Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pcLqiuj_iKhBoB6zvMAerRInsWk.roa
File: pcLqiuj_iKhBoB6zvMAerRInsWk.roa (raw, json)
Hash identifier: DQiRjUQtrYvYISI7UnA9qQZrqXhJIM9o1VHqLrTKFN0=
Subject key identifier: A5:C2:EA:8A:E8:FF:88:A8:41:A0:1E:B3:BC:C0:1E:AD:12:27:B1:69
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019146A73255B33EA1C0CB140348988C5416
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pcLqiuj_iKhBoB6zvMAerRInsWk.roa
Signing time: Mon 12 Aug 2024 12:54:08 +0000
ROA not before: Mon 12 Aug 2024 12:54:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57634
IP address blocks: 31.13.192.0/24 maxlen: 24
31.13.199.0/24 maxlen: 24
31.13.209.0/24 maxlen: 24
85.217.168.0/23 maxlen: 23
87.120.67.0/24 maxlen: 24
87.120.107.0/24 maxlen: 24
87.120.156.0/23 maxlen: 23
87.121.32.0/24 maxlen: 24
87.121.144.0/23 maxlen: 23
93.123.9.0/24 maxlen: 24
94.156.0.0/23 maxlen: 23
94.156.7.0/24 maxlen: 24
94.156.76.0/24 maxlen: 24
94.156.92.0/24 maxlen: 24
94.156.164.0/23 maxlen: 23
94.156.170.0/24 maxlen: 24
94.156.171.0/24 maxlen: 24
212.73.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 08:45:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:46:a7:32:55:b3:3e:a1:c0:cb:14:03:48:98:8c:54:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 12 12:54:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a5c2ea8ae8ff88a841a01eb3bcc01ead1227b169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d1:97:9c:2f:c5:d2:0c:84:10:62:d5:5e:ca:
14:14:aa:b9:e9:75:40:79:3c:0f:48:d2:50:32:a7:
4f:5f:e3:82:4e:1e:69:6e:1a:85:a5:ae:d2:fd:08:
37:b4:54:14:cb:74:c5:df:65:dd:b0:ba:82:81:be:
91:06:10:de:3f:13:8b:68:43:ee:57:c5:79:c6:ce:
00:68:60:1b:76:2d:25:f7:c3:d9:7c:7c:11:37:66:
18:c9:51:6d:44:29:d6:d5:ea:c8:b2:3b:56:47:95:
33:e4:db:3f:01:7b:e4:6b:f4:1e:a8:7d:f6:db:66:
ea:f1:0a:43:66:46:c7:46:a2:1a:27:da:78:3a:60:
4a:ad:e9:75:6c:90:80:3a:f0:dc:56:97:96:d5:4c:
cd:2f:f5:40:fd:44:82:f7:13:5b:f2:6d:2d:29:8a:
64:c9:91:13:7a:35:bc:d4:de:33:13:89:86:76:ae:
d5:8b:18:25:68:cc:d6:35:0f:60:29:d7:c6:de:8b:
ba:32:db:36:06:10:44:36:cc:7d:84:ca:d3:23:e5:
5d:63:cc:4e:97:2d:8a:38:9a:c2:1b:2a:9b:0d:87:
33:66:7b:23:67:e0:b1:ed:e5:65:ca:e6:f7:c4:31:
b7:77:0e:29:2f:17:26:0d:ce:68:1b:87:56:74:12:
69:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:C2:EA:8A:E8:FF:88:A8:41:A0:1E:B3:BC:C0:1E:AD:12:27:B1:69
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pcLqiuj_iKhBoB6zvMAerRInsWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.192.0/24
31.13.199.0/24
31.13.209.0/24
85.217.168.0/23
