Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/PWZUS7ZOWPlPkpfy9bUhsV6YXx8.roa
File: PWZUS7ZOWPlPkpfy9bUhsV6YXx8.roa (raw, json)
Hash identifier: EjeDcp8q1QahxlaEqUW9OV6f2YVAmT8LD8dYSr0pvY0=
Subject key identifier: 3D:66:54:4B:B6:4E:58:F9:4F:92:97:F2:F5:B5:21:B1:5E:98:5F:1F
Certificate issuer: /CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Certificate serial: 0192565D0177764001E33B0EEDEAA4D8EEF8
Authority key identifier: 5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/PWZUS7ZOWPlPkpfy9bUhsV6YXx8.roa
Signing time: Fri 04 Oct 2024 07:09:48 +0000
ROA not before: Fri 04 Oct 2024 07:09:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 91.211.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Oct 2024 10:23:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:56:5d:01:77:76:40:01:e3:3b:0e:ed:ea:a4:d8:ee:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Validity
Not Before: Oct 4 07:09:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d66544bb64e58f94f9297f2f5b521b15e985f1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f3:21:34:31:0e:d6:3a:43:f8:5b:9f:e1:fb:
cf:c3:58:4a:12:7b:c3:58:a3:02:84:86:e6:83:c3:
9d:6c:0e:a1:9d:ab:3e:92:f7:11:0a:6f:3f:fa:f6:
c1:50:c9:4a:4b:ed:55:bc:b1:56:0b:bd:dc:7b:5f:
09:01:56:fe:0b:66:85:3c:cd:db:df:46:6b:5a:63:
27:f3:ac:17:a0:af:c0:39:b3:46:38:00:7c:38:76:
1f:09:78:46:49:71:78:85:ea:a8:da:39:c5:8f:25:
26:58:6f:34:2d:e9:69:e8:99:51:ae:5a:4c:0a:9a:
83:91:24:c2:10:a4:60:d4:de:72:23:d6:64:d8:2f:
cb:8a:3c:2d:a3:81:43:3b:33:45:7b:15:7f:ff:ec:
81:8a:1f:25:15:b1:39:a5:41:91:31:e2:06:c4:9e:
05:f3:93:a4:a4:ec:65:b7:ae:3c:f1:c9:ac:8b:94:
59:2c:2a:b4:4d:35:31:31:2b:33:32:f0:84:0c:b9:
62:96:35:86:7a:ec:50:27:68:f7:d7:2a:c3:69:2a:
08:24:37:d8:db:c0:35:08:9d:c7:8b:35:57:9c:16:
be:d0:99:2a:b7:d7:3f:eb:84:4c:76:1e:51:08:24:
4d:96:08:f4:36:a1:e4:06:47:0b:68:d2:30:0a:bf:
d4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:66:54:4B:B6:4E:58:F9:4F:92:97:F2:F5:B5:21:B1:5E:98:5F:1F
X509v3 Authority Key Identifier:
keyid:5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/PWZUS7ZOWPlPkpfy9bUhsV6YXx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/XmFA8XMSeE72KuO-AwwMLMZhpwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.89.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:6c:1e:bd:78:f9:0e:f1:64:d2:cb:e2:8c:fe:6e:a2:8c:20:
56:01:42:c8:81:c0:a6:0f:ae:6a:6b:7a:f7:50:8d:17:de:33:
