)
Hash identifier: Q1NR3uXnpVIdOeF0hBmcnyZ0bJsxh3mWM1Uok7+txTo=
Subject key identifier: 3D:64:3F:C1:10:19:BA:FB:D8:B4:3F:FE:F2:6D:56:41:F1:4A:EC:49
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018B65BF94D48372A545111485FB215B396B
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PWQ_wRAZuvvYtD_-8m1WQfFK7Ek.roa
Signing time: Wed 25 Oct 2023 07:32:16 +0000
ROA not before: Wed 25 Oct 2023 07:32:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212552
IP address blocks: 212.90.102.0/23 maxlen: 24
185.215.244.0/23 maxlen: 24
103.75.196.0/22 maxlen: 24
46.249.98.0/23 maxlen: 24
82.115.16.0/24 maxlen: 24
193.36.84.0/23 maxlen: 24
82.115.24.0/22 maxlen: 24
82.115.20.0/23 maxlen: 24
46.249.100.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 13:28:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:65:bf:94:d4:83:72:a5:45:11:14:85:fb:21:5b:39:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Oct 25 07:32:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d643fc11019bafbd8b43ffef26d5641f14aec49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c8:06:d7:17:71:27:09:4f:47:18:d2:f1:00:
ce:c5:99:be:84:37:ab:20:f0:a1:91:33:30:5b:54:
0e:2e:32:98:6c:48:e7:3a:ff:25:96:38:4a:f6:d1:
da:f5:72:94:a3:7d:95:8b:13:d1:cd:52:ed:f6:a5:
4f:fc:d2:2e:15:35:b4:4d:6b:a9:b3:56:c0:a2:c8:
96:91:a5:fe:1d:f5:2b:83:0d:47:16:5b:13:d3:61:
64:47:57:02:de:9b:ef:94:cb:08:22:00:5c:a9:ef:
d7:88:15:29:ed:8c:ad:1e:12:40:9f:f7:38:9a:d6:
33:6c:d2:d6:6b:e5:b7:29:67:b9:77:9c:3d:43:9d:
aa:c5:80:55:aa:c6:ee:e3:6e:48:4c:c0:87:c9:1d:
eb:fa:c1:ef:85:23:64:84:46:2a:9d:82:ef:9c:8f:
f6:54:26:4c:ef:d6:ee:eb:a8:40:8c:c7:24:b3:6e:
5d:5e:cd:57:21:56:b3:b1:7c:0e:78:a2:27:cb:e1:
60:cd:d2:64:ac:08:eb:64:fe:2d:60:bb:3c:f8:6c:
19:7f:cd:ef:55:12:2f:3b:ef:78:3b:73:16:ff:16:
73:5e:7e:d4:ae:0f:87:91:83:c2:91:0d:37:b9:29:
eb:b8:7f:19:c7:ca:5b:81:3e:da:09:7f:ff:8c:7d:
5e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:64:3F:C1:10:19:BA:FB:D8:B4:3F:FE:F2:6D:56:41:F1:4A:EC:49
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PWQ_wRAZuvvYtD_-8m1WQfFK7Ek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.249.98.0-46.249.103.255
82.115.16.0/24
82.115.20.0/23
82.115.24.0/22
103.75.196.0/22
185.215.244.0/23
193.36.84.0/23
212.90.102.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:7d:59:b9:ff:2d:98:23:7a:2b:c6:c5:f7:fe:8f:a7:34:70:
67:c2:ca:c0:67:87:6c:f9:aa:1d:18:c8:17:e5:3b:6f:01:7a:
c9:9e:17:d4:03:c6:24:b3:3d:60:fe:6f:8a:41:a5:90:33:28:
59:ad:e7:bf:06:8d:17:49:97:17:0a:66:1d:94:89:7b:03:ad:
80:b9:b3:a3:6e:8d:b5:d0:53:91:4a:a0:9c:e2:c9:ec:ce:66:
15:5f:3c:f5:e0:32:36:68:19:b3:72:c9:5e:25:cc:6d:69:3a:
59:06:4a:dd:21:4c:bc:84:b5:d9:b8:b1:9b:d2:52:7b:20:01:
f6:a1:94:27:94:2c:e7:e5:1e:b5:46:f4:f5:4f:e0:cb:89:2f:
57:ae:a9:80:7b:3b:f5:61:6c:53:7d:bb:e4:ca:fc:1f:85:e5:
d5:2e:48:52:d4:3d:f4:2d:39:c8:7a:14:1b:24:0b:dc:5d:c9:
b4:91:a0:46:a8:28:aa:08:15:54:f4:7f:7b:6f:5e:ea:46:7b:
26:77:ca:40:22:4c:dd:ea:f7:24:50:b2:58:8c:a0:46:4a:ef:
f6:03:39:bf:26:a8:f8:c9:82:72:01:ac:8c:01:1b:4d:13:9a:
9e:4a:52:86:c2:75:ad:da:db:af:fc:ca:9e:f2:9c:12:66:b4:
55:72:c1:2b
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgISAYtlv5TUg3KlRREUhfshWzlrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2
NWE0NzgwHhcNMjMxMDI1MDczMjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDY0M2ZjMTEwMTliYWZiZDhiNDNmZmVmMjZkNTY0MWYxNGFlYzQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkMgG1xdxJwlPRxjS8QDOxZm+hDer
IPChkTMwW1QOLjKYbEjnOv8lljhK9tHa9XKUo32VixPRzVLt9qVP/NIuFTW0TWup
s1bAosiWkaX+HfUrgw1HFlsT02FkR1cC3pvvlMsIIgBcqe/XiBUp7YytHhJAn/c4
mtYzbNLWa+W3KWe5d5w9Q52qxYBVqsbu425ITMCHyR3r+sHvhSNkhEYqnYLvnI/2
VCZM79bu66hAjMcks25dXs1XIVazsXwOeKIny+FgzdJkrAjrZP4tYLs8+GwZf83v
VRIvO+94O3MW/xZzXn7Urg+HkYPCkQ03uSnruH8Zx8pbgT7aCX//jH1eiwIDAQAB
o4ICOzCCAjcwHQYDVR0OBBYEFD1kP8EQGbr72LQ//vJtVkHxSuxJMB8GA1UdIwQY
MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt
ZmUwNjU5MTc2YTU2LzEvUFdRX3dSQVp1dnZZdERfLThtMVdRZkZLN0VrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2
LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4MAwDBAEu+WID
BAMu+WADBABScxADBAFScxQDBAJScxgDBAJnS8QDBAG51/QDBAHBJFQDBAHUWmYw
DQYJKoZIhvcNAQELBQADggEBAJ19Wbn/LZgjeivGxff+j6c0cGfCysBnh2z5qh0Y
yBflO28BesmeF9QDxiSzPWD+b4pBpZAzKFmt578GjRdJlxcKZh2UiXsDrYC5s6Nu
jbXQU5FKoJziyezOZhVfPPXgMjZoGbNyyV4lzG1pOlkGSt0hTLyEtdm4sZvSUnsg
AfahlCeULOflHrVG9PVP4MuJL1euqYB7O/VhbFN9u+TK/B+F5dUuSFLUPfQtOch6
FBskC9xdybSRoEaoKKoIFVT0f3tvXupGeyZ3ykAiTN3q9yRQsliMoEZK7/YDOb8m
qPjJgnIBrIwBG00Tmp5KUobCda3a26/8yp7ynBJmtFVywSs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org