Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/db3741-434d-4b5a-890b-2058c70367aa/1/PF3eq5BpvkVryZxwQF9Xo65PXTw.roa
File: PF3eq5BpvkVryZxwQF9Xo65PXTw.roa (raw, json)
Hash identifier: RNpNgBOqXRH10Za6JguERzF2L32kEgVug/PnfjoFFfU=
Subject key identifier: 3C:5D:DE:AB:90:69:BE:45:6B:C9:9C:70:40:5F:57:A3:AE:4F:5D:3C
Certificate issuer: /CN=3ec78d8226cb5aaff15c67525af2b8abcb7b5f92
Certificate serial: 01856C41200DACD5CC830713498922DFA305
Authority key identifier: 3E:C7:8D:82:26:CB:5A:AF:F1:5C:67:52:5A:F2:B8:AB:CB:7B:5F:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PseNgibLWq_xXGdSWvK4q8t7X5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/db3741-434d-4b5a-890b-2058c70367aa/1/PF3eq5BpvkVryZxwQF9Xo65PXTw.roa
Signing time: Sun 01 Jan 2023 07:34:45 +0000
ROA not before: Sun 01 Jan 2023 07:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44858
IP address blocks: 91.245.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:20:0d:ac:d5:cc:83:07:13:49:89:22:df:a3:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec78d8226cb5aaff15c67525af2b8abcb7b5f92
Validity
Not Before: Jan 1 07:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c5ddeab9069be456bc99c70405f57a3ae4f5d3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c9:f9:0d:81:7a:7c:dd:cd:b1:82:7e:98:01:
c3:3c:e4:68:ed:fc:25:60:27:98:33:58:5a:32:93:
ec:97:c2:82:fc:01:94:9c:1d:b5:bb:63:bb:5b:60:
0c:f4:a5:00:c1:64:67:75:4e:34:dd:f1:95:13:e8:
e9:ba:c9:ba:ed:63:f6:ec:f3:64:cb:35:94:63:06:
bf:9e:e1:68:1d:7b:f4:ac:de:a0:4b:6e:20:f0:02:
49:6a:e5:a5:d5:54:fc:a4:26:31:6e:e8:d6:93:d5:
b4:77:a5:cc:cb:e5:0e:74:d4:ef:fe:f0:90:6f:3c:
67:7a:c7:54:0c:d1:d7:bc:37:0c:d4:4b:dd:27:d8:
06:74:40:7b:ef:5c:db:c6:6f:9e:6c:4c:de:6a:de:
0b:00:6e:0d:cb:3a:8f:0b:dd:64:bb:ce:5e:9f:e2:
67:52:e1:99:a0:06:20:93:b3:36:12:78:ff:0a:64:
38:39:e0:c4:10:e9:3c:ab:f4:3b:92:f2:8e:c6:22:
0f:f6:2d:a7:bd:0e:49:c2:8d:5e:74:04:6e:5e:08:
0e:ed:36:8c:44:97:dc:55:0d:7e:9c:15:0d:ed:06:
8a:c0:91:59:8b:e7:97:5b:db:d0:8d:66:8a:7c:b9:
fc:68:96:aa:5b:63:c9:dc:42:20:45:5a:62:6b:6b:
26:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5D:DE:AB:90:69:BE:45:6B:C9:9C:70:40:5F:57:A3:AE:4F:5D:3C
X509v3 Authority Key Identifier:
keyid:3E:C7:8D:82:26:CB:5A:AF:F1:5C:67:52:5A:F2:B8:AB:CB:7B:5F:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PseNgibLWq_xXGdSWvK4q8t7X5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/db3741-434d-4b5a-890b-2058c70367aa/1/PF3eq5BpvkVryZxwQF9Xo65PXTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/db3741-434d-4b5a-890b-2058c70367aa/1/PseNgibLWq_xXGdSWvK4q8t7X5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.245.240.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:18:67:27:34:b8:0c:6c:18:81:b1:87:9d:90:44:54:f1:29:
