Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/PtLlVuE7scjZYKIpX7xaocN5f94.roa
File: PtLlVuE7scjZYKIpX7xaocN5f94.roa (raw, json)
Hash identifier: KXs9xio9fL1HNDc04Fc9QMOxUTBtJQyA+QevnpCc8iA=
Subject key identifier: 3E:D2:E5:56:E1:3B:B1:C8:D9:60:A2:29:5F:BC:5A:A1:C3:79:7F:DE
Certificate issuer: /CN=47d064fb3e541f23563065e48f300f2cfdfe009a
Certificate serial: 01856B40D890A0CD5ED0E33F98C468280702
Authority key identifier: 47:D0:64:FB:3E:54:1F:23:56:30:65:E4:8F:30:0F:2C:FD:FE:00:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/PtLlVuE7scjZYKIpX7xaocN5f94.roa
Signing time: Sun 01 Jan 2023 02:54:49 +0000
ROA not before: Sun 01 Jan 2023 02:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31708
IP address blocks: 195.244.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:40:d8:90:a0:cd:5e:d0:e3:3f:98:c4:68:28:07:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47d064fb3e541f23563065e48f300f2cfdfe009a
Validity
Not Before: Jan 1 02:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ed2e556e13bb1c8d960a2295fbc5aa1c3797fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:11:87:78:62:83:4f:e1:f9:d6:57:35:20:b3:
45:11:7f:07:19:05:6c:92:9c:f9:dc:c6:a5:ff:e4:
aa:e2:66:e6:d8:4d:0c:67:fe:1c:6c:30:11:22:8b:
2c:5c:f3:60:88:fd:5d:8d:4f:d9:29:91:e8:cc:67:
76:ae:56:38:45:5a:e2:ba:1f:e0:d4:9e:df:ce:91:
bf:98:ec:d1:a7:cb:42:ef:20:f7:b2:0a:20:3f:88:
0c:fa:65:42:c5:d6:f0:47:ea:1e:cf:85:81:21:f8:
2b:e1:18:6b:b8:f4:0d:d7:26:e9:e0:57:3d:0b:92:
f9:d7:60:45:8e:33:6d:ae:90:7b:72:a1:53:5f:a7:
b0:a9:9d:76:4a:38:0f:7c:a5:13:bc:70:48:5c:a0:
58:59:dc:08:9b:9c:e4:b8:f1:6e:60:3f:a8:8c:e4:
cf:57:cf:41:c3:0c:e5:69:02:c7:18:7f:28:25:ae:
35:50:54:15:25:03:01:12:fa:72:2c:55:02:f5:dc:
9f:3a:5c:0f:17:b3:29:20:61:59:86:14:8b:0d:c3:
4f:6e:97:60:cf:c3:8c:74:78:d5:40:13:5f:10:a3:
7f:fe:d6:ce:df:cf:b7:90:da:e4:2e:44:57:1f:ed:
33:b0:27:71:a3:3c:98:2d:00:ca:db:fb:d4:34:a2:
3b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D2:E5:56:E1:3B:B1:C8:D9:60:A2:29:5F:BC:5A:A1:C3:79:7F:DE
X509v3 Authority Key Identifier:
keyid:47:D0:64:FB:3E:54:1F:23:56:30:65:E4:8F:30:0F:2C:FD:FE:00:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/PtLlVuE7scjZYKIpX7xaocN5f94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.29.0/24
Signature Algorithm: sha256WithRSAEncryption
16:86:c4:e1:14:64:65:c4:a0:c9:8d:29:ca:cd:d2:7f:96:81:
08:2e:d4:23:32:79:a4:e1:d2:b2:20:02:3b:28:80:88:b9:8d:
