Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/9383b5-7083-4cc3-9e69-97f6f2a39626/1/pgByZOqwNUvd3YrkxWKz3pu8Xsg.roa
File: pgByZOqwNUvd3YrkxWKz3pu8Xsg.roa (raw, json)
Hash identifier: OZ1wMT7AGg7SgsVwmFdAQT+N/XmakVNgdHswPD9Os2Y=
Subject key identifier: A6:00:72:64:EA:B0:35:4B:DD:DD:8A:E4:C5:62:B3:DE:9B:BC:5E:C8
Certificate issuer: /CN=16f02e70a6553ff0c665139ee55671c860658081
Certificate serial: 018570799F82B62978378D827CDFFB3B3639
Authority key identifier: 16:F0:2E:70:A6:55:3F:F0:C6:65:13:9E:E5:56:71:C8:60:65:80:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FvAucKZVP_DGZROe5VZxyGBlgIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/9383b5-7083-4cc3-9e69-97f6f2a39626/1/pgByZOqwNUvd3YrkxWKz3pu8Xsg.roa
Signing time: Mon 02 Jan 2023 03:14:56 +0000
ROA not before: Mon 02 Jan 2023 03:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48359
IP address blocks: 185.120.139.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:9f:82:b6:29:78:37:8d:82:7c:df:fb:3b:36:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16f02e70a6553ff0c665139ee55671c860658081
Validity
Not Before: Jan 2 03:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6007264eab0354bdddd8ae4c562b3de9bbc5ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:41:89:78:b8:b5:a3:d4:44:e1:61:b8:0c:4d:
be:58:c2:45:b0:2b:71:42:00:98:e5:67:ce:af:18:
24:e6:c3:50:dc:83:8d:ed:26:87:81:c4:20:b2:1a:
b8:bd:12:59:36:b0:3f:ee:a8:08:63:99:6b:1a:a0:
cc:34:39:b0:b1:97:c7:78:09:34:16:e8:05:24:63:
0b:0f:6a:b9:ca:68:0a:94:a9:af:e2:aa:24:65:f5:
5a:14:c2:9b:48:9d:7a:d7:ed:f1:8b:1d:6e:24:62:
32:46:b9:da:f1:0d:e9:3e:67:df:54:8c:99:a2:5a:
17:63:d9:33:6b:d4:14:e7:37:70:12:c6:ce:a4:a9:
2c:57:89:c8:a5:69:f2:5b:52:05:3b:93:fc:8c:79:
3e:f7:a1:5c:65:46:5d:ae:96:c6:22:78:97:9e:9e:
26:a4:45:80:ef:fc:67:dd:bb:1e:2b:27:78:af:3b:
f7:6e:0c:01:b4:98:54:9c:dc:4f:c3:1d:7e:c9:40:
d6:22:60:92:be:36:b5:61:0b:e7:f5:9d:cb:88:94:
4e:ad:d7:e7:94:6b:dc:67:cb:cf:f9:96:74:f3:28:
38:28:cf:53:bd:dd:8e:fe:a3:90:72:8e:40:9f:79:
db:30:7d:d8:b4:92:16:d4:2f:5a:22:4a:63:12:27:
ff:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:00:72:64:EA:B0:35:4B:DD:DD:8A:E4:C5:62:B3:DE:9B:BC:5E:C8
X509v3 Authority Key Identifier:
keyid:16:F0:2E:70:A6:55:3F:F0:C6:65:13:9E:E5:56:71:C8:60:65:80:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FvAucKZVP_DGZROe5VZxyGBlgIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/9383b5-7083-4cc3-9e69-97f6f2a39626/1/pgByZOqwNUvd3YrkxWKz3pu8Xsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/9383b5-7083-4cc3-9e69-97f6f2a39626/1/FvAucKZVP_DGZROe5VZxyGBlgIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.139.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:ce:8c:41:e6:c7:1b:30:10:76:41:e8:62:e5:18:c9:6c:5b:
