Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/PLKpS0MmA_FiZ7b6By4kWURmtas.roa
File: PLKpS0MmA_FiZ7b6By4kWURmtas.roa (raw, json)
Hash identifier: Rw3puKK3tAwaK2vCr3On1zoSZ/deJl8ABLyQExuei1Q=
Subject key identifier: 3C:B2:A9:4B:43:26:03:F1:62:67:B6:FA:07:2E:24:59:44:66:B5:AB
Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Certificate serial: 0185728C7F2FBAE556F1532588F91FA5142A
Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/PLKpS0MmA_FiZ7b6By4kWURmtas.roa
Signing time: Mon 02 Jan 2023 12:54:48 +0000
ROA not before: Mon 02 Jan 2023 12:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2027
IP address blocks: 80.67.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:7f:2f:ba:e5:56:f1:53:25:88:f9:1f:a5:14:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Validity
Not Before: Jan 2 12:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cb2a94b432603f16267b6fa072e24594466b5ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b7:16:a4:c4:5b:49:2d:6d:80:6e:36:f8:bd:
cb:ea:bb:f1:b9:86:cf:ed:a4:c8:c0:e1:73:57:e3:
e0:81:26:78:09:f1:58:06:9f:c6:8d:76:8c:e1:74:
b2:7b:e6:4a:8d:14:98:c2:a2:21:f5:0f:6e:c7:c3:
80:8d:22:76:2a:0d:a2:a3:7d:b5:7f:58:f4:57:75:
63:08:f6:1a:83:4a:e3:86:da:0e:62:24:b5:19:d5:
e0:f7:d7:e8:46:2e:3a:fe:e3:60:16:7a:77:8f:d5:
e7:09:3a:0f:34:a8:f4:7d:ec:1d:8d:c4:2d:8a:ce:
25:50:53:c9:6e:67:d8:31:81:fd:e5:4e:c8:96:cf:
e3:0b:22:dc:32:8d:30:79:50:31:38:1f:10:33:48:
31:f3:61:db:27:eb:fc:cf:b4:5f:01:74:20:d5:b8:
d0:32:d6:c8:5f:e6:b4:ce:07:4c:6b:a9:46:46:00:
2d:cb:c9:2f:fc:5e:c0:9b:ca:a1:cb:0e:88:b8:75:
50:eb:6f:25:de:57:d8:8f:62:54:56:b8:11:bb:f8:
15:5b:1e:78:32:b1:0e:54:2a:30:f5:b4:10:6e:7f:
77:60:ea:ed:fb:c5:72:b8:0a:7c:57:b8:4e:78:88:
3a:bc:ba:d3:26:3a:c9:d6:4f:ce:26:2c:83:01:cd:
26:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B2:A9:4B:43:26:03:F1:62:67:B6:FA:07:2E:24:59:44:66:B5:AB
X509v3 Authority Key Identifier:
keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/PLKpS0MmA_FiZ7b6By4kWURmtas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.67.167.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:29:97:76:1d:fe:d6:f9:44:8c:20:43:fa:43:a6:19:38:38:
2e:07:1f:45:35:50:2e:8e:9f:33:da:04:e2:c3:03:f7:ce:dd:
0d:42:44:a0:61:fc:41:45:20:f0:f0:c5:b8:80:29:7d:f0:df:
21:dc:23:08:dc:d9:24:5f:6e:e5:0d:2d:fe:c0:37:fe:7e:f3:
2f:c3:9c:f8:99:f9:b9:08:67:90:e7:1d:6e:ca:cb:3a:da:d0:
ce:21:23:38:80:ac:9c:fd:9d:82:2d:9b:16:39:89:e0:f5:8a:
29:ab:14:8b:8c:5e:14:d8:71:ae:d0:3d:2e:0e:c4:fb:f3:e9:
ef:71:a3:c5:a2:e3:69:3e:7a:e7:b6:97:4e:8c:df:52:bb:6e:
53:c9:3d:ed:c6:9a:19:e3:ad:ca:63:54:29:e7:04:0f:56:bb:
90:01:99:2f:99:35:9f:1c:44:e8:4f:43:3f:53:33:e6:27:ce:
82:50:94:cb:04:04:05:8e:44:80:66:3f:80:a3:15:af:ec:09:
da:43:51:b5:14:77:8a:e4:d2:73:fa:b7:6b:6b:8a:ac:98:34:
54:96:d0:d0:b0:05:56:0d:b7:8d:5a:e2:39:99:ed:b4:59:78:
c1:8e:ef:cf:f9:a6:08:e2:e4:d1:72:52:90:9e:39:2a:a7:52:
f1:04:de:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyjH8vuuVW8VMliPkfpRQqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZWQyZmJiNzIxM2ZiZjMyYWQ0YzA4N2Y4YjBiMjJjZWNl
ZjRmZWEwHhcNMjMwMTAyMTI1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2IyYTk0YjQzMjYwM2YxNjI2N2I2ZmEwNzJlMjQ1OTQ0NjZiNWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjrcWpMRbSS1tgG42+L3L6rvxuYbP
7aTIwOFzV+PggSZ4CfFYBp/GjXaM4XSye+ZKjRSYwqIh9Q9ux8OAjSJ2Kg2io321
f1j0V3VjCPYag0rjhtoOYiS1GdXg99foRi46/uNgFnp3j9XnCToPNKj0fewdjcQt
is4lUFPJbmfYMYH95U7Ils/jCyLcMo0weVAxOB8QM0gx82HbJ+v8z7RfAXQg1bjQ
MtbIX+a0zgdMa6lGRgAty8kv/F7Am8qhyw6IuHVQ628l3lfYj2JUVrgRu/gVWx54
MrEOVCow9bQQbn93YOrt+8VyuAp8V7hOeIg6vLrTJjrJ1k/OJiyDAc0mOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDyyqUtDJgPxYme2+gcuJFlEZrWrMB8GA1UdIwQY
MBaAFHLtL7tyE/vzKtTAh/iwsizs70/qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3UwdnUzSVQtX01xMU1DSC1MQ3lMT3p2VC1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9lNWE4OTItMjNmNS00OWZhLWI2YTkt
YTY1MjMzYjNlOTc1LzEvUExLcFMwTW1BX0ZpWjdiNkJ5NGtXVVJtdGFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9lNWE4OTItMjNmNS00OWZhLWI2YTktYTY1MjMzYjNlOTc1
LzEvY3UwdnUzSVQtX01xMU1DSC1MQ3lMT3p2VC1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEOnMA0G
CSqGSIb3DQEBCwUAA4IBAQBqKZd2Hf7W+USMIEP6Q6YZODguBx9FNVAujp8z2gTi
wwP3zt0NQkSgYfxBRSDw8MW4gCl98N8h3CMI3NkkX27lDS3+wDf+fvMvw5z4mfm5
CGeQ5x1uyss62tDOISM4gKyc/Z2CLZsWOYng9YopqxSLjF4U2HGu0D0uDsT78+nv
caPFouNpPnrntpdOjN9Su25TyT3txpoZ463KY1Qp5wQPVruQAZkvmTWfHEToT0M/
UzPmJ86CUJTLBAQFjkSAZj+AoxWv7AnaQ1G1FHeK5NJz+rdra4qsmDRUltDQsAVW
DbeNWuI5me20WXjBju/P+aYI4uTRclKQnjkqp1LxBN6K
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:19 2024 by rpki-client on console-fra.rpki-client.org