Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/PMsuZoWmWKfecDO9-y_mJ2NiklA.roa
File: PMsuZoWmWKfecDO9-y_mJ2NiklA.roa (raw, json)
Hash identifier: eCKkQoDjzQmxN7ZPHHOV5w88RZVBarIoDBMaF7VpX0k=
Subject key identifier: 3C:CB:2E:66:85:A6:58:A7:DE:70:33:BD:FB:2F:E6:27:63:62:92:50
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 01874FB23F7F5F22E3D963574CD4FDEF880F
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/PMsuZoWmWKfecDO9-y_mJ2NiklA.roa
Signing time: Wed 05 Apr 2023 04:34:54 +0000
ROA not before: Wed 05 Apr 2023 04:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61185
IP address blocks: 109.238.160.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Sep 2023 01:20:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4f:b2:3f:7f:5f:22:e3:d9:63:57:4c:d4:fd:ef:88:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Apr 5 04:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ccb2e6685a658a7de7033bdfb2fe62763629250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:97:d4:df:12:b9:64:6d:fb:93:dc:91:18:c7:
de:cd:b4:39:56:83:5a:07:23:05:59:45:a6:55:02:
45:40:e5:30:13:94:d9:4e:6f:bf:0c:7c:83:11:70:
13:a0:9e:5d:d2:2f:01:95:26:f0:61:87:ab:bc:c1:
c5:9d:03:c0:18:9e:37:53:5a:d0:25:5b:aa:e6:74:
80:f6:a8:d2:9c:db:b9:53:47:5d:47:ac:84:70:fb:
46:98:5e:50:56:2a:34:88:e1:33:0f:de:19:07:73:
c4:0c:db:70:c5:2c:ca:73:05:53:5b:b7:95:f6:14:
6d:35:41:40:31:a3:de:fb:ac:ab:b7:9f:a2:01:8b:
10:5b:b8:0c:a6:05:a3:0f:e1:b6:e1:98:86:03:b3:
ce:4a:f6:ee:99:07:7b:99:fc:b0:82:ce:5d:e8:81:
4d:3f:5c:0c:44:76:c2:af:39:ec:92:11:22:5e:00:
97:14:b0:c0:f6:9f:55:32:d0:d3:68:77:05:62:1f:
0a:50:fe:66:88:4e:2e:a9:3c:b9:5c:fa:f1:65:fa:
a0:13:29:f1:5e:8c:44:e1:7f:fe:86:e2:e0:1d:ae:
8b:38:dd:39:fc:37:9c:a6:9d:14:2f:84:f4:05:ba:
4b:c5:36:44:6e:60:3c:27:66:a8:42:ec:30:de:4a:
b5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:CB:2E:66:85:A6:58:A7:DE:70:33:BD:FB:2F:E6:27:63:62:92:50
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/PMsuZoWmWKfecDO9-y_mJ2NiklA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.238.160.0/21
Signature Algorithm: sha256WithRSAEncryption
2e:56:97:bd:e5:0f:d2:04:00:af:29:c7:b3:44:92:e2:6d:a9:
54:7c:de:ef:f6:ec:97:cf:24:e5:0b:10:14:6e:09:d7:e8:77:
9a:b2:c3:34:74:e5:20:1b:52:df:ef:3b:27:db:e7:71:ad:52:
ae:0c:ca:bf:ac:9e:aa:e3:ac:27:0e:58:82:2c:5d:f1:35:86:
ec:9c:0d:74:e4:96:e3:99:fa:45:b2:97:a0:78:80:e7:6c:81:
f0:5e:03:5f:69:77:65:bd:f3:f3:ac:c3:68:0e:8a:81:56:a3:
d2:ea:a8:af:8d:25:be:96:7e:b0:73:0d:20:89:c5:fc:fa:41:
7d:9a:36:01:05:54:66:c1:2e:92:a4:b0:ea:fc:12:1c:f5:04:
9e:47:30:25:3a:a0:ff:25:b1:0e:61:db:99:ec:6d:8f:54:05:
7f:22:74:01:53:c0:77:41:18:ec:8c:2c:0e:a4:9e:9a:26:61:
d5:d7:ff:a3:4c:e1:5f:1d:35:3c:c3:53:3c:36:01:98:2b:47:
21:c4:53:56:99:47:37:49:2a:e8:f6:af:37:84:cf:17:41:8c:
cf:8f:8f:95:e1:32:df:00:c3:46:09:12:ed:89:c9:01:eb:a5:
55:08:fa:77:07:f2:6c:c7:0e:e4:dd:79:a7:b8:be:3b:0d:2d:
74:05:6b:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdPsj9/XyLj2WNXTNT974gPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3MjUzNzYwMWEzMTY5NzQwNDkyMmQ5NTdlNzQ0NTBmNWE5
Y2JlNzMwHhcNMjMwNDA1MDQzNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2NiMmU2Njg1YTY1OGE3ZGU3MDMzYmRmYjJmZTYyNzYzNjI5MjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhZfU3xK5ZG37k9yRGMfezbQ5VoNa
ByMFWUWmVQJFQOUwE5TZTm+/DHyDEXAToJ5d0i8BlSbwYYervMHFnQPAGJ43U1rQ
JVuq5nSA9qjSnNu5U0ddR6yEcPtGmF5QVio0iOEzD94ZB3PEDNtwxSzKcwVTW7eV
9hRtNUFAMaPe+6yrt5+iAYsQW7gMpgWjD+G24ZiGA7POSvbumQd7mfywgs5d6IFN
P1wMRHbCrznskhEiXgCXFLDA9p9VMtDTaHcFYh8KUP5miE4uqTy5XPrxZfqgEynx
XoxE4X/+huLgHa6LON05/Decpp0UL4T0BbpLxTZEbmA8J2aoQuww3kq1YwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDzLLmaFplin3nAzvfsv5idjYpJQMB8GA1UdIwQY
MBaAFBclN2AaMWl0BJItlX50RQ9anL5zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQt
ZTYwNGI2MWJlMGVhLzEvUE1zdVpvV21XS2ZlY0RPOS15X21KMk5pa2xBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQtZTYwNGI2MWJlMGVh
LzEvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDbe6gMA0G
CSqGSIb3DQEBCwUAA4IBAQAuVpe95Q/SBACvKcezRJLibalUfN7v9uyXzyTlCxAU
bgnX6HeassM0dOUgG1Lf7zsn2+dxrVKuDMq/rJ6q46wnDliCLF3xNYbsnA105Jbj
mfpFspegeIDnbIHwXgNfaXdlvfPzrMNoDoqBVqPS6qivjSW+ln6wcw0gicX8+kF9
mjYBBVRmwS6SpLDq/BIc9QSeRzAlOqD/JbEOYduZ7G2PVAV/InQBU8B3QRjsjCwO
pJ6aJmHV1/+jTOFfHTU8w1M8NgGYK0chxFNWmUc3SSro9q83hM8XQYzPj4+V4TLf
AMNGCRLtickB66VVCPp3B/Jsxw7k3XmnuL47DS10BWtO
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:32 2024 by rpki-client on console-ams.rpki-client.org