Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PLQuSN7yT3jbAx96WxX_x9vrNFE.roa
File: PLQuSN7yT3jbAx96WxX_x9vrNFE.roa (raw, json)
Hash identifier: t+nwFwvg7l50l3dj1jM9cAwX8PptVW4WzVShrdUpJ4A=
Subject key identifier: 3C:B4:2E:48:DE:F2:4F:78:DB:03:1F:7A:5B:15:FF:C7:DB:EB:34:51
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01899BED8DE829D9D4475903F214F3B024EC
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PLQuSN7yT3jbAx96WxX_x9vrNFE.roa
Signing time: Fri 28 Jul 2023 09:56:24 +0000
ROA not before: Fri 28 Jul 2023 09:56:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.218.103.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.220.248.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.222.28.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
185.214.100.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Jul 2023 18:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:ed:8d:e8:29:d9:d4:47:59:03:f2:14:f3:b0:24:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 28 09:56:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cb42e48def24f78db031f7a5b15ffc7dbeb3451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:90:f1:47:e8:58:21:c8:30:20:9c:ef:fd:4a:
b9:c9:c6:e4:25:21:86:22:be:32:b3:18:20:c9:c8:
84:a4:fe:b8:66:c3:a5:4d:10:bd:05:88:cc:35:6b:
1b:ef:e2:f5:3d:19:73:f2:de:c8:21:a3:0b:fd:63:
66:25:9c:c3:cf:3f:04:4a:42:2c:59:00:07:e8:98:
af:2f:d2:eb:2c:c4:75:f8:98:b7:2d:9f:06:cb:c5:
dd:8d:ac:d8:94:5a:2c:0d:f4:67:32:18:f0:36:69:
8f:d3:38:94:90:54:e5:47:7d:ba:9d:48:22:3d:3f:
d7:6a:11:3e:5d:a2:ee:3e:f8:69:c9:98:af:22:f6:
3d:34:f6:f7:e5:db:cd:78:41:78:9f:d6:5d:48:53:
73:9c:e5:67:3c:f2:da:bb:54:55:43:c6:c8:db:8b:
76:0f:50:f2:27:03:0e:2b:a1:0e:a9:8c:35:3c:77:
8c:ff:9e:14:cc:0d:4c:80:3e:08:51:2c:e8:cd:f4:
de:a6:95:27:e6:15:79:59:94:8e:2c:05:64:5f:37:
8f:f7:a5:85:88:d7:02:ae:ae:34:aa:d1:3b:d7:8c:
12:23:0e:ab:c2:2c:f3:c6:6f:cf:3b:2d:f7:68:8c:
3a:27:73:24:63:66:42:d4:ee:39:72:e9:48:e6:b6:
b2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B4:2E:48:DE:F2:4F:78:DB:03:1F:7A:5B:15:FF:C7:DB:EB:34:51
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/PLQuSN7yT3jbAx96WxX_x9vrNFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.214.100.0/24
185.218.103.0/24
185.220.248.0/24
185.222.28.0/24
185.225.0.0/23
185.226.106.0/24
185.230.52.0/24
185.246.112.0/24
185.251.229.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
af:31:d0:e6:b6:f9:d4:bd:b6:65:0f:da:e7:76:08:42:8b:c6:
f6:1d:6a:c7:15:bf:4a:29:21:32:18:2b:cd:ba:bd:02:d3:a8:
ad:16:fa:a6:ad:7e:e8:4e:a6:74:7c:4a:35:65:a4:f8:f2:53:
c6:c4:a3:31:f1:b6:69:2c:05:e4:71:5b:50:dc:39:97:0e:4b:
83:39:40:fd:75:b4:72:19:e6:f4:95:29:30:4f:ad:22:d7:b5:
36:4c:33:1f:04:3e:e3:f4:48:33:99:79:f0:c7:8d:2f:a0:a8:
3b:00:fa:3d:fe:79:94:75:17:c5:4e:d3:fc:56:b4:88:fd:a2:
2d:54:91:dc:61:02:6c:3b:f5:87:a5:77:2b:f4:04:8b:ea:cd:
24:fc:4b:31:6d:f0:45:9e:2a:6e:11:1f:45:c0:a8:f5:4b:02:
92:ce:8b:59:ad:ac:72:ca:d8:d5:30:5c:4d:24:cc:cb:75:4a:
1d:45:4f:32:e3:2b:8d:0d:6a:c4:70:8b:51:38:1a:12:82:ef:
48:9a:00:e2:2e:0d:75:40:38:b1:6b:92:d8:44:0c:1f:f0:f7:
43:06:43:cc:cb:5a:19:73:30:84:d8:33:92:20:a4:53:73:d5:
33:44:aa:72:48:d2:e2:3d:b8:21:b5:7c:be:01:58:5b:24:fb:
b0:a7:26:cc
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgISAYmb7Y3oKdnUR1kD8hTzsCTsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwNzI4MDk1NjI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2I0MmU0OGRlZjI0Zjc4ZGIwMzFmN2E1YjE1ZmZjN2RiZWIzNDUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZDxR+hYIcgwIJzv/Uq5ycbkJSGG
Ir4ysxggyciEpP64ZsOlTRC9BYjMNWsb7+L1PRlz8t7IIaML/WNmJZzDzz8ESkIs
WQAH6JivL9LrLMR1+Ji3LZ8Gy8XdjazYlFosDfRnMhjwNmmP0ziUkFTlR326nUgi
PT/XahE+XaLuPvhpyZivIvY9NPb35dvNeEF4n9ZdSFNznOVnPPLau1RVQ8bI24t2
D1DyJwMOK6EOqYw1PHeM/54UzA1MgD4IUSzozfTeppUn5hV5WZSOLAVkXzeP96WF
iNcCrq40qtE714wSIw6rwizzxm/POy33aIw6J3MkY2ZC1O45culI5rayIwIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFDy0Lkje8k942wMfelsV/8fb6zRRMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvUExRdVNON3lUM2piQXg5Nld4WF94OXZyTkZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQALQgVAwQA
LZPgAwQAudZkAwQAudpnAwQAudz4AwQAud4cAwQBueEAAwQAueJqAwQAueY0AwQA
ufZwAwQAufvlAwQBwTqSMA0GCSqGSIb3DQEBCwUAA4IBAQCvMdDmtvnUvbZlD9rn
dghCi8b2HWrHFb9KKSEyGCvNur0C06itFvqmrX7oTqZ0fEo1ZaT48lPGxKMx8bZp
LAXkcVtQ3DmXDkuDOUD9dbRyGeb0lSkwT60i17U2TDMfBD7j9EgzmXnwx40voKg7
APo9/nmUdRfFTtP8VrSI/aItVJHcYQJsO/WHpXcr9ASL6s0k/EsxbfBFnipuER9F
wKj1SwKSzotZraxyytjVMFxNJMzLdUodRU8y4yuNDWrEcItROBoSgu9ImgDiLg11
QDixa5LYRAwf8PdDBkPMy1oZczCE2DOSIKRTc9UzRKpySNLiPbghtXy+AVhbJPuw
pybM
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:22 2024 by rpki-client on console-ams.rpki-client.org