9d:0a:c4:a6:ed:2c:29:b5:20:2a:23:e5:65:60:3d:0b:48:31:
fc:54:4f:24:ea:8e:e6:c8:b0:fd:e5:b5:f9:45:d6:8b:69:f4:
2f:7e:71:7f:4c:d4:87:8a:be:02:f3:a7:b3:06:2d:05:8a:30:
6a:51:d5:b6:9f:28:cf:a0:69:9c:e0:8a:35:0f:d8:7d:c4:f8:
3e:e2:ab:7c:08:fd:b4:69:50:1c:f6:90:8d:c1:67:cc:de:5d:
dc:70:c7:33:ad:8f:cb:cb:3c:fe:79:56:6e:45:b6:68:a4:fe:
f6:21:60:74:2a:c6:14:e1:25:cf:eb:44:19:f3:eb:a7:ad:17:
1f:95:a4:71:1a:08:d4:31:22:12:85:3b:65:56:aa:25:73:9d:
2c:99:2e:65:5c:b3:1f:1d:57:b2:77:5a:f6:a6:aa:61:53:ad:
cf:64:8e:b0:c8:8f:1e:17:2f:32:38:5f:2c:f9:f9:86:36:02:
6b:bf:e6:04:36:a5:d6:e8:c4:aa:8f:a9:b5:16:99:12:2a:9e:
e8:f8:34:56:fc:1a:33:90:e8:e4:2f:4e:e3:60:74:66:39:d6:
31:65:db:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJWXQF3dkAB4zsO7eqk2O74MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlNjE0MGYxNzMxMjc4NGVmNjJhZTNiZTAzMGMwYzJjYzY2
MWE3MDIwHhcNMjQxMDA0MDcwOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDY2NTQ0YmI2NGU1OGY5NGY5Mjk3ZjJmNWI1MjFiMTVlOTg1ZjFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvMhNDEO1jpD+Fuf4fvPw1hKEnvD
WKMChIbmg8OdbA6hnas+kvcRCm8/+vbBUMlKS+1VvLFWC73ce18JAVb+C2aFPM3b
30ZrWmMn86wXoK/AObNGOAB8OHYfCXhGSXF4heqo2jnFjyUmWG80Lelp6JlRrlpM
CpqDkSTCEKRg1N5yI9Zk2C/Lijwto4FDOzNFexV//+yBih8lFbE5pUGRMeIGxJ4F
85OkpOxlt6488cmsi5RZLCq0TTUxMSszMvCEDLliljWGeuxQJ2j31yrDaSoIJDfY
28A1CJ3HizVXnBa+0Jkqt9c/64RMdh5RCCRNlgj0NqHkBkcLaNIwCr/UkwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD1mVEu2Tlj5T5KX8vW1IbFemF8fMB8GA1UdIwQY
MBaAFF5hQPFzEnhO9irjvgMMDCzGYacCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWG1GQThYTVNlRTcyS3VPLUF3d01MTVpocHdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9jNGNlMzItYzIyMC00MGM5LThiZTgt
MGRiY2JhMjc1NDE3LzEvUFdaVVM3Wk9XUGxQa3BmeTliVWhzVjZZWHg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi9jNGNlMzItYzIyMC00MGM5LThiZTgtMGRiY2JhMjc1NDE3
LzEvWG1GQThYTVNlRTcyS3VPLUF3d01MTVpocHdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9NZMA0G
CSqGSIb3DQEBCwUAA4IBAQB7bB69ePkO8WTSy+KM/m6ijCBWAULIgcCmD65qa3r3
UI0X3jOdCsSm7SwptSAqI+VlYD0LSDH8VE8k6o7myLD95bX5RdaLafQvfnF/TNSH
ir4C86ezBi0FijBqUdW2nyjPoGmc4Io1D9h9xPg+4qt8CP20aVAc9pCNwWfM3l3c
cMczrY/Lyzz+eVZuRbZopP72IWB0KsYU4SXP60QZ8+unrRcflaRxGgjUMSIShTtl
Vqolc50smS5lXLMfHVeyd1r2pqphU63PZI6wyI8eFy8yOF8s+fmGNgJrv+YENqXW
6MSqj6m1FpkSKp7o+DRW/BozkOjkL07jYHRmOdYxZdtJ
-----END CERTIFICATE-----
Generated at Fri Oct 4 13:33:05 2024 by rpki-client on console-fra.rpki-client.org