Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/PCW1wdWdeUKWrEHMPlFeY0DqwJA.roa
File: PCW1wdWdeUKWrEHMPlFeY0DqwJA.roa (raw, json)
Hash identifier: 57B9FNGSAMCjHriKIpOzAzPPt8/pyzZ2xC5YlZWqP7Q=
Subject key identifier: 3C:25:B5:C1:D5:9D:79:42:96:AC:41:CC:3E:51:5E:63:40:EA:C0:90
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0185C045BC5BC8AC819218C1A52E21551B30
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/PCW1wdWdeUKWrEHMPlFeY0DqwJA.roa
Signing time: Tue 17 Jan 2023 15:07:53 +0000
ROA not before: Tue 17 Jan 2023 15:07:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 82.163.104.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Feb 2023 07:46:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c0:45:bc:5b:c8:ac:81:92:18:c1:a5:2e:21:55:1b:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 17 15:07:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c25b5c1d59d794296ac41cc3e515e6340eac090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a4:e6:34:d5:b3:4b:0e:6c:66:17:9d:84:a6:
fb:bd:f1:47:6c:14:48:7d:de:e5:cc:24:a2:c1:78:
e2:33:20:f6:b2:54:62:07:c5:a7:f9:7d:9b:a4:aa:
63:a3:ce:ef:be:e2:b6:ad:84:a2:f9:ce:a8:c5:ea:
28:5f:6c:ca:95:93:3f:91:84:05:9a:45:52:69:9a:
2b:36:8b:90:39:44:6a:8c:41:4d:4f:ff:ab:f3:0b:
6b:9e:66:6c:b1:a7:23:8b:a8:c6:fe:45:0c:01:64:
0f:96:83:aa:f5:4c:0d:dc:d2:3b:2a:fa:b2:ca:aa:
13:2e:c9:61:1d:48:20:1f:63:d3:67:75:07:73:8d:
62:7a:d9:4b:4b:14:b7:2c:9a:ad:86:2b:6a:2e:a2:
12:ed:3e:a8:74:32:0b:23:f8:ac:52:92:fe:0f:20:
bc:70:2c:6c:c2:32:cd:2c:44:62:2f:df:87:52:37:
68:8a:5e:5e:f2:68:4d:a5:0d:4d:51:37:6e:b2:0b:
75:cc:40:75:8f:95:d8:aa:23:26:88:d4:a3:f7:cc:
69:df:37:25:f1:f1:54:b3:9f:5b:b1:01:d1:4e:3d:
91:a1:7c:ff:a6:d3:3e:8f:68:4b:46:35:a6:05:c2:
d0:08:d5:9f:e8:e0:65:d3:8c:24:3b:04:f3:eb:59:
da:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:25:B5:C1:D5:9D:79:42:96:AC:41:CC:3E:51:5E:63:40:EA:C0:90
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/PCW1wdWdeUKWrEHMPlFeY0DqwJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.104.0/21
Signature Algorithm: sha256WithRSAEncryption
85:5a:74:dd:9d:95:2b:d3:4e:57:cf:00:71:a7:9c:1d:9b:00:
26:f5:28:ef:b1:3d:95:30:99:7e:ca:9a:22:4f:b8:ba:2d:a6:
a0:15:f4:f9:87:e6:6a:d1:ae:8f:3c:2f:42:32:79:0b:f8:37:
b9:a2:8c:0a:b3:7a:9b:ca:8e:f3:dc:84:b4:7a:07:ff:5b:62:
5d:38:81:48:87:74:21:9c:ea:e5:0a:21:46:9f:52:76:41:58:
9a:b7:8f:8b:bf:86:8a:3d:9f:5b:48:fc:8f:69:16:88:ba:9d:
6c:a0:59:dc:23:f8:17:5c:c9:11:52:c3:50:37:ae:ee:76:16:
52:14:6b:d1:c7:2a:b9:ed:ef:d6:64:bb:9e:40:5b:ed:de:6d:
5a:81:20:2a:78:04:f3:63:27:b4:c0:46:9e:51:b3:93:54:6b:
85:d2:de:d3:ec:bd:8a:ab:1e:8a:52:c1:04:c8:ef:81:cb:8e:
f8:f1:e8:31:29:d2:3b:4b:3c:d0:13:8d:52:e1:86:2b:8f:28:
1b:4c:64:52:ad:f6:02:39:b0:ca:1a:ce:ca:3b:64:17:3d:9f:
34:7e:77:da:c7:6d:7a:f8:fa:df:0e:ca:9e:a4:d2:56:f4:9d:
59:e5:97:95:63:d2:59:99:cc:77:8b:bb:3d:cc:09:65:a7:12:
92:bd:31:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXARbxbyKyBkhjBpS4hVRswMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2
N2IxZTQwHhcNMjMwMTE3MTUwNzUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzI1YjVjMWQ1OWQ3OTQyOTZhYzQxY2MzZTUxNWU2MzQwZWFjMDkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqTmNNWzSw5sZhedhKb7vfFHbBRI
fd7lzCSiwXjiMyD2slRiB8Wn+X2bpKpjo87vvuK2rYSi+c6oxeooX2zKlZM/kYQF
mkVSaZorNouQOURqjEFNT/+r8wtrnmZssacji6jG/kUMAWQPloOq9UwN3NI7Kvqy
yqoTLslhHUggH2PTZ3UHc41ietlLSxS3LJqthitqLqIS7T6odDILI/isUpL+DyC8
cCxswjLNLERiL9+HUjdoil5e8mhNpQ1NUTdusgt1zEB1j5XYqiMmiNSj98xp3zcl
8fFUs59bsQHRTj2RoXz/ptM+j2hLRjWmBcLQCNWf6OBl04wkOwTz61na8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDwltcHVnXlClqxBzD5RXmNA6sCQMB8GA1UdIwQY
MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut
ODk3MTRhN2U4ZDU4LzEvUENXMXdkV2RlVUtXckVITVBsRmVZMERxd0pBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4
LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDUqNoMA0G
CSqGSIb3DQEBCwUAA4IBAQCFWnTdnZUr005XzwBxp5wdmwAm9SjvsT2VMJl+ypoi
T7i6LaagFfT5h+Zq0a6PPC9CMnkL+De5oowKs3qbyo7z3IS0egf/W2JdOIFIh3Qh
nOrlCiFGn1J2QViat4+Lv4aKPZ9bSPyPaRaIup1soFncI/gXXMkRUsNQN67udhZS
FGvRxyq57e/WZLueQFvt3m1agSAqeATzYye0wEaeUbOTVGuF0t7T7L2Kqx6KUsEE
yO+By4748egxKdI7SzzQE41S4YYrjygbTGRSrfYCObDKGs7KO2QXPZ80fnfax216
+PrfDsqepNJW9J1Z5ZeVY9JZmcx3i7s9zAllpxKSvTE0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org