Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/PJ7-7Y5vTMZrw_8VupA6XZyZgc4.roa
File: PJ7-7Y5vTMZrw_8VupA6XZyZgc4.roa (raw, json)
Hash identifier: +1zw3m56hdyBGdDhXdOnJ0pmJNEBvascA/Dtj66aghA=
Subject key identifier: 3C:9E:FE:ED:8E:6F:4C:C6:6B:C3:FF:15:BA:90:3A:5D:9C:99:81:CE
Certificate issuer: /CN=37ed49efac9795987771acdc77a0e228904277ad
Certificate serial: 0185B9D823E5150273B61EB1F8D8E2F081EE
Authority key identifier: 37:ED:49:EF:AC:97:95:98:77:71:AC:DC:77:A0:E2:28:90:42:77:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N-1J76yXlZh3cazcd6DiKJBCd60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/PJ7-7Y5vTMZrw_8VupA6XZyZgc4.roa
Signing time: Mon 16 Jan 2023 09:10:27 +0000
ROA not before: Mon 16 Jan 2023 09:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207967
IP address blocks: 109.172.74.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b9:d8:23:e5:15:02:73:b6:1e:b1:f8:d8:e2:f0:81:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ed49efac9795987771acdc77a0e228904277ad
Validity
Not Before: Jan 16 09:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c9efeed8e6f4cc66bc3ff15ba903a5d9c9981ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8f:e7:25:d3:7e:58:36:a4:45:6e:90:a3:1a:
4b:53:84:d7:6c:d1:1a:cb:7c:1b:04:4b:2b:66:41:
3d:1f:3a:31:f1:3c:99:10:a1:1b:3b:a6:ed:60:c2:
75:34:ea:5b:d8:d5:6e:03:9c:52:52:31:45:4a:71:
13:2c:bf:6b:43:f0:36:45:a3:bb:6f:4f:56:47:37:
cc:7e:dc:4a:ef:12:95:83:67:10:b1:e0:3f:66:8e:
fb:83:0e:12:af:94:bc:55:40:ee:a8:d6:24:ca:29:
ab:2b:8e:2c:8e:42:c3:43:a2:50:83:7a:e3:7e:af:
25:55:87:62:18:03:94:57:3c:c5:7d:16:60:9d:5e:
e8:9f:fd:73:c1:a5:5e:e4:29:8f:b9:b9:9e:61:3f:
7c:3c:36:33:96:39:0a:0a:3c:c4:9f:1b:62:91:10:
81:91:1a:57:a1:98:22:b9:67:7d:62:fd:44:f1:1d:
cb:3d:ba:ea:8c:ee:bf:3b:e3:f9:16:17:b3:03:f6:
56:50:f4:09:2d:a9:9f:23:55:cf:cd:9a:1a:63:c0:
d7:f3:8c:85:cd:44:62:20:c9:b2:67:aa:60:60:df:
e1:ff:ef:f0:3e:bf:e0:ae:03:1e:8d:d6:e5:be:15:
a2:ca:2c:6e:9b:fa:d3:40:95:9f:80:7e:4f:df:25:
df:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:9E:FE:ED:8E:6F:4C:C6:6B:C3:FF:15:BA:90:3A:5D:9C:99:81:CE
X509v3 Authority Key Identifier:
keyid:37:ED:49:EF:AC:97:95:98:77:71:AC:DC:77:A0:E2:28:90:42:77:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N-1J76yXlZh3cazcd6DiKJBCd60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/PJ7-7Y5vTMZrw_8VupA6XZyZgc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/N-1J76yXlZh3cazcd6DiKJBCd60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.172.74.0/23
Signature Algorithm: sha256WithRSAEncryption