1a:9b:17:5d:1f:d6:c2:42:9e:54:65:8e:31:90:6d:8a:2b:d5:
52:ab:5a:6f:98:ca:3b:c7:df:fb:27:44:8e:42:7b:dd:a2:9f:
a0:dc:53:cf:09:c5:15:bb:12:5c:0f:c8:ee:62:99:14:b4:3c:
37:83:a5:b0:9f:88:8a:8a:fe:0c:29:b5:9e:88:ca:be:b6:0f:
fa:c4:0a:c3:12:33:2a:b4:9e:41:bc:0e:cc:4c:47:f0:21:3e:
22:be:d6:57:8f:94:52:fc:b8:72:bc:dd:6e:d5:c7:e7:f4:ba:
0d:c6:5d:27:8d:c9:9f:89:dc:30:b9:71:a3:08:87:f9:19:bb:
57:4a:41:e3:38:3b:a9:12:a5:bc:f8:46:fa:93:27:1a:f1:8b:
74:42:b2:8a:2a:4c:82:01:0f:70:da:be:4e:66:cb:71:96:04:
b0:d8:ec:29:63:d1:b2:16:b0:ea:f3:e2:1c:a9:4e:6e:0f:a6:
a2:1d:c1:43:33:96:c6:5a:35:41:35:36:03:27:ee:e6:6e:93:
3e:7c:ea:1e:b3:81:a8:6b:5f:3d:ab:27:75:04:e5:84:b8:e1:
60:68:ed:53:2d:3b:e9:70:fc:c9:26:54:c4:4e:8a:f6:a0:35:
2c:01:58:1a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsQSANrNXMgwcTSYki36MFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYzc4ZDgyMjZjYjVhYWZmMTVjNjc1MjVhZjJiOGFiY2I3
YjVmOTIwHhcNMjMwMTAxMDczNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzVkZGVhYjkwNjliZTQ1NmJjOTljNzA0MDVmNTdhM2FlNGY1ZDNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8n5DYF6fN3NsYJ+mAHDPORo7fwl
YCeYM1haMpPsl8KC/AGUnB21u2O7W2AM9KUAwWRndU403fGVE+jpusm67WP27PNk
yzWUYwa/nuFoHXv0rN6gS24g8AJJauWl1VT8pCYxbujWk9W0d6XMy+UOdNTv/vCQ
bzxnesdUDNHXvDcM1EvdJ9gGdEB771zbxm+ebEzeat4LAG4NyzqPC91ku85en+Jn
UuGZoAYgk7M2Enj/CmQ4OeDEEOk8q/Q7kvKOxiIP9i2nvQ5Jwo1edARuXggO7TaM
RJfcVQ1+nBUN7QaKwJFZi+eXW9vQjWaKfLn8aJaqW2PJ3EIgRVpia2sm3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDxd3quQab5Fa8mccEBfV6OuT108MB8GA1UdIwQY
MBaAFD7HjYImy1qv8VxnUlryuKvLe1+SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHNlTmdpYkxXcV94WEdkU1d2SzRxOHQ3WDVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9kYjM3NDEtNDM0ZC00YjVhLTg5MGIt
MjA1OGM3MDM2N2FhLzEvUEYzZXE1QnB2a1ZyeVp4d1FGOVhvNjVQWFR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS9kYjM3NDEtNDM0ZC00YjVhLTg5MGItMjA1OGM3MDM2N2Fh
LzEvUHNlTmdpYkxXcV94WEdkU1d2SzRxOHQ3WDVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW/XwMA0G
CSqGSIb3DQEBCwUAA4IBAQAtGGcnNLgMbBiBsYedkERU8SkamxddH9bCQp5UZY4x
kG2KK9VSq1pvmMo7x9/7J0SOQnvdop+g3FPPCcUVuxJcD8juYpkUtDw3g6Wwn4iK
iv4MKbWeiMq+tg/6xArDEjMqtJ5BvA7MTEfwIT4ivtZXj5RS/LhyvN1u1cfn9LoN
xl0njcmfidwwuXGjCIf5GbtXSkHjODupEqW8+Eb6kyca8Yt0QrKKKkyCAQ9w2r5O
ZstxlgSw2OwpY9GyFrDq8+IcqU5uD6aiHcFDM5bGWjVBNTYDJ+7mbpM+fOoes4Go
a189qyd1BOWEuOFgaO1TLTvpcPzJJlTETor2oDUsAVga
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:57 2024 by rpki-client on console-fra.rpki-client.org