ca:e0:b0:af:87:3e:57:c4:a2:89:6e:c4:e1:57:91:62:d6:e3:
13:4c:5f:7c:30:8a:2b:80:19:b4:a5:93:6d:eb:41:63:34:95:
c5:c5:a3:c2:94:97:e9:30:0d:22:5d:10:2a:77:38:b6:9a:dc:
c2:3d:a5:8a:00:06:9d:78:ca:88:b8:29:81:5f:0b:07:5d:8f:
6f:d6:ba:4e:7b:c1:84:a0:2c:b1:58:b3:09:3c:80:8e:3e:d9:
c3:c5:e7:9f:c0:ea:34:32:87:d8:fe:d6:f9:cd:06:ae:4d:50:
76:b2:b0:ac:ba:df:91:54:b4:25:16:ac:83:bd:a7:8a:1d:d3:
52:83:2e:7f:28:90:85:42:22:a0:84:78:0d:d2:4f:c9:7c:b1:
70:44:3f:0d:e5:0b:e3:b9:ec:ae:a7:8f:69:95:06:8f:e5:ff:
9e:32:39:e8:86:7d:95:ed:42:31:ee:c8:33:24:df:17:b9:80:
55:dc:23:0d:e8:c3:cb:d3:00:d7:4b:58:41:b3:44:59:82:e5:
83:22:78:8d:d7:ba:10:21:32:38:6b:61:f1:ff:4f:04:7c:8e:
7d:1f:c4:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrQNiQoM1e0OM/mMRoKAcCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3ZDA2NGZiM2U1NDFmMjM1NjMwNjVlNDhmMzAwZjJjZmRm
ZTAwOWEwHhcNMjMwMTAxMDI1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWQyZTU1NmUxM2JiMWM4ZDk2MGEyMjk1ZmJjNWFhMWMzNzk3ZmRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAghGHeGKDT+H51lc1ILNFEX8HGQVs
kpz53Mal/+Sq4mbm2E0MZ/4cbDARIossXPNgiP1djU/ZKZHozGd2rlY4RVriuh/g
1J7fzpG/mOzRp8tC7yD3sgogP4gM+mVCxdbwR+oez4WBIfgr4RhruPQN1ybp4Fc9
C5L512BFjjNtrpB7cqFTX6ewqZ12SjgPfKUTvHBIXKBYWdwIm5zkuPFuYD+ojOTP
V89BwwzlaQLHGH8oJa41UFQVJQMBEvpyLFUC9dyfOlwPF7MpIGFZhhSLDcNPbpdg
z8OMdHjVQBNfEKN//tbO38+3kNrkLkRXH+0zsCdxozyYLQDK2/vUNKI7pQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD7S5VbhO7HI2WCiKV+8WqHDeX/eMB8GA1UdIwQY
MBaAFEfQZPs+VB8jVjBl5I8wDyz9/gCaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUjlCay16NVVIeU5XTUdYa2p6QVBMUDMtQUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9kNTY2OTMtMjI1NC00YTNiLWFjYmIt
ZWZhYWZmMGE5ODJmLzEvUHRMbFZ1RTdzY2paWUtJcFg3eGFvY041Zjk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC9kNTY2OTMtMjI1NC00YTNiLWFjYmItZWZhYWZmMGE5ODJm
LzEvUjlCay16NVVIeU5XTUdYa2p6QVBMUDMtQUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/QdMA0G
CSqGSIb3DQEBCwUAA4IBAQAWhsThFGRlxKDJjSnKzdJ/loEILtQjMnmk4dKyIAI7
KICIuY3K4LCvhz5XxKKJbsThV5Fi1uMTTF98MIorgBm0pZNt60FjNJXFxaPClJfp
MA0iXRAqdzi2mtzCPaWKAAadeMqIuCmBXwsHXY9v1rpOe8GEoCyxWLMJPICOPtnD
xeefwOo0MofY/tb5zQauTVB2srCsut+RVLQlFqyDvaeKHdNSgy5/KJCFQiKghHgN
0k/JfLFwRD8N5Qvjueyup49plQaP5f+eMjnohn2V7UIx7sgzJN8XuYBV3CMN6MPL
0wDXS1hBs0RZguWDIniN17oQITI4a2Hx/08EfI59H8QT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:55 2024 by rpki-client on console-fra.rpki-client.org