Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/PmtnSsag07je9aCfafQW1ckMx4A.roa
File: PmtnSsag07je9aCfafQW1ckMx4A.roa (raw, json)
Hash identifier: LL9koGNWcBwkAsOEF1u1AbwNVVnRagF8ja38CmVyNhs=
Subject key identifier: 3E:6B:67:4A:C6:A0:D3:B8:DE:F5:A0:9F:69:F4:16:D5:C9:0C:C7:80
Certificate issuer: /CN=66d337d330ba44efcfef555355132a6a2c69783c
Certificate serial: 0190DDEBF68550C8A3561AFFD2B0FFD722E4
Authority key identifier: 66:D3:37:D3:30:BA:44:EF:CF:EF:55:53:55:13:2A:6A:2C:69:78:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtM30zC6RO_P71VTVRMqaixpeDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/PmtnSsag07je9aCfafQW1ckMx4A.roa
Signing time: Tue 23 Jul 2024 04:49:07 +0000
ROA not before: Tue 23 Jul 2024 04:49:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9147
IP address blocks: 185.176.56.0/22 maxlen: 22
185.176.56.0/24 maxlen: 24
185.176.57.0/24 maxlen: 24
185.176.58.0/24 maxlen: 24
185.176.59.0/24 maxlen: 24
212.86.64.0/19 maxlen: 19
212.86.64.0/20 maxlen: 20
212.86.64.0/24 maxlen: 24
212.86.65.0/24 maxlen: 24
212.86.66.0/24 maxlen: 24
212.86.67.0/24 maxlen: 24
212.86.68.0/24 maxlen: 24
212.86.69.0/24 maxlen: 24
212.86.70.0/24 maxlen: 24
212.86.71.0/24 maxlen: 24
212.86.72.0/24 maxlen: 24
212.86.73.0/24 maxlen: 24
212.86.74.0/24 maxlen: 24
212.86.75.0/24 maxlen: 24
212.86.76.0/24 maxlen: 24
212.86.77.0/24 maxlen: 24
212.86.78.0/24 maxlen: 24
212.86.79.0/24 maxlen: 24
212.86.80.0/20 maxlen: 20
212.86.80.0/24 maxlen: 24
212.86.81.0/24 maxlen: 24
212.86.82.0/24 maxlen: 24
212.86.83.0/24 maxlen: 24
212.86.84.0/24 maxlen: 24
212.86.85.0/24 maxlen: 24
212.86.86.0/24 maxlen: 24
212.86.87.0/24 maxlen: 24
212.86.88.0/24 maxlen: 24
212.86.89.0/24 maxlen: 24
212.86.90.0/24 maxlen: 24
212.86.91.0/24 maxlen: 24
212.86.92.0/24 maxlen: 24
212.86.93.0/24 maxlen: 24
212.86.94.0/24 maxlen: 24
212.86.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:dd:eb:f6:85:50:c8:a3:56:1a:ff:d2:b0:ff:d7:22:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d337d330ba44efcfef555355132a6a2c69783c
Validity
Not Before: Jul 23 04:49:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e6b674ac6a0d3b8def5a09f69f416d5c90cc780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f3:5c:ef:ab:a9:66:d3:04:d7:86:cf:78:b1:
10:09:12:b2:67:91:94:1a:ca:96:6b:6b:9f:c4:5c:
9a:34:cd:48:53:18:4c:4a:a1:3a:d8:c3:3e:1f:e8:
dc:39:48:30:1e:df:2f:c6:7b:a7:81:b7:11:54:a5:
10:e7:6d:2e:55:de:0d:08:f1:61:08:76:a7:e3:d2:
94:b5:89:31:5a:55:ff:4e:05:e0:bb:0b:25:2f:55:
e9:7a:3b:58:77:10:f5:4c:86:a4:01:f5:3c:86:17:
73:09:37:28:51:1d:2b:32:8a:ae:2b:c7:71:28:14:
62:20:30:7a:0d:ab:d0:9b:28:1d:60:e4:19:5d:40:
de:14:ed:44:2f:f0:b1:0f:92:01:9b:a7:05:a7:7c:
d5:6b:ce:17:5e:80:b9:ca:6a:de:77:b9:d3:59:78:
2c:86:df:10:6e:e5:30:8a:ac:f5:01:87:c6:e3:a8:
89:5f:fd:9f:8a:68:97:0f:6d:16:62:5e:5b:8d:b8:
00:5e:63:e1:98:fe:37:14:0e:26:4e:da:90:58:80:
c8:08:41:c6:db:61:65:35:3f:af:45:7e:fb:f7:45:
14:f4:7d:f4:29:e7:da:0d:f1:14:7f:04:80:3a:e6:
2e:8a:44:10:69:fa:d3:a0:67:6d:c8:b4:ef:6f:93:
