Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/PTRA__kd3h5ax9jnt6JOriXrkbw.roa
File: PTRA__kd3h5ax9jnt6JOriXrkbw.roa (raw, json)
Hash identifier: W1PkjhY/Sgt2cltDFF8q9WenWIq5GaYZdGitNgBPdPE=
Subject key identifier: 3D:34:40:FF:F9:1D:DE:1E:5A:C7:D8:E7:B7:A2:4E:AE:25:EB:91:BC
Certificate issuer: /CN=2d9e31c9029ee44bd681b515330335c6a1cfdeee
Certificate serial: 018CC87059344AFAE5487BB6E47ACF15F514
Authority key identifier: 2D:9E:31:C9:02:9E:E4:4B:D6:81:B5:15:33:03:35:C6:A1:CF:DE:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/PTRA__kd3h5ax9jnt6JOriXrkbw.roa
Signing time: Tue 02 Jan 2024 04:30:55 +0000
ROA not before: Tue 02 Jan 2024 04:30:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209523
IP address blocks: 185.97.140.0/24 maxlen: 24
185.97.140.0/22 maxlen: 22
185.97.141.0/24 maxlen: 24
45.158.68.0/22 maxlen: 22
5.198.192.0/19 maxlen: 19
2a02:e58::/32 maxlen: 32
2a02:e58:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 01 Mar 2024 15:25:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:59:34:4a:fa:e5:48:7b:b6:e4:7a:cf:15:f5:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d9e31c9029ee44bd681b515330335c6a1cfdeee
Validity
Not Before: Jan 2 04:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d3440fff91dde1e5ac7d8e7b7a24eae25eb91bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f0:0c:5e:a6:ee:e7:40:ad:de:61:de:1d:cf:
1d:b4:a9:de:a4:9d:00:94:3a:53:a2:60:8d:d3:73:
b6:62:96:80:2d:13:77:56:a0:5e:45:2f:5c:bd:2b:
19:89:a2:fb:a7:71:8d:7e:12:59:02:ce:7c:06:96:
6f:08:33:5d:7b:74:1f:b4:7a:b3:5b:1c:ec:dd:ac:
7d:42:62:da:db:e8:78:ac:51:ac:15:a1:f0:b0:3e:
e4:f9:0a:98:c9:01:d0:79:17:eb:4f:3c:f2:26:71:
8b:73:da:20:97:38:37:13:cc:ac:0d:0a:6b:88:fa:
58:0d:5f:8a:68:aa:f7:0c:b1:66:43:5a:f7:2b:ca:
3a:c6:7c:96:76:83:48:c5:23:b0:b8:e3:a4:76:a0:
e1:eb:1a:e6:d8:ed:91:66:76:c0:2c:2e:c9:21:6e:
e6:4e:e9:6d:01:38:49:9f:6c:23:78:fb:a2:67:67:
fb:98:21:e3:bb:49:17:ef:96:1b:19:01:1c:75:40:
57:b6:42:1a:8a:59:db:07:6e:42:54:0c:45:73:81:
98:a7:ce:e7:93:f9:a7:c2:66:e1:7e:d1:1e:80:fe:
b1:a5:2a:72:5f:55:34:88:54:57:1b:18:b8:85:c0:
3a:79:d1:4e:04:0c:f4:91:c3:bf:fc:06:07:03:de:
96:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:34:40:FF:F9:1D:DE:1E:5A:C7:D8:E7:B7:A2:4E:AE:25:EB:91:BC
X509v3 Authority Key Identifier:
keyid:2D:9E:31:C9:02:9E:E4:4B:D6:81:B5:15:33:03:35:C6:A1:CF:DE:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/PTRA__kd3h5ax9jnt6JOriXrkbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.198.192.0/19
45.158.68.0/22
185.97.140.0/22
IPv6:
2a02:e58::/32
Signature Algorithm: sha256WithRSAEncryption
