Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/PLC57z8a-COLc-dEQg44IW1TD2U.roa
File: PLC57z8a-COLc-dEQg44IW1TD2U.roa (raw, json)
Hash identifier: TgBtFJpdBPVtSLcDuJaEQVI7rWOzvkazjYjihhNEokc=
Subject key identifier: 3C:B0:B9:EF:3F:1A:F8:23:8B:73:E7:44:42:0E:38:21:6D:53:0F:65
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 018DC6E60EBDD0321A7903B13C067B6158C3
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/PLC57z8a-COLc-dEQg44IW1TD2U.roa
Signing time: Tue 20 Feb 2024 14:23:02 +0000
ROA not before: Tue 20 Feb 2024 14:23:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13213
IP address blocks: 5.182.184.0/24 maxlen: 24
45.67.146.0/24 maxlen: 24
78.31.206.0/24 maxlen: 24
78.31.207.0/24 maxlen: 24
79.98.182.0/24 maxlen: 24
162.218.88.0/24 maxlen: 24
162.218.89.0/24 maxlen: 24
162.218.91.0/24 maxlen: 24
162.218.92.0/24 maxlen: 24
162.218.93.0/24 maxlen: 24
162.218.94.0/24 maxlen: 24
185.52.136.0/24 maxlen: 24
185.52.137.0/24 maxlen: 24
185.52.139.0/24 maxlen: 24
185.161.191.0/24 maxlen: 24
185.171.126.0/24 maxlen: 24
185.187.213.0/24 maxlen: 24
185.187.214.0/24 maxlen: 24
185.187.215.0/24 maxlen: 24
185.201.40.0/24 maxlen: 24
185.205.206.0/24 maxlen: 24
185.205.207.0/24 maxlen: 24
185.208.152.0/24 maxlen: 24
185.208.153.0/24 maxlen: 24
185.208.154.0/24 maxlen: 24
185.230.120.0/24 maxlen: 24
185.230.121.0/24 maxlen: 24
185.230.123.0/24 maxlen: 24
212.60.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 16:08:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c6:e6:0e:bd:d0:32:1a:79:03:b1:3c:06:7b:61:58:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Feb 20 14:23:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3cb0b9ef3f1af8238b73e744420e38216d530f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:39:94:8e:17:44:22:eb:1b:d1:17:47:97:45:
74:e8:19:ab:73:88:90:fe:82:8f:c1:89:5b:3a:d8:
1e:33:9f:56:12:eb:ae:4f:02:ee:fd:52:d1:a3:9a:
f4:6a:be:5a:a6:de:2c:26:e4:95:1f:1b:9f:c8:23:
f1:9a:80:4d:ac:e5:8e:3a:02:51:0d:8d:e8:b2:b4:
2e:11:d9:8c:eb:56:3b:ee:07:fa:f3:f8:5b:3b:45:
79:05:35:38:fc:eb:98:6e:e8:15:83:56:19:69:b0:
19:24:df:9b:68:8d:b5:68:e6:ef:b9:29:47:88:83:
39:cd:71:1c:01:ee:2a:dd:be:42:49:c0:7a:5e:90:
49:df:3d:82:ed:e5:5c:41:ae:3c:8d:24:4c:4f:6b:
7e:92:12:6a:10:9a:01:19:0a:c4:20:f8:1e:0c:4b:
31:0b:ff:d2:fd:32:10:3c:f9:a0:94:e7:52:91:91:
cb:4f:73:6e:94:0f:20:c2:bf:d6:06:66:d3:57:d1:
4e:37:1f:0f:ba:16:c7:22:49:4d:2c:01:39:ee:05:
ba:b9:1c:da:3d:bb:d9:87:02:05:fd:46:8f:c1:17:
06:3e:be:e8:e2:b9:35:4d:28:86:14:b2:3a:70:28:
57:8e:ca:90:4a:2c:e5:aa:d0:14:69:fc:9a:75:25:
7b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B0:B9:EF:3F:1A:F8:23:8B:73:E7:44:42:0E:38:21:6D:53:0F:65
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/PLC57z8a-COLc-dEQg44IW1TD2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.184.0/24
45.67.146.0/24
78.31.206.0/23
79.98.182.0/24
162.218.88.0/23
162.218.91.0-162.218.94.255
185.52.136.0/23
185.52.139.0/24
185.161.191.0/24
185.171.126.0/24
185.187.213.0-185.187.215.255
185.201.40.0/24
185.205.206.0/23
185.208.152.0-185.208.154.255
185.230.120.0/23
185.230.123.0/24
212.60.14.0/24
Signature Algorithm: sha256WithRSAEncryption
97:4f:7d:46:f4:1d:40:5b:0e:a0:df:9e:a5:96:5d:6c:ab:fa:
b2:2f:cf:d7:de:ba:62:9a:3f:42:77:7a:2d:1b:29:0c:eb:7d:
80:6f:15:33:49:60:e4:47:5a:9b:6c:91:b5:5e:4e:82:67:da:
9c:bc:8a:67:06:ce:1d:3d:7d:9c:0f:e2:7f:e3:03:d6:89:8e:
34:0f:7f:f5:a5:9e:2f:1b:ac:dc:db:23:ed:bf:ce:18:a8:a1:
e1:fb:a9:81:db:b4:49:b4:cc:c2:49:b1:36:58:9c:c5:50:ce:
e5:28:12:20:41:3d:54:b9:76:be:83:8c:05:7c:0d:be:f7:bd:
f7:6c:09:24:49:26:a8:a5:15:04:4e:c0:79:ca:cc:fa:08:67:
94:e8:e2:78:af:93:19:22:36:50:6d:27:8e:9c:8a:60:2f:f8:
ae:6d:9a:78:bb:4b:77:c5:9c:cb:1b:50:84:8c:4c:5d:cd:11:
93:36:66:9b:a8:6c:f2:82:09:eb:86:4d:4a:9f:3c:67:4e:67:
47:7a:ea:0a:50:39:26:08:04:52:2a:5a:f6:30:b7:f1:fe:1f:
6d:54:8a:9b:a6:fa:e7:70:b8:ad:9d:68:f9:c1:40:7c:f4:f2:
a3:7e:dc:f3:f8:80:77:71:80:0f:f7:e5:4c:23:92:33:53:a9:
0f:b5:13:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 21:14:27 2024 by rpki-client on console-fra.rpki-client.org