Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/PLDMojiGYHwh4Lo-uY3vUrAf21U.roa
File: PLDMojiGYHwh4Lo-uY3vUrAf21U.roa (raw, json)
Hash identifier: yxEmPu6Jec24tQjaDM62+Hs/qREDMIiK0+E+S7Brgww=
Subject key identifier: 3C:B0:CC:A2:38:86:60:7C:21:E0:BA:3E:B9:8D:EF:52:B0:1F:DB:55
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018FC4436709866AD5E0FDD6554C66DFC5EA
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/PLDMojiGYHwh4Lo-uY3vUrAf21U.roa
Signing time: Wed 29 May 2024 12:11:42 +0000
ROA not before: Wed 29 May 2024 12:11:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a11:f240::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 01 Jun 2024 09:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c4:43:67:09:86:6a:d5:e0:fd:d6:55:4c:66:df:c5:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 29 12:11:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3cb0cca23886607c21e0ba3eb98def52b01fdb55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:83:a6:84:8d:9d:02:0c:b6:eb:b9:90:15:09:
7a:55:07:4c:f8:62:4e:27:45:b7:9b:26:81:4a:11:
1d:1c:eb:9a:14:f7:99:c8:a7:65:3a:43:9b:96:4f:
98:1b:9e:62:2c:47:d1:78:e8:1e:b2:d9:e4:0c:6c:
b8:e7:51:07:eb:c1:ca:41:ac:97:bf:d8:aa:95:20:
5e:ca:5d:34:21:9a:83:85:1d:c3:0f:80:11:a9:4a:
9d:65:56:ba:97:96:77:00:fe:4f:9b:54:5e:69:f8:
0c:7c:d8:ae:52:95:3f:ff:bd:51:14:86:24:36:21:
8c:b1:f5:e0:68:73:2c:c4:0d:eb:82:ae:90:32:bf:
dd:e1:14:0a:bb:c4:55:5b:73:da:bc:1f:dc:c8:c4:
cc:e8:72:59:24:da:7c:82:55:39:92:7b:78:30:a8:
a5:f6:4a:ad:9f:c5:cb:7d:ac:a2:24:bb:2f:6a:f4:
86:d6:ae:5e:58:5d:59:0a:ab:13:af:5b:73:41:43:
87:d4:62:d5:1b:60:b5:0f:95:c3:20:a8:e3:7a:c6:
bb:0a:d6:bd:9d:87:92:4a:f6:dd:ed:52:e4:e3:69:
71:2e:a8:2a:87:c6:56:a4:39:ad:92:f2:06:68:eb:
b1:ad:c5:51:15:2a:fa:f9:8d:a2:b2:6b:0b:a5:a1:
7a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B0:CC:A2:38:86:60:7C:21:E0:BA:3E:B9:8D:EF:52:B0:1F:DB:55
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/PLDMojiGYHwh4Lo-uY3vUrAf21U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:cac0::/29
2a0a:e2c0::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:f140::/29
2a11:f240::/29
2a12:440::/29
2a12:1900::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
Signature Algorithm: sha256WithRSAEncryption
6a:7f:d0:41:c1:95:80:a1:41:b3:1b:5e:9e:5f:27:93:0d:37:
