Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/293698-949d-4665-ba07-8cb4e253f175/1/PGvYCn83tv0IHO9wvkuJT1w9EV4.roa
File: PGvYCn83tv0IHO9wvkuJT1w9EV4.roa (raw, json)
Hash identifier: j7RXoliM9Lal6X1W59xitMp7B78qdsk5W9DatKtMXhk=
Subject key identifier: 3C:6B:D8:0A:7F:37:B6:FD:08:1C:EF:70:BE:4B:89:4F:5C:3D:11:5E
Certificate issuer: /CN=6fad6a71defe560a0e5c21ffbb4038fb41091295
Certificate serial: 01856D7896E5CC607E2D7653778240CECDB8
Authority key identifier: 6F:AD:6A:71:DE:FE:56:0A:0E:5C:21:FF:BB:40:38:FB:41:09:12:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b61qcd7-VgoOXCH_u0A4-0EJEpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/293698-949d-4665-ba07-8cb4e253f175/1/PGvYCn83tv0IHO9wvkuJT1w9EV4.roa
Signing time: Sun 01 Jan 2023 13:14:57 +0000
ROA not before: Sun 01 Jan 2023 13:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44863
IP address blocks: 193.138.246.0/24 maxlen: 24
193.138.245.0/24 maxlen: 24
193.138.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:96:e5:cc:60:7e:2d:76:53:77:82:40:ce:cd:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fad6a71defe560a0e5c21ffbb4038fb41091295
Validity
Not Before: Jan 1 13:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c6bd80a7f37b6fd081cef70be4b894f5c3d115e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:77:ab:27:df:f3:97:5b:4e:9e:28:db:24:66:
a5:a4:14:c3:6b:59:0a:ca:e3:1d:b4:3b:22:3c:a5:
3b:7b:18:d1:46:cd:da:72:df:e0:de:47:28:6e:91:
0a:6b:bf:27:73:62:a4:63:4d:ab:5b:fd:fe:cd:de:
0c:ab:29:5c:53:62:a0:4f:4a:07:5d:3f:67:a6:59:
a3:09:6d:55:7b:16:a7:7d:7a:d4:df:3f:f0:94:64:
2f:51:d6:56:35:4f:07:b1:7f:68:b3:1c:b9:f7:ad:
3c:41:8c:9f:ec:11:fa:91:ef:77:4d:d6:15:6f:58:
f4:6f:17:de:71:34:7d:8c:9a:7a:d0:57:85:bb:3f:
13:66:fd:09:6b:89:7e:4c:07:be:6e:cf:d0:4f:0a:
fc:31:23:7b:ed:7e:13:00:d6:ff:d3:cc:b5:fe:f1:
fe:cb:eb:f1:e7:ed:e3:80:46:81:72:a9:6e:62:9c:
55:d1:ab:bf:94:88:f8:4f:69:fb:08:4b:98:d5:70:
1d:2a:83:d0:12:5e:2e:7d:e3:ab:33:51:be:86:34:
38:51:f0:70:62:d9:7b:e0:8a:ad:e2:b0:65:bb:1c:
fb:f0:54:e3:62:67:df:eb:c7:29:01:ff:b2:1e:45:
4e:e2:a9:ec:c1:74:da:28:24:e5:42:e2:d8:1b:62:
1e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:6B:D8:0A:7F:37:B6:FD:08:1C:EF:70:BE:4B:89:4F:5C:3D:11:5E
X509v3 Authority Key Identifier:
keyid:6F:AD:6A:71:DE:FE:56:0A:0E:5C:21:FF:BB:40:38:FB:41:09:12:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b61qcd7-VgoOXCH_u0A4-0EJEpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/293698-949d-4665-ba07-8cb4e253f175/1/PGvYCn83tv0IHO9wvkuJT1w9EV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/293698-949d-4665-ba07-8cb4e253f175/1/b61qcd7-VgoOXCH_u0A4-0EJEpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.245.0-193.138.247.255
