Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/pnb_TA8SupZ44BeDhgDncnFBhGc.roa
File: pnb_TA8SupZ44BeDhgDncnFBhGc.roa (raw, json)
Hash identifier: 74vWQMvbtajwiUDEBuve3z8N+eiBfvxn6iS9pAo5Cu8=
Subject key identifier: A6:76:FF:4C:0F:12:BA:96:78:E0:17:83:86:00:E7:72:71:41:84:67
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0188F6BB188DFE06EAF9D8BF483B47808996
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/pnb_TA8SupZ44BeDhgDncnFBhGc.roa
Signing time: Mon 26 Jun 2023 08:03:56 +0000
ROA not before: Mon 26 Jun 2023 08:03:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 80.71.229.0/24 maxlen: 24
81.29.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Jun 2023 08:32:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f6:bb:18:8d:fe:06:ea:f9:d8:bf:48:3b:47:80:89:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jun 26 08:03:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a676ff4c0f12ba9678e017838600e77271418467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:9c:e8:28:76:f8:14:08:22:68:84:49:73:05:
b3:94:b2:ac:45:07:de:c9:3f:76:ba:45:86:1d:0f:
f1:2f:1e:dc:8c:c3:7b:d8:fc:72:b9:27:c7:fd:b1:
63:78:dd:b8:a9:0c:06:cc:7a:77:20:a3:e4:2e:1f:
72:32:c7:36:83:d6:73:02:36:57:36:3d:ae:04:90:
c8:03:18:12:16:9f:4f:5b:38:d5:36:58:ce:87:63:
1d:07:08:4d:b0:7e:cc:b0:54:91:0b:52:81:f9:d6:
99:2a:2b:1b:ea:90:45:25:1d:1c:9a:1a:0c:2c:81:
78:84:a9:65:48:62:e8:f5:77:53:70:b9:84:b6:e6:
1a:2b:cb:fe:0d:04:59:8a:04:7e:2f:9b:f8:f0:3a:
1c:ee:e6:7e:04:a4:c5:d6:9f:ce:7b:3f:75:d6:53:
90:55:6d:ec:dd:3a:f3:97:11:22:10:a0:19:6e:ac:
58:c9:ed:5c:0f:60:d0:89:67:d2:48:dc:ea:7a:7d:
d0:dd:3e:b5:cb:69:36:b3:67:9c:76:53:f4:14:9a:
93:7b:c7:bb:21:60:0b:ac:6f:af:95:99:ed:f7:d2:
99:bf:ca:d3:3c:79:58:bb:b1:70:62:4d:ca:8f:9f:
74:b7:69:67:3a:b0:bc:fb:ab:99:b7:24:90:3a:c9:
a6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:76:FF:4C:0F:12:BA:96:78:E0:17:83:86:00:E7:72:71:41:84:67
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/pnb_TA8SupZ44BeDhgDncnFBhGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.229.0/24
81.29.153.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:ba:35:e6:b7:e4:6e:d6:58:18:fc:54:c5:69:78:30:0c:b0:
00:75:6d:fb:14:01:e7:3b:ae:d8:bc:d3:c7:69:aa:23:f8:6e:
a6:9f:3a:5f:70:98:96:0d:37:91:d2:a4:66:99:f4:11:71:1c:
5b:63:2c:6e:9d:c4:7b:8f:3f:ad:5b:91:af:a1:21:53:da:d9:
ab:f7:9a:08:03:f9:6f:a9:e3:77:c0:a2:70:61:5d:31:bb:87:
b7:72:54:5b:8c:14:16:a9:f6:0e:ee:2a:fb:98:d0:a7:8a:11:
a2:10:e7:25:b6:34:57:83:43:d2:63:a1:09:d2:0e:8d:3b:64:
cc:24:eb:3a:ee:cf:3e:82:b4:98:c1:3e:94:a8:90:0d:c5:8b:
10:88:89:85:89:c6:e9:c2:cc:07:11:05:61:d6:d6:94:7b:ab:
d2:fc:57:99:a0:31:9a:6e:e3:98:78:3a:3e:60:3f:b5:97:85:
89:8a:80:0d:dc:dd:de:31:ee:80:fb:80:49:f2:ee:a0:22:80:
7a:60:55:73:6a:31:b4:8c:61:86:8d:0c:e3:87:d3:a6:ca:65:
49:7c:72:7e:72:23:a1:28:0b:76:1b:3c:f8:a1:1d:e8:ff:44:
97:c5:20:19:6e:e9:52:46:e8:a9:48:24:55:8a:87:3d:e7:63:
2b:5f:85:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:36 2024 by rpki-client on console-ams.rpki-client.org