Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/PRZ6lPM0WxHNA4_eSNjuynLMKbY.roa
File: PRZ6lPM0WxHNA4_eSNjuynLMKbY.roa (raw, json)
Hash identifier: LIRnO0k6715dt/UtvyTfXMjLRDyesdBw8tXK28vHHpg=
Subject key identifier: 3D:16:7A:94:F3:34:5B:11:CD:03:8F:DE:48:D8:EE:CA:72:CC:29:B6
Certificate issuer: /CN=97893182b16718983bc008c8d087f8ddca3d8614
Certificate serial: 01856F9DB411A5FA069864984CEA459B90C7
Authority key identifier: 97:89:31:82:B1:67:18:98:3B:C0:08:C8:D0:87:F8:DD:CA:3D:86:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l4kxgrFnGJg7wAjI0If43co9hhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/PRZ6lPM0WxHNA4_eSNjuynLMKbY.roa
Signing time: Sun 01 Jan 2023 23:14:44 +0000
ROA not before: Sun 01 Jan 2023 23:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198018
IP address blocks: 185.177.131.0/24 maxlen: 24
185.177.129.0/24 maxlen: 24
194.153.186.0/24 maxlen: 24
2a0b:1306:7::/48 maxlen: 48
2a0b:1301::/34 maxlen: 34
2a0b:1301:4000::/34 maxlen: 34
2a0b:1306:2::/48 maxlen: 48
2a0b:1306:1::/48 maxlen: 48
2a0b:1306:c::/48 maxlen: 48
2a0b:1301:8000::/48 maxlen: 48
2a0b:1301:8001::/48 maxlen: 48
2a0b:1306:8::/48 maxlen: 48
2a0b:1306:4::/48 maxlen: 48
2a0b:1300::/34 maxlen: 34
2a0b:1306:6::/48 maxlen: 48
2a0b:1300:8000::/48 maxlen: 48
2a0b:1306::/48 maxlen: 48
2a0b:1306:400::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:b4:11:a5:fa:06:98:64:98:4c:ea:45:9b:90:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97893182b16718983bc008c8d087f8ddca3d8614
Validity
Not Before: Jan 1 23:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d167a94f3345b11cd038fde48d8eeca72cc29b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:64:f8:e9:5f:4c:4c:db:61:c8:59:88:25:8d:
85:ba:bb:5a:f9:69:13:1e:cc:f2:47:b4:bb:8b:87:
21:d1:ab:62:c9:0c:dc:6d:b2:b0:7d:e1:bd:ca:ca:
3d:1f:97:9d:90:9d:d8:d0:17:a6:e1:35:8d:b2:b2:
ea:79:76:9a:df:8f:59:dd:17:c1:92:d7:da:74:eb:
a3:3b:a9:04:6a:47:9b:7e:d1:33:34:40:0f:dd:d6:
2a:c2:00:00:8f:19:c9:89:ba:44:0c:f3:5f:27:68:
09:bd:47:99:f6:c1:42:e1:1a:12:2c:b3:3d:17:ff:
22:7c:28:81:d7:3d:cf:25:b4:91:05:02:64:9c:e1:
03:cd:03:bc:30:54:43:0a:af:e7:41:4b:d1:3a:01:
de:31:c4:8e:d6:07:ff:59:76:3b:c4:bf:a0:dd:50:
f7:6d:eb:d5:27:94:59:b1:35:b6:0c:36:5c:8e:bf:
fb:66:a1:f4:bb:a9:92:86:d1:36:8c:f5:38:15:06:
36:ed:2c:8e:9d:06:d6:17:db:ec:4b:2f:06:1c:c9:
d7:46:7c:e4:24:61:ac:d8:1e:75:9a:d4:f5:0d:fc:
32:d9:97:2e:f8:5e:c6:35:42:cc:3c:4f:9b:e3:b5:
0d:9f:65:86:d6:bb:7d:6a:c8:3c:16:e4:20:3e:cd:
d6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:16:7A:94:F3:34:5B:11:CD:03:8F:DE:48:D8:EE:CA:72:CC:29:B6
X509v3 Authority Key Identifier:
keyid:97:89:31:82:B1:67:18:98:3B:C0:08:C8:D0:87:F8:DD:CA:3D:86:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l4kxgrFnGJg7wAjI0If43co9hhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/PRZ6lPM0WxHNA4_eSNjuynLMKbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/l4kxgrFnGJg7wAjI0If43co9hhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.129.0/24
185.177.131.0/24
194.153.186.0/24
IPv6:
2a0b:1300::/34
2a0b:1300:8000::/48
2a0b:1301::-2a0b:1301:8001:ffff:ffff:ffff:ffff:ffff
2a0b:1306::-2a0b:1306:2:ffff:ffff:ffff:ffff:ffff
2a0b:1306:4::/48
2a0b:1306:6::-2a0b:1306:8:ffff:ffff:ffff:ffff:ffff
2a0b:1306:c::/48
2a0b:1306:400::/48
Signature Algorithm: sha256WithRSAEncryption
23:fc:67:36:6c:22:88:c5:9c:2e:84:b1:29:65:59:aa:b2:12:
1c:28:0a:b3:3b:84:68:ff:8c:7a:21:76:0d:2b:ba:c7:ef:52:
ce:2e:9d:f9:b1:15:be:3f:93:f0:b2:12:94:06:45:9b:55:6c:
c0:03:42:d2:23:c6:ce:5c:05:11:7b:c1:da:5b:a9:d3:73:e7:
6d:7b:f5:c8:24:94:12:52:bf:99:b5:8c:a3:62:60:be:fc:cb:
91:56:46:02:59:44:46:d9:5c:91:15:47:28:14:dc:d8:61:53:
86:27:63:5a:e9:00:55:60:50:ac:96:f1:96:9a:50:88:fb:a9:
01:f4:56:03:75:21:f1:11:a3:1f:3f:ea:cd:79:49:b2:e9:53:
74:fa:6d:93:8f:47:4e:a1:76:67:66:0f:9b:66:f4:d7:8b:88:
88:19:3b:dd:a3:5b:94:47:02:4c:cb:6c:fc:eb:3c:be:07:b7:
5a:b5:1c:24:67:ee:2c:d0:ec:88:a8:21:d8:c4:fc:d5:15:9a:
93:49:8b:dd:bc:b0:3f:55:46:d8:65:69:38:ed:4d:b7:8b:a2:
24:33:0a:5e:0a:ac:17:af:52:cc:15:19:d3:ed:2a:12:68:3b:
31:98:a6:91:ad:72:bd:24:d8:d1:95:0f:9f:a4:e0:9a:11:aa:
14:d8:96:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:17 2024 by rpki-client on console-ams.rpki-client.org