67:3f:52:4d:9a:ab:42:75:1f:91:15:c4:0d:51:a4:e5:e5:18:
b5:42:d9:0d:d8:19:b4:16:54:1f:8f:b1:4c:28:16:9d:ed:dc:
00:dc:b0:53:01:69:33:8d:3b:72:b2:6e:1d:ad:62:94:41:80:
fc:4a:30:51:27:8d:5a:73:97:c5:27:4a:06:96:69:9d:9c:6f:
9a:e4:a9:b5:9d:89:d7:fd:f0:05:c6:5c:17:38:8a:c0:67:89:
db:8b:be:55:6c:fc:cb:3a:b5:ea:28:9c:b9:e7:df:35:4c:2c:
9a:61:5d:12:6b:98:c9:48:27:99:dc:32:df:bf:ac:5a:53:a0:
6c:1c:17:7d:f8:14:bf:6a:d1:a3:23:53:a3:ba:48:a2:c2:20:
9b:2b:a0:79:c6:da:63:d4:23:59:8b:33:c1:03:36:7d:76:ef:
7f:5b:34:ad:a7:4f:66:85:14:14:50:e7:62:0e:60:29:35:a8:
67:f6:a5:9a:98:6a:06:97:35:c5:ab:92:69:83:c2:b3:03:19:
f5:f2:1c:ea:7d:5b:d0:7f:3f:87:f6:f2:c5:d3:de:49:f1:7e:
6c:3e:d7:22:62:78:b6:aa:9e:7e:4a:2c:f3:d1:b3:d0:55:59:
33:3c:ec:99
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVweZ+Ctil4N42CfN/7OzY5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2ZjAyZTcwYTY1NTNmZjBjNjY1MTM5ZWU1NTY3MWM4NjA2
NTgwODEwHhcNMjMwMTAyMDMxNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjAwNzI2NGVhYjAzNTRiZGRkZDhhZTRjNTYyYjNkZTliYmM1ZWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUGJeLi1o9RE4WG4DE2+WMJFsCtx
QgCY5WfOrxgk5sNQ3ION7SaHgcQgshq4vRJZNrA/7qgIY5lrGqDMNDmwsZfHeAk0
FugFJGMLD2q5ymgKlKmv4qokZfVaFMKbSJ161+3xix1uJGIyRrna8Q3pPmffVIyZ
oloXY9kza9QU5zdwEsbOpKksV4nIpWnyW1IFO5P8jHk+96FcZUZdrpbGIniXnp4m
pEWA7/xn3bseKyd4rzv3bgwBtJhUnNxPwx1+yUDWImCSvja1YQvn9Z3LiJROrdfn
lGvcZ8vP+ZZ08yg4KM9Tvd2O/qOQco5An3nbMH3YtJIW1C9aIkpjEif/nwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKYAcmTqsDVL3d2K5MVis96bvF7IMB8GA1UdIwQY
MBaAFBbwLnCmVT/wxmUTnuVWcchgZYCBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnZBdWNLWlZQX0RHWlJPZTVWWnh5R0JsZ0lFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi85MzgzYjUtNzA4My00Y2MzLTllNjkt
OTdmNmYyYTM5NjI2LzEvcGdCeVpPcXdOVXZkM1lya3hXS3ozcHU4WHNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi85MzgzYjUtNzA4My00Y2MzLTllNjktOTdmNmYyYTM5NjI2
LzEvRnZBdWNLWlZQX0RHWlJPZTVWWnh5R0JsZ0lFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXiLMA0G
CSqGSIb3DQEBCwUAA4IBAQCgzoxB5scbMBB2Qehi5RjJbFtnP1JNmqtCdR+RFcQN
UaTl5Ri1QtkN2Bm0FlQfj7FMKBad7dwA3LBTAWkzjTtysm4drWKUQYD8SjBRJ41a
c5fFJ0oGlmmdnG+a5Km1nYnX/fAFxlwXOIrAZ4nbi75VbPzLOrXqKJy55981TCya
YV0Sa5jJSCeZ3DLfv6xaU6BsHBd9+BS/atGjI1OjukiiwiCbK6B5xtpj1CNZizPB
AzZ9du9/WzStp09mhRQUUOdiDmApNahn9qWamGoGlzXFq5Jpg8KzAxn18hzqfVvQ
fz+H9vLF095J8X5sPtciYni2qp5+Sizz0bPQVVkzPOyZ
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:19 2024 by rpki-client on console-fra.rpki-client.org