87.120.67.0/24
87.120.107.0/24
87.120.156.0/23
87.121.32.0/24
87.121.144.0/23
93.123.9.0/24
94.156.0.0/23
94.156.7.0/24
94.156.76.0/24
94.156.92.0/24
94.156.164.0/23
94.156.170.0/23
212.73.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:50:2e:6c:f5:f9:94:7d:5d:2d:73:91:59:6b:52:23:cb:58:
55:2a:81:47:d5:09:81:fd:c0:a2:aa:ca:87:6a:87:ad:ef:18:
c3:79:5e:46:4d:a3:98:8c:c4:3f:fb:02:c8:40:d9:cc:92:89:
d0:d2:40:27:72:fe:ee:db:c6:3b:5d:af:bd:1e:b7:04:b1:ef:
b3:f4:00:b6:42:04:80:6d:4e:e5:44:c4:95:e5:88:20:3d:d7:
ff:ec:1d:57:f3:58:3c:1d:bb:b1:15:ef:60:b0:04:99:40:52:
7d:9f:53:5f:ef:92:37:94:44:64:91:fb:81:c4:09:cc:c7:e0:
63:ef:2b:a1:bd:ad:35:a9:35:be:bb:46:74:0c:87:f7:20:12:
7b:dd:27:e8:fc:f8:84:c7:4b:ec:11:35:bb:b8:ad:e5:01:97:
4a:2f:f8:73:a8:94:a9:d6:1b:93:27:fc:f7:29:a0:70:42:c9:
1b:ec:9a:0b:24:7e:15:df:fd:ce:5b:16:e9:e8:c5:e9:a0:b9:
f2:cf:0e:de:62:11:ec:ac:8b:e3:9f:c7:07:05:84:09:2f:53:
d8:ce:63:af:44:ea:61:0a:4a:3b:e5:bf:12:17:bf:e2:75:02:
f6:95:07:88:ef:c4:2f:8a:34:e5:9a:3e:ec:42:9d:06:a5:0d:
6a:df:f4:c0
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAZFGpzJVsz6hwMsUA0iYjFQWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwODEyMTI1NDA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNWMyZWE4YWU4ZmY4OGE4NDFhMDFlYjNiY2MwMWVhZDEyMjdiMTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdGXnC/F0gyEEGLVXsoUFKq56XVA
eTwPSNJQMqdPX+OCTh5pbhqFpa7S/Qg3tFQUy3TF32XdsLqCgb6RBhDePxOLaEPu
V8V5xs4AaGAbdi0l98PZfHwRN2YYyVFtRCnW1erIsjtWR5Uz5Ns/AXvka/QeqH32
22bq8QpDZkbHRqIaJ9p4OmBKrel1bJCAOvDcVpeW1UzNL/VA/USC9xNb8m0tKYpk
yZETejW81N4zE4mGdq7VixglaMzWNQ9gKdfG3ou6Mts2BhBENsx9hMrTI+VdY8xO
ly2KOJrCGyqbDYczZnsjZ+Cx7eVlyub3xDG3dw4pLxcmDc5oG4dWdBJpGQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFKXC6oro/4ioQaAes7zAHq0SJ7FpMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvcGNMcWl1al9pS2hCb0I2enZNQWVyUkluc1drLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQAHw3AAwQA
Hw3HAwQAHw3RAwQBVdmoAwQAV3hDAwQAV3hrAwQBV3icAwQAV3kgAwQBV3mQAwQA
XXsJAwQBXpwAAwQAXpwHAwQAXpxMAwQAXpxcAwQBXpykAwQBXpyqAwQA1EmXMA0G
CSqGSIb3DQEBCwUAA4IBAQChUC5s9fmUfV0tc5FZa1Ijy1hVKoFH1QmB/cCiqsqH
aoet7xjDeV5GTaOYjMQ/+wLIQNnMkonQ0kAncv7u28Y7Xa+9HrcEse+z9AC2QgSA
bU7lRMSV5YggPdf/7B1X81g8HbuxFe9gsASZQFJ9n1Nf75I3lERkkfuBxAnMx+Bj
7yuhva01qTW+u0Z0DIf3IBJ73Sfo/PiEx0vsETW7uK3lAZdKL/hzqJSp1huTJ/z3
KaBwQskb7JoLJH4V3/3OWxbp6MXpoLnyzw7eYhHsrIvjn8cHBYQJL1PYzmOvROph
Cko75b8SF7/idQL2lQeI78QvijTlmj7sQp0GpQ1q3/TA
-----END CERTIFICATE-----
Generated at Wed Aug 14 12:20:47 2024 by rpki-client on console-ams.rpki-client.org