68:28:f4:cc:e8:e1:27:2a:c3:79:7a:d0:b5:a5:43:81:80:26:
3d:00:bc:62:89:6e:1c:b4:51:b4:10:69:62:5b:20:de:67:8e:
ea:69:09:06:e8:64:77:6e:84:37:df:c5:9b:a1:db:81:64:96:
1f:1c:90:aa:9b:9b:06:e6:b2:16:d0:68:19:e6:fe:07:74:df:
c7:df:e5:1c:5c:e2:b6:a7:4d:e7:36:33:99:0c:a9:a1:f4:a3:
41:ab:a7:03:13:51:b0:3b:7b:32:d3:79:52:9a:ea:4d:c2:d5:
41:fc:6e:5e:16:2b:19:cc:59:d1:48:80:41:9b:69:56:b0:23:
46:e1:69:66:54:e7:3a:ff:4c:5e:ad:f4:6c:23:6a:95:f1:19:
7c:5a:0d:7b:c0:54:9d:37:1e:50:6c:3a:aa:de:62:19:84:00:
fe:e5:b2:f0:29:d0:76:4c:5f:60:2a:1c:cf:9e:49:e6:ce:a1:
2b:1d:53:5d:7e:32:77:97:01:b5:a8:0f:11:ec:c5:25:33:3c:
99:e3:da:7b:76:05:ea:79:53:74:5b:79:d9:5a:1a:9a:d4:4a:
96:90:73:1c:4c:12:5d:33:3b:f8:45:c4:d1:5f:5d:1f:ef:1c:
b5:c6:4d:a5:68:e9:44:be:3b:9d:6c:ce:bd:8b:fd:e2:f1:42:
d1:9e:27:15
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYW52CPlFQJzth6x+Nji8IHuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3ZWQ0OWVmYWM5Nzk1OTg3NzcxYWNkYzc3YTBlMjI4OTA0
Mjc3YWQwHhcNMjMwMTE2MDkxMDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzllZmVlZDhlNmY0Y2M2NmJjM2ZmMTViYTkwM2E1ZDljOTk4MWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAto/nJdN+WDakRW6QoxpLU4TXbNEa
y3wbBEsrZkE9Hzox8TyZEKEbO6btYMJ1NOpb2NVuA5xSUjFFSnETLL9rQ/A2RaO7
b09WRzfMftxK7xKVg2cQseA/Zo77gw4Sr5S8VUDuqNYkyimrK44sjkLDQ6JQg3rj
fq8lVYdiGAOUVzzFfRZgnV7on/1zwaVe5CmPubmeYT98PDYzljkKCjzEnxtikRCB
kRpXoZgiuWd9Yv1E8R3LPbrqjO6/O+P5FhezA/ZWUPQJLamfI1XPzZoaY8DX84yF
zURiIMmyZ6pgYN/h/+/wPr/grgMejdblvhWiyixum/rTQJWfgH5P3yXfCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDye/u2Ob0zGa8P/FbqQOl2cmYHOMB8GA1UdIwQY
MBaAFDftSe+sl5WYd3Gs3Heg4iiQQnetMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTi0xSjc2eVhsWmgzY2F6Y2Q2RGlLSkJDZDYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8yMTcxYmUtYjA4My00NzliLWE1ODAt
NmEwNmI3NTAyYmQ3LzEvUEo3LTdZNXZUTVpyd184VnVwQTZYWnlaZ2M0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8yMTcxYmUtYjA4My00NzliLWE1ODAtNmEwNmI3NTAyYmQ3
LzEvTi0xSjc2eVhsWmgzY2F6Y2Q2RGlLSkJDZDYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBbaxKMA0G
CSqGSIb3DQEBCwUAA4IBAQBoKPTM6OEnKsN5etC1pUOBgCY9ALxiiW4ctFG0EGli
WyDeZ47qaQkG6GR3boQ338WboduBZJYfHJCqm5sG5rIW0GgZ5v4HdN/H3+UcXOK2
p03nNjOZDKmh9KNBq6cDE1GwO3sy03lSmupNwtVB/G5eFisZzFnRSIBBm2lWsCNG
4WlmVOc6/0xerfRsI2qV8Rl8Wg17wFSdNx5QbDqq3mIZhAD+5bLwKdB2TF9gKhzP
nknmzqErHVNdfjJ3lwG1qA8R7MUlMzyZ49p7dgXqeVN0W3nZWhqa1EqWkHMcTBJd
Mzv4RcTRX10f7xy1xk2laOlEvjudbM69i/3i8ULRnicV
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:01 2023 by rpki-client on console-fra.rpki-client.org