Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/PJdrnPYmU-hQURmHISVTpYYACyw.roa
File: PJdrnPYmU-hQURmHISVTpYYACyw.roa (raw, json)
Hash identifier: yzfN3CdrRyMpZ4uFUMSSPGqEJHMD/mExCoO5HB+UB44=
Subject key identifier: 3C:97:6B:9C:F6:26:53:E8:50:51:19:87:21:25:53:A5:86:00:0B:2C
Certificate issuer: /CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Certificate serial: 01856F796FFE6DFBCDC380C3C8262895F8CF
Authority key identifier: 53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/PJdrnPYmU-hQURmHISVTpYYACyw.roa
Signing time: Sun 01 Jan 2023 22:35:07 +0000
ROA not before: Sun 01 Jan 2023 22:35:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197216
IP address blocks: 89.187.83.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:6f:fe:6d:fb:cd:c3:80:c3:c8:26:28:95:f8:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Validity
Not Before: Jan 1 22:35:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c976b9cf62653e850511987212553a586000b2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:23:3e:68:70:20:b5:56:6e:4d:8b:e8:42:40:
79:ae:5a:cf:7e:88:d9:1f:13:e3:2c:87:d8:ce:bb:
aa:da:e3:96:a9:da:fc:8a:10:49:dd:0d:6d:3f:38:
e3:a1:f3:c1:c4:a2:87:39:1b:30:d7:6d:5b:b1:27:
81:87:bb:68:9b:35:13:cf:ac:ec:37:87:37:72:29:
e4:fc:51:db:21:11:48:3c:6e:e5:1e:4e:35:0e:8d:
be:a6:77:20:15:0b:f6:e3:bb:b9:79:17:0f:ef:7d:
65:61:94:86:2c:1c:cf:16:cd:b0:01:d4:95:5b:95:
7d:2c:65:38:ec:46:70:36:64:ed:09:c4:0a:38:59:
c3:2f:a4:77:00:96:80:c4:88:65:58:dd:00:24:22:
81:82:64:58:da:ea:b6:8f:aa:eb:26:c9:cf:47:8e:
74:83:1b:2a:25:07:2c:9a:9b:f2:f3:e7:91:ec:79:
59:5f:4a:f7:49:dc:c9:c3:33:06:72:ff:6d:1f:d6:
09:ca:f4:44:24:50:e5:a1:8e:a4:40:2f:49:e4:f1:
6a:7f:6e:f8:5b:c3:e3:53:4b:90:95:9e:10:ab:a1:
d3:70:7d:a9:a9:b6:31:a9:ab:e3:af:fd:65:69:a4:
1b:c2:d7:85:e5:9b:27:59:24:be:63:ad:e8:d5:f7:
73:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:97:6B:9C:F6:26:53:E8:50:51:19:87:21:25:53:A5:86:00:0B:2C
X509v3 Authority Key Identifier:
keyid:53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/PJdrnPYmU-hQURmHISVTpYYACyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.83.0/24
Signature Algorithm: sha256WithRSAEncryption
80:e1:8e:4d:a4:72:f3:3c:09:2f:c7:f4:14:c4:c8:f5:e2:ef:
91:31:84:5c:b2:b6:c7:d3:b0:75:ae:aa:21:90:b4:f4:d9:bc:
36:d0:b8:10:5f:cd:ad:0d:45:cc:50:a1:50:0f:4f:5b:d4:d3:
0c:ed:d0:9b:d9:9a:3a:c0:57:4a:30:11:e5:68:e2:1c:55:e0:
d1:ce:10:c4:63:b9:71:3e:6e:8a:9d:83:7a:a9:e1:6e:bf:8f:
28:f7:a6:64:7e:dd:84:a8:4e:01:92:bf:33:00:4c:66:29:00:
2a:d4:f0:93:43:97:9b:9b:25:42:59:86:d2:50:8b:8e:94:e9:
33:77:bf:55:09:f9:cf:90:17:5f:4d:bb:5b:3f:60:5f:1b:9b:
7d:0d:e1:ac:65:55:95:f6:25:7a:87:3e:24:10:c9:b2:e3:62:
0f:12:20:e0:6c:1b:27:f9:f7:04:16:b1:d2:6f:b3:be:e2:fe:
4c:02:a8:c6:f8:bd:d4:3c:c6:4d:88:ab:8a:95:dc:a8:14:69:
b4:33:c3:3d:51:42:26:d4:be:99:5e:41:09:b2:da:75:59:2b:
f4:e2:bc:1c:d2:a9:4f:d5:b4:e5:21:eb:9e:7a:ee:61:37:e1:
f0:ae:a7:7d:d2:84:9a:6d:06:51:8f:8f:7e:bf:8e:4b:e7:13:
4d:dd:2e:54
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVveW/+bfvNw4DDyCYolfjPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYjYyYWNlNjE1YjkwNmI0MmFiMjdmNGZiMWQyMDNkZjM2
ZDU0MzYwHhcNMjMwMTAxMjIzNTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzk3NmI5Y2Y2MjY1M2U4NTA1MTE5ODcyMTI1NTNhNTg2MDAwYjJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkSM+aHAgtVZuTYvoQkB5rlrPfojZ
HxPjLIfYzruq2uOWqdr8ihBJ3Q1tPzjjofPBxKKHORsw121bsSeBh7tomzUTz6zs
N4c3cink/FHbIRFIPG7lHk41Do2+pncgFQv247u5eRcP731lYZSGLBzPFs2wAdSV
W5V9LGU47EZwNmTtCcQKOFnDL6R3AJaAxIhlWN0AJCKBgmRY2uq2j6rrJsnPR450
gxsqJQcsmpvy8+eR7HlZX0r3SdzJwzMGcv9tH9YJyvREJFDloY6kQC9J5PFqf274
W8PjU0uQlZ4Qq6HTcH2pqbYxqavjr/1laaQbwteF5ZsnWSS+Y63o1fdz7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDyXa5z2JlPoUFEZhyElU6WGAAssMB8GA1UdIwQY
MBaAFFO2Ks5hW5BrQqsn9PsdID3zbVQ2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTdZcXptRmJrR3RDcXlmMC14MGdQZk50VkRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC84YjA3Y2QtMGNlZC00YWZjLThkMDIt
OTcyYTRjM2RjM2YzLzEvUEpkcm5QWW1VLWhRVVJtSElTVlRwWVlBQ3l3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC84YjA3Y2QtMGNlZC00YWZjLThkMDItOTcyYTRjM2RjM2Yz
LzEvVTdZcXptRmJrR3RDcXlmMC14MGdQZk50VkRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWbtTMA0G
CSqGSIb3DQEBCwUAA4IBAQCA4Y5NpHLzPAkvx/QUxMj14u+RMYRcsrbH07B1rqoh
kLT02bw20LgQX82tDUXMUKFQD09b1NMM7dCb2Zo6wFdKMBHlaOIcVeDRzhDEY7lx
Pm6KnYN6qeFuv48o96Zkft2EqE4Bkr8zAExmKQAq1PCTQ5ebmyVCWYbSUIuOlOkz
d79VCfnPkBdfTbtbP2BfG5t9DeGsZVWV9iV6hz4kEMmy42IPEiDgbBsn+fcEFrHS
b7O+4v5MAqjG+L3UPMZNiKuKldyoFGm0M8M9UUIm1L6ZXkEJstp1WSv04rwc0qlP
1bTlIeueeu5hN+Hwrqd90oSabQZRj49+v45L5xNN3S5U
-----END CERTIFICATE-----
Generated at Tue Jan 2 11:52:22 2024 by rpki-client on console-fra.rpki-client.org