Signature Algorithm: sha256WithRSAEncryption
46:12:c7:b1:22:6c:ca:8b:0f:9e:ed:c5:19:47:3d:f1:fb:ad:
ed:5c:ce:b5:64:4b:8e:70:d0:81:f6:da:1d:95:25:ab:2f:a0:
2e:d4:8b:ce:0f:ef:b9:ba:ab:a3:f3:ec:a4:5b:be:80:d0:b3:
c0:0f:23:f4:8f:9f:f1:a5:42:8d:3b:b3:9d:c7:30:10:e8:f3:
b7:ce:de:4a:0d:18:d9:b6:b1:ac:4f:3f:34:1e:cc:61:b2:6a:
d8:38:60:a5:c4:c6:33:39:89:15:a1:52:24:78:95:89:65:e7:
f8:77:65:c0:2d:45:0b:db:57:29:7e:2c:36:3e:3d:b2:fe:cb:
a6:c7:9e:10:b6:be:f7:19:ff:74:57:2f:74:2e:23:b4:0e:88:
73:73:30:2e:67:77:72:fd:f5:27:eb:06:20:d6:fd:0a:bb:f0:
ec:51:3f:3d:e8:a8:ac:f0:00:57:db:b1:43:0b:33:77:58:ea:
d4:c4:70:cd:7e:0d:da:77:9d:7e:d9:d3:e0:04:33:30:0d:21:
23:6d:df:48:aa:58:ae:f4:c7:82:58:67:65:d8:39:b7:57:e0:
bb:f6:49:36:87:4d:cb:1c:b5:28:27:ff:92:64:be:cd:db:6a:
e0:da:c1:99:7a:3d:03:c5:50:64:6b:45:eb:8f:0c:ec:41:b5:
4f:1f:4a:e8
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVteJblzGB+LXZTd4JAzs24MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmYWQ2YTcxZGVmZTU2MGEwZTVjMjFmZmJiNDAzOGZiNDEw
OTEyOTUwHhcNMjMwMTAxMTMxNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzZiZDgwYTdmMzdiNmZkMDgxY2VmNzBiZTRiODk0ZjVjM2QxMTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXerJ9/zl1tOnijbJGalpBTDa1kK
yuMdtDsiPKU7exjRRs3act/g3kcobpEKa78nc2KkY02rW/3+zd4MqylcU2KgT0oH
XT9nplmjCW1VexanfXrU3z/wlGQvUdZWNU8HsX9osxy59608QYyf7BH6ke93TdYV
b1j0bxfecTR9jJp60FeFuz8TZv0Ja4l+TAe+bs/QTwr8MSN77X4TANb/08y1/vH+
y+vx5+3jgEaBcqluYpxV0au/lIj4T2n7CEuY1XAdKoPQEl4ufeOrM1G+hjQ4UfBw
Ytl74Iqt4rBluxz78FTjYmff68cpAf+yHkVO4qnswXTaKCTlQuLYG2IeGwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFDxr2Ap/N7b9CBzvcL5LiU9cPRFeMB8GA1UdIwQY
MBaAFG+tanHe/lYKDlwh/7tAOPtBCRKVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjYxcWNkNy1WZ29PWENIX3UwQTQtMEVKRXBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8yOTM2OTgtOTQ5ZC00NjY1LWJhMDct
OGNiNGUyNTNmMTc1LzEvUEd2WUNuODN0djBJSE85d3ZrdUpUMXc5RVY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8yOTM2OTgtOTQ5ZC00NjY1LWJhMDctOGNiNGUyNTNmMTc1
LzEvYjYxcWNkNy1WZ29PWENIX3UwQTQtMEVKRXBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBADBivUD
BAPBivAwDQYJKoZIhvcNAQELBQADggEBAEYSx7EibMqLD57txRlHPfH7re1czrVk
S45w0IH22h2VJasvoC7Ui84P77m6q6Pz7KRbvoDQs8API/SPn/GlQo07s53HMBDo
87fO3koNGNm2saxPPzQezGGyatg4YKXExjM5iRWhUiR4lYll5/h3ZcAtRQvbVyl+
LDY+PbL+y6bHnhC2vvcZ/3RXL3QuI7QOiHNzMC5nd3L99SfrBiDW/Qq78OxRPz3o
qKzwAFfbsUMLM3dY6tTEcM1+Ddp3nX7Z0+AEMzANISNt30iqWK70x4JYZ2XYObdX
4Lv2STaHTcsctSgn/5Jkvs3bauDawZl6PQPFUGRrReuPDOxBtU8fSug=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:42 2024 by rpki-client on console-ams.rpki-client.org