Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/PRcPMCuII_0qU80ttDC1GcLWI2k.roa
File: PRcPMCuII_0qU80ttDC1GcLWI2k.roa (raw, json)
Hash identifier: 1Ei1mFSZRIfzYfEm8wewJUfUyJjfrnHrULxYuxeU+dY=
Subject key identifier: 3D:17:0F:30:2B:88:23:FD:2A:53:CD:2D:B4:30:B5:19:C2:D6:23:69
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018B99AB353D8D4780516588118F82092547
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/PRcPMCuII_0qU80ttDC1GcLWI2k.roa
Signing time: Sat 04 Nov 2023 09:30:16 +0000
ROA not before: Sat 04 Nov 2023 09:30:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
213.176.7.0/24 maxlen: 24
62.60.168.0/21 maxlen: 24
62.60.132.0/22 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.147.0/24 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
213.176.127.0/24 maxlen: 24
2001:790::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 08 Nov 2023 07:54:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:99:ab:35:3d:8d:47:80:51:65:88:11:8f:82:09:25:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Nov 4 09:30:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d170f302b8823fd2a53cd2db430b519c2d62369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d9:92:89:46:5e:98:07:ea:95:a0:75:5b:2b:
93:cb:df:db:d5:a8:a2:ae:85:f7:ee:ad:e0:f4:ea:
e5:42:a4:26:40:92:e7:e7:7e:5d:a3:2d:ff:79:54:
7b:d0:66:9a:96:36:69:c0:df:e4:8b:72:c0:1b:7a:
e2:a7:f5:26:67:18:3e:15:64:00:9a:75:49:b2:03:
16:a2:bd:1a:e4:a0:cc:14:c0:f6:7c:74:01:8c:79:
65:4b:87:ab:45:94:f7:8f:e1:14:f1:3d:91:da:4d:
eb:59:e9:c6:20:56:ae:ae:71:97:56:f9:7c:3d:cf:
06:b8:7d:e9:0d:67:05:2c:fc:c4:ad:93:9c:b3:1b:
70:06:53:1e:39:a0:11:56:60:fb:1c:02:10:03:9f:
9b:51:0f:45:19:27:c4:b2:05:11:0e:23:e2:59:47:
37:3d:fe:01:44:97:07:93:d9:2e:26:c4:e4:da:4d:
24:26:a8:0f:4f:02:25:68:46:62:6c:af:9a:b3:35:
93:25:2a:56:22:57:b2:94:ba:5f:8e:91:e6:be:67:
6c:ff:ee:25:78:fd:8a:78:20:d7:f3:b9:9d:2f:a1:
0e:7f:e8:b0:76:b9:65:d8:f0:46:a9:31:9f:f4:74:
ec:e7:48:59:65:da:94:3d:ac:92:c8:f8:8f:ed:0a:
db:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:17:0F:30:2B:88:23:FD:2A:53:CD:2D:B4:30:B5:19:C2:D6:23:69
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/PRcPMCuII_0qU80ttDC1GcLWI2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.132.0-62.60.137.255
62.60.139.0-62.60.140.255
62.60.142.0/24
62.60.145.0/24
62.60.147.0/24
62.60.168.0/21
213.176.4.0/23
213.176.7.0/24
