Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/POqGodKU9SDYJaL-PFIoDhA3Y6Q.roa
File: POqGodKU9SDYJaL-PFIoDhA3Y6Q.roa (raw, json)
Hash identifier: 2xJr7rpryP0h/8+HOBiw7FxjqRusTpnjjonhqF0HQSQ=
Subject key identifier: 3C:EA:86:A1:D2:94:F5:20:D8:25:A2:FE:3C:52:28:0E:10:37:63:A4
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185708CDA43B9E0AE5A6B5448292634793F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/POqGodKU9SDYJaL-PFIoDhA3Y6Q.roa
Signing time: Mon 02 Jan 2023 03:35:57 +0000
ROA not before: Mon 02 Jan 2023 03:35:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2914
IP address blocks: 91.186.220.0/22 maxlen: 24
83.147.244.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Feb 2023 22:06:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:da:43:b9:e0:ae:5a:6b:54:48:29:26:34:79:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 03:35:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cea86a1d294f520d825a2fe3c52280e103763a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:1b:6f:98:3d:66:ee:33:e4:db:e0:1a:3d:d1:
56:4e:ae:ea:d7:ef:3e:03:74:30:82:85:a3:73:5b:
b7:bf:29:e4:6d:da:a1:de:2a:6a:2c:a7:54:41:07:
c9:4a:b6:03:99:85:51:2e:10:c0:89:25:b0:dd:f0:
ef:2b:32:17:18:e6:46:5b:d4:51:1c:3b:f8:9a:f1:
66:4f:da:53:ce:d4:6c:88:a7:fc:38:1e:16:1d:b4:
10:61:aa:ce:54:6a:3a:07:7e:04:a0:a4:cb:c9:9a:
47:c5:e1:39:4d:80:ed:6e:88:3a:81:91:e5:8e:5b:
8a:de:c2:31:00:67:0d:61:9a:61:35:00:10:15:6d:
37:b1:e2:38:82:02:17:41:af:84:b5:b7:73:37:52:
68:4e:02:4a:22:22:6a:e9:2d:ac:48:61:b6:24:82:
70:31:eb:7e:54:2f:a1:cc:b8:6c:45:03:54:44:5a:
fd:94:bd:58:45:df:3d:ba:cb:bc:9c:88:62:e4:4b:
f6:6e:e9:be:6d:1e:7e:24:f2:e7:6b:d5:cf:64:10:
02:29:e0:38:22:c5:16:6d:8b:7a:2a:e8:e0:ff:16:
0a:f1:c9:ed:c3:6c:c3:0c:21:83:e4:61:53:fe:8a:
1b:27:bd:e4:05:d5:fb:ab:cb:04:f5:81:06:09:e3:
ed:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:EA:86:A1:D2:94:F5:20:D8:25:A2:FE:3C:52:28:0E:10:37:63:A4
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/POqGodKU9SDYJaL-PFIoDhA3Y6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.244.0/22
91.186.220.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:91:12:d4:9c:f2:a0:13:6d:fd:c7:5f:8a:87:4e:f4:0f:0a:
ad:14:cd:27:ea:ef:37:30:b0:13:e4:68:37:1b:be:b6:ce:5e:
1f:0d:a3:fc:7a:4a:80:7b:91:56:f6:65:a0:a1:c7:83:b3:99:
7d:a7:8e:23:59:e7:59:e2:d0:dd:43:e9:cf:48:26:4c:ac:0f:
af:93:ce:4e:f1:69:a0:da:2e:91:91:e4:1b:c2:53:ee:97:e5:
f5:50:6e:06:7c:e9:cd:85:19:70:d1:02:d8:8e:31:35:80:2d:
65:e2:74:2e:d0:03:83:13:b1:c0:99:74:13:04:5e:40:55:1c:
63:67:91:23:66:6d:45:19:60:9c:49:73:1b:0d:00:4d:2b:53:
e4:e6:73:9a:65:9f:04:e6:03:95:2b:8d:e0:cb:07:e5:c0:2a:
36:5d:ee:db:fe:e6:34:40:7b:cb:bf:37:cf:bd:40:27:1c:f0:
fa:62:c6:25:33:7c:fd:aa:5a:08:14:5f:02:86:33:74:aa:09:
15:16:f9:8c:00:05:eb:86:e6:19:3f:9d:51:9f:1b:26:8a:8f:
2e:36:72:77:c4:e6:5a:01:91:f4:ff:d7:8a:3c:a0:55:e7:9e:
6f:2a:ef:50:81:6d:44:b5:41:38:c0:c1:19:f0:2b:c0:56:d8:
5c:1b:7e:67
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVwjNpDueCuWmtUSCkmNHk/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjMwMTAyMDMzNTU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2VhODZhMWQyOTRmNTIwZDgyNWEyZmUzYzUyMjgwZTEwMzc2M2E0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhRtvmD1m7jPk2+AaPdFWTq7q1+8+
A3QwgoWjc1u3vynkbdqh3ipqLKdUQQfJSrYDmYVRLhDAiSWw3fDvKzIXGOZGW9RR
HDv4mvFmT9pTztRsiKf8OB4WHbQQYarOVGo6B34EoKTLyZpHxeE5TYDtbog6gZHl
jluK3sIxAGcNYZphNQAQFW03seI4ggIXQa+EtbdzN1JoTgJKIiJq6S2sSGG2JIJw
Met+VC+hzLhsRQNURFr9lL1YRd89usu8nIhi5Ev2bum+bR5+JPLna9XPZBACKeA4
IsUWbYt6Kujg/xYK8cntw2zDDCGD5GFT/oobJ73kBdX7q8sE9YEGCePtOwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFDzqhqHSlPUg2CWi/jxSKA4QN2OkMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvUE9xR29kS1U5U0RZSmFMLVBGSW9EaEEzWTZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCU5P0AwQC
W7rcMA0GCSqGSIb3DQEBCwUAA4IBAQAekRLUnPKgE239x1+Kh070DwqtFM0n6u83
MLAT5Gg3G762zl4fDaP8ekqAe5FW9mWgoceDs5l9p44jWedZ4tDdQ+nPSCZMrA+v
k85O8Wmg2i6RkeQbwlPul+X1UG4GfOnNhRlw0QLYjjE1gC1l4nQu0AODE7HAmXQT
BF5AVRxjZ5EjZm1FGWCcSXMbDQBNK1Pk5nOaZZ8E5gOVK43gywflwCo2Xe7b/uY0
QHvLvzfPvUAnHPD6YsYlM3z9qloIFF8ChjN0qgkVFvmMAAXrhuYZP51Rnxsmio8u
NnJ3xOZaAZH0/9eKPKBV555vKu9QgW1EtUE4wMEZ8CvAVthcG35n
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org