ba:e2:79:cb:81:87:01:17:af:09:63:43:b2:0a:fa:60:36:60:
68:e2:59:c2:2a:f5:73:73:08:d4:91:a2:89:d7:ef:89:9a:60:
6f:2a:63:30:3f:06:fa:5c:97:ef:2e:b4:89:b4:a5:51:12:f6:
2b:16:3e:87:1b:59:b9:31:93:8d:2a:a0:58:fc:68:f7:a8:92:
23:d3:30:f4:a3:c7:2e:c8:1c:ba:15:a2:08:9d:aa:9b:25:f3:
ca:e2:9c:ea:ea:54:5b:1c:d8:57:a8:dd:42:b7:4d:aa:28:40:
38:f9:b9:35:5d:28:d0:42:10:f8:cb:b0:e8:0a:c5:38:5f:f8:
35:c9:2e:76:86:fc:1e:cb:ef:01:0c:4b:1c:27:85:04:23:b9:
a2:26:87:b7:23:71:8a:4c:a1:82:71:37:9e:88:5d:41:ec:8e:
6d:9d:7d:b4:48:b7:b7:5b:30:0e:cd:a5:b6:df:81:ce:f7:e4:
aa:1a:28:ab:23:1c:71:af:ea:31:bf:e0:a3:d1:74:5d:2c:d2:
7c:ad:99:d2:fd:ea:37:8d:4d:7e:fd:f0:3f:5c:3b:17:b7:81:
2d:d6:3a:33:0a:96:1d:3a:b9:38:35:0d:d8:a9:43:fb:c4:94:
76:01:1e:49
-----BEGIN CERTIFICATE-----
MIIFxjCCBK6gAwIBAgISAY/EQ2cJhmrV4P3WVUxm38XqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQwNTI5MTIxMTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2IwY2NhMjM4ODY2MDdjMjFlMGJhM2ViOThkZWY1MmIwMWZkYjU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4OmhI2dAgy267mQFQl6VQdM+GJO
J0W3myaBShEdHOuaFPeZyKdlOkOblk+YG55iLEfReOgestnkDGy451EH68HKQayX
v9iqlSBeyl00IZqDhR3DD4ARqUqdZVa6l5Z3AP5Pm1ReafgMfNiuUpU//71RFIYk
NiGMsfXgaHMsxA3rgq6QMr/d4RQKu8RVW3PavB/cyMTM6HJZJNp8glU5knt4MKil
9kqtn8XLfayiJLsvavSG1q5eWF1ZCqsTr1tzQUOH1GLVG2C1D5XDIKjjesa7Cta9
nYeSSvbd7VLk42lxLqgqh8ZWpDmtkvIGaOuxrcVRFSr6+Y2ismsLpaF6/QIDAQAB
o4IC0jCCAs4wHQYDVR0OBBYEFDywzKI4hmB8IeC6PrmN71KwH9tVMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvUExETW9qaUdZSHdoNExvLXVZM3ZVckFmMjFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHnBggrBgEFBQcBBwEB/wSB1zCB1DASBAIAATAMAwQCuagc
AwQCucmIMIG9BAIAAjCBtgMFAyoGysADBQMqCuLAAwUDKg/UgAMFAyoRL0ADBQMq
ETtAAwUDKhFyQAMFAyoRlgADBQMqEfFAAwUDKhHyQAMFAyoSBEADBQMqEhkAAwUD
KhJmQAMFAyoSZ0ADBQMqEm9AAwUDKhJ3QAMFAyoSjsADBQMqEszAAwUDKhLiQAMF
AyoS8MADBQMqE7oAAwUDKhPawAMFAyoUAMADBQMqFAFAAwUDKhQBwAMFAyoUCAAD
BQMqFA9AMA0GCSqGSIb3DQEBCwUAA4IBAQBqf9BBwZWAoUGzG16eXyeTDTe64nnL
gYcBF68JY0OyCvpgNmBo4lnCKvVzcwjUkaKJ1++JmmBvKmMwPwb6XJfvLrSJtKVR
EvYrFj6HG1m5MZONKqBY/Gj3qJIj0zD0o8cuyBy6FaIInaqbJfPK4pzq6lRbHNhX
qN1Ct02qKEA4+bk1XSjQQhD4y7DoCsU4X/g1yS52hvwey+8BDEscJ4UEI7miJoe3
I3GKTKGCcTeeiF1B7I5tnX20SLe3WzAOzaW234HO9+SqGiirIxxxr+oxv+Cj0XRd
LNJ8rZnS/eo3jU1+/fA/XDsXt4Et1jozCpYdOrk4NQ3YqUP7xJR2AR5J
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org