213.176.96.0/24
213.176.122.0-213.176.125.255
213.176.127.0/24
IPv6:
2001:790::/32
Signature Algorithm: sha256WithRSAEncryption
5e:bc:ce:3b:57:13:31:23:db:d0:2a:4d:38:52:bc:1f:dd:27:
2e:ab:1e:cd:1e:9e:17:06:d9:30:f6:93:a0:eb:bd:26:4a:ac:
49:cd:1d:19:9d:e0:65:99:47:07:fe:7e:2c:3b:8f:0a:1e:3f:
db:5b:84:40:4d:2a:ce:8f:f6:b3:5a:ef:72:7c:dd:68:af:89:
25:ae:ff:91:e1:99:4d:71:86:d9:b0:76:93:5f:0d:71:c2:be:
0c:ac:17:a9:0d:cd:40:1d:b2:f0:09:3a:21:48:23:d5:fc:53:
51:ed:43:b7:4f:f5:cc:09:ea:7c:9b:f7:39:d1:18:63:1e:b1:
3e:86:98:ec:90:79:12:d1:e7:cf:0f:cb:a9:39:28:eb:b2:69:
0d:fe:ce:f1:d6:a5:e0:5e:1c:ab:13:1d:cb:98:cc:49:7c:05:
bc:cb:8f:6e:f9:be:3a:e7:98:a3:ee:ee:eb:01:08:f9:ad:d3:
99:10:af:c1:d9:f3:4a:01:d0:0e:31:1b:7d:37:62:bd:d3:5d:
83:42:2e:90:13:e5:07:91:93:db:a1:17:cd:76:6b:dc:06:bc:
c8:54:8a:23:b0:aa:69:6b:bc:50:5a:09:69:df:b2:cb:5a:09:
fd:05:bc:13:5d:b1:9a:24:68:1e:1e:a8:c0:18:3d:53:b7:74:
00:c3:0a:17
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgISAYuZqzU9jUeAUWWIEY+CCSVHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjMxMTA0MDkzMDE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDE3MGYzMDJiODgyM2ZkMmE1M2NkMmRiNDMwYjUxOWMyZDYyMzY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA09mSiUZemAfqlaB1WyuTy9/b1aii
roX37q3g9OrlQqQmQJLn535doy3/eVR70GaaljZpwN/ki3LAG3rip/UmZxg+FWQA
mnVJsgMWor0a5KDMFMD2fHQBjHllS4erRZT3j+EU8T2R2k3rWenGIFaurnGXVvl8
Pc8GuH3pDWcFLPzErZOcsxtwBlMeOaARVmD7HAIQA5+bUQ9FGSfEsgURDiPiWUc3
Pf4BRJcHk9kuJsTk2k0kJqgPTwIlaEZibK+aszWTJSpWIleylLpfjpHmvmds/+4l
eP2KeCDX87mdL6EOf+iwdrll2PBGqTGf9HTs50hZZdqUPaySyPiP7QrbYQIDAQAB
o4ICbTCCAmkwHQYDVR0OBBYEFD0XDzAriCP9KlPNLbQwtRnC1iNpMB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvUFJjUE1DdUlJXzBxVTgwdHREQzFHY0xXSTJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGCBggrBgEFBQcBBwEB/wRzMHEwYAQCAAEwWjAMAwQCPjyE
AwQBPjyIMAwDBAA+PIsDBAA+PIwDBAA+PI4DBAA+PJEDBAA+PJMDBAM+PKgDBAHV
sAQDBADVsAcDBADVsGAwDAMEAdWwegMEAdWwfAMEANWwfzANBAIAAjAHAwUAIAEH
kDANBgkqhkiG9w0BAQsFAAOCAQEAXrzOO1cTMSPb0CpNOFK8H90nLqsezR6eFwbZ
MPaToOu9JkqsSc0dGZ3gZZlHB/5+LDuPCh4/21uEQE0qzo/2s1rvcnzdaK+JJa7/
keGZTXGG2bB2k18NccK+DKwXqQ3NQB2y8Ak6IUgj1fxTUe1Dt0/1zAnqfJv3OdEY
Yx6xPoaY7JB5EtHnzw/LqTko67JpDf7O8dal4F4cqxMdy5jMSXwFvMuPbvm+OueY
o+7u6wEI+a3TmRCvwdnzSgHQDjEbfTdivdNdg0IukBPlB5GT26EXzXZr3Aa8yFSK
I7CqaWu8UFoJad+yy1oJ/QW8E12xmiRoHh6owBg9U7d0AMMKFw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org