52:58:04:20:ba:a2:6f:1c:85:58:63:e3:db:b4:a1:72:a8:87:
bc:84:32:69:80:00:f4:4d:08:46:01:de:da:6e:36:06:cf:49:
9c:33:3c:f8:37:cc:d9:1f:56:52:0d:43:83:28:9d:fb:78:b4:
6c:ff:9c:82:40:70:c1:52:10:38:7f:6c:72:6d:03:3e:22:bb:
59:36:28:d8:2d:2e:84:bd:37:4e:f0:1e:94:19:51:26:79:3c:
f7:cc:d5:4a:e4:97:1a:ca:2f:af:e9:af:fc:76:35:4e:bf:64:
d5:1a:47:40:1b:90:ab:14:68:6e:67:f0:db:66:d2:7b:d5:b2:
63:14:03:b3:6f:04:e1:57:42:7e:c9:46:b9:18:9f:89:ae:9e:
81:32:17:5b:e7:56:11:4d:7a:86:6b:9c:ca:89:96:2e:38:b1:
8b:a8:ab:b2:5b:56:cc:53:4f:c7:95:45:3b:f1:6c:f7:32:21:
c6:55:3b:f5:07:fb:1e:14:8b:7d:60:30:5b:7c:ad:42:c6:25:
88:47:c3:18:39:7f:7e:3e:58:78:56:b1:45:2d:a5:f3:6b:1c:
b3:7e:47:f1:c0:a9:3e:5f:34:9b:3b:30:f8:e4:0d:d8:8a:b2:
3c:07:ad:27:5f:08:40:46:9d:76:d9:44:39:55:01:d8:36:7c:
a8:3b:ae:9a
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAYzIcFk0SvrlSHu25HrPFfUUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkOWUzMWM5MDI5ZWU0NGJkNjgxYjUxNTMzMDMzNWM2YTFj
ZmRlZWUwHhcNMjQwMTAyMDQzMDU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDM0NDBmZmY5MWRkZTFlNWFjN2Q4ZTdiN2EyNGVhZTI1ZWI5MWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvAMXqbu50Ct3mHeHc8dtKnepJ0A
lDpTomCN03O2YpaALRN3VqBeRS9cvSsZiaL7p3GNfhJZAs58BpZvCDNde3QftHqz
Wxzs3ax9QmLa2+h4rFGsFaHwsD7k+QqYyQHQeRfrTzzyJnGLc9oglzg3E8ysDQpr
iPpYDV+KaKr3DLFmQ1r3K8o6xnyWdoNIxSOwuOOkdqDh6xrm2O2RZnbALC7JIW7m
TultAThJn2wjePuiZ2f7mCHju0kX75YbGQEcdUBXtkIailnbB25CVAxFc4GYp87n
k/mnwmbhftEegP6xpSpyX1U0iFRXGxi4hcA6edFOBAz0kcO//AYHA96WXwIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFD00QP/5Hd4eWsfY57eiTq4l65G8MB8GA1UdIwQY
MBaAFC2eMckCnuRL1oG1FTMDNcahz97uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFo0eHlRS2U1RXZXZ2JVVk13TTF4cUhQM3U0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8xNWQ4OTYtMmY2OS00Njk3LWE2ZmMt
MDhkYTY2NTJhODY3LzEvUFRSQV9fa2QzaDVheDlqbnQ2Sk9yaVhya2J3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi8xNWQ4OTYtMmY2OS00Njk3LWE2ZmMtMDhkYTY2NTJhODY3
LzEvTFo0eHlRS2U1RXZXZ2JVVk13TTF4cUhQM3U0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQFBcbAAwQC
LZ5EAwQCuWGMMA0EAgACMAcDBQAqAg5YMA0GCSqGSIb3DQEBCwUAA4IBAQBSWAQg
uqJvHIVYY+PbtKFyqIe8hDJpgAD0TQhGAd7abjYGz0mcMzz4N8zZH1ZSDUODKJ37
eLRs/5yCQHDBUhA4f2xybQM+IrtZNijYLS6EvTdO8B6UGVEmeTz3zNVK5Jcayi+v
6a/8djVOv2TVGkdAG5CrFGhuZ/DbZtJ71bJjFAOzbwThV0J+yUa5GJ+Jrp6BMhdb
51YRTXqGa5zKiZYuOLGLqKuyW1bMU0/HlUU78Wz3MiHGVTv1B/seFIt9YDBbfK1C
xiWIR8MYOX9+Plh4VrFFLaXzaxyzfkfxwKk+XzSbOzD45A3YirI8B60nXwhARp12
2UQ5VQHYNnyoO66a
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:20 2025 by rpki-client