c0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:6B:67:4A:C6:A0:D3:B8:DE:F5:A0:9F:69:F4:16:D5:C9:0C:C7:80
X509v3 Authority Key Identifier:
keyid:66:D3:37:D3:30:BA:44:EF:CF:EF:55:53:55:13:2A:6A:2C:69:78:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtM30zC6RO_P71VTVRMqaixpeDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/PmtnSsag07je9aCfafQW1ckMx4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/ZtM30zC6RO_P71VTVRMqaixpeDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.56.0/22
212.86.64.0/19
Signature Algorithm: sha256WithRSAEncryption
9a:35:bc:ef:2e:c7:2d:86:54:8d:01:e7:14:a1:6c:53:8e:5a:
fd:92:cc:c2:9c:e9:0f:ab:8b:64:f3:cd:b8:4e:9a:ce:29:99:
64:3e:3f:d3:7f:bc:ae:6c:04:2e:c9:15:d0:2a:3b:95:2e:d4:
a7:cc:3b:42:24:6d:15:7b:71:9e:e0:08:e4:ba:fe:f1:f5:25:
9d:80:e8:6e:f1:26:18:e1:24:3d:ed:88:7c:73:12:08:e1:f6:
3b:e4:f7:ba:34:ff:65:cc:76:0e:fb:e3:7f:de:94:34:cc:be:
9f:31:37:0a:29:df:80:5a:55:c4:71:08:5e:15:20:c0:62:ea:
ca:b9:c5:b3:9d:56:2a:be:9e:9d:0f:49:ce:c4:91:c3:a7:97:
b5:a7:01:ab:5f:83:3a:83:64:4b:0c:d7:50:c0:6c:b6:66:2d:
c8:97:05:97:ab:9d:38:ef:cd:cd:33:6e:57:b1:28:e4:de:76:
9d:b8:3f:4a:23:1f:ae:6a:f8:5a:70:f4:da:e6:3b:d2:cc:4d:
0b:aa:89:e2:b1:25:3f:5a:86:25:85:32:c7:b1:05:95:31:92:
29:54:93:85:fa:28:6a:6d:de:94:c8:69:fb:89:ad:0a:b3:38:
48:f6:18:81:86:f4:8a:77:3e:37:9a:1a:1c:a5:c4:0b:90:31:
7a:b8:6e:83
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZDd6/aFUMijVhr/0rD/1yLkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZDMzN2QzMzBiYTQ0ZWZjZmVmNTU1MzU1MTMyYTZhMmM2
OTc4M2MwHhcNMjQwNzIzMDQ0OTA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZTZiNjc0YWM2YTBkM2I4ZGVmNWEwOWY2OWY0MTZkNWM5MGNjNzgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0fNc76upZtME14bPeLEQCRKyZ5GU
GsqWa2ufxFyaNM1IUxhMSqE62MM+H+jcOUgwHt8vxnungbcRVKUQ520uVd4NCPFh
CHan49KUtYkxWlX/TgXguwslL1XpejtYdxD1TIakAfU8hhdzCTcoUR0rMoquK8dx
KBRiIDB6DavQmygdYOQZXUDeFO1EL/CxD5IBm6cFp3zVa84XXoC5ymred7nTWXgs
ht8QbuUwiqz1AYfG46iJX/2fimiXD20WYl5bjbgAXmPhmP43FA4mTtqQWIDICEHG
22FlNT+vRX7790UU9H30KefaDfEUfwSAOuYuikQQafrToGdtyLTvb5PA3QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFD5rZ0rGoNO43vWgn2n0FtXJDMeAMB8GA1UdIwQY
MBaAFGbTN9MwukTvz+9VU1UTKmosaXg8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnRNMzB6QzZST19QNzFWVFZSTXFhaXhwZUR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC8yYjVlN2MtNjdiMS00NzdkLTg5NWYt
OGY1ZmM5MjEyNWRiLzEvUG10blNzYWcwN2plOWFDZmFmUVcxY2tNeDRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC8yYjVlN2MtNjdiMS00NzdkLTg5NWYtOGY1ZmM5MjEyNWRi
LzEvWnRNMzB6QzZST19QNzFWVFZSTXFhaXhwZUR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCubA4AwQF
1FZAMA0GCSqGSIb3DQEBCwUAA4IBAQCaNbzvLscthlSNAecUoWxTjlr9kszCnOkP
q4tk8824TprOKZlkPj/Tf7yubAQuyRXQKjuVLtSnzDtCJG0Ve3Ge4Ajkuv7x9SWd
gOhu8SYY4SQ97Yh8cxII4fY75Pe6NP9lzHYO++N/3pQ0zL6fMTcKKd+AWlXEcQhe
FSDAYurKucWznVYqvp6dD0nOxJHDp5e1pwGrX4M6g2RLDNdQwGy2Zi3IlwWXq504
783NM25XsSjk3naduD9KIx+uavhacPTa5jvSzE0LqonisSU/WoYlhTLHsQWVMZIp
VJOF+ihqbd6UyGn7ia0KszhI9hiBhvSKdz43mhocpcQLkDF6uG6D
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:33:45 2025 by rpki-client