Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/PWG01RQ7IjSJc31ZVL076KGqNVg.roa
File: PWG01RQ7IjSJc31ZVL076KGqNVg.roa (raw, json)
Hash identifier: 1pt/TjYZS+iZHdto+svl01mHZ3+dKr9TfzX7bSIa4lU=
Subject key identifier: 3D:61:B4:D5:14:3B:22:34:89:73:7D:59:54:BD:3B:E8:A1:AA:35:58
Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Certificate serial: 0188D2389963FA47F7436AC52582B270CFF0
Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/PWG01RQ7IjSJc31ZVL076KGqNVg.roa
Signing time: Mon 19 Jun 2023 05:55:04 +0000
ROA not before: Mon 19 Jun 2023 05:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211100
IP address blocks: 185.53.34.0/24 maxlen: 24
2a10:fa40::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:38:99:63:fa:47:f7:43:6a:c5:25:82:b2:70:cf:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Validity
Not Before: Jun 19 05:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d61b4d5143b223489737d5954bd3be8a1aa3558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:12:fe:b7:b5:a8:db:00:99:c1:7d:7a:c5:31:
29:61:a2:82:7b:9a:f2:a6:8f:11:63:12:26:36:c9:
fb:94:94:64:b2:15:e0:ca:8c:0e:12:97:fa:43:24:
32:5c:b2:3a:a5:d5:b8:66:47:94:7c:57:45:2f:01:
19:22:66:a4:fc:79:dd:43:10:ea:9f:c0:7c:76:85:
20:c5:ad:63:4d:f8:96:ea:3e:07:7d:ec:31:c3:9b:
3b:d1:c1:38:61:9b:87:fa:e7:f6:ef:1b:cb:15:93:
03:79:02:ee:7a:ee:4e:bd:38:d2:72:da:e1:4c:3e:
b8:dc:4b:d1:88:08:55:30:68:27:25:7f:17:41:95:
62:4a:b3:56:79:2b:8d:24:ce:2e:b9:e7:33:24:62:
2c:a3:c5:e9:e5:2d:bc:74:bf:49:1b:f2:58:28:34:
16:c0:00:6d:16:fd:65:e0:d5:7d:fd:c5:fc:d9:78:
de:95:1a:8e:4b:95:5a:fe:11:c1:f8:bb:c4:ce:5c:
53:4c:2d:74:4f:5a:ac:a5:a4:5f:7a:81:40:75:ca:
6a:00:ab:e2:73:4c:7a:4f:38:00:b7:07:33:d4:78:
68:1c:f1:c0:2e:b7:1b:55:96:06:d2:9b:62:c9:7f:
ba:9a:89:b1:47:21:48:1b:6c:6d:1c:24:23:e6:15:
aa:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:61:B4:D5:14:3B:22:34:89:73:7D:59:54:BD:3B:E8:A1:AA:35:58
X509v3 Authority Key Identifier:
keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/PWG01RQ7IjSJc31ZVL076KGqNVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.34.0/24
IPv6:
2a10:fa40::/32
Signature Algorithm: sha256WithRSAEncryption
0f:f7:c4:45:03:94:cb:0c:d7:96:3a:ce:36:10:3e:bf:69:29:
ab:2d:77:47:47:65:b1:78:a0:59:31:58:15:09:8a:2d:84:d3:
16:6d:82:21:85:30:0b:11:01:8b:4b:19:46:1b:99:82:a3:bd:
01:4b:b2:6e:32:a7:fb:9a:19:3d:9c:7a:00:ac:1b:7b:fc:24:
89:95:8b:3d:5f:d4:9f:35:5f:94:aa:c8:69:c8:d9:0c:66:b7:
a8:f4:e2:31:29:1f:40:91:3b:5d:4d:7b:cd:a5:4e:e2:83:b1:
06:99:39:a2:36:42:8e:c9:90:f6:47:55:14:3c:db:1d:f6:72:
35:de:01:81:de:a3:3d:3d:d6:63:68:32:f8:dc:72:ab:55:a1:
99:fb:56:a7:28:46:85:23:e3:54:9f:71:06:c2:7f:06:8d:e3:
56:26:20:ae:59:86:e9:fc:6e:f3:5a:af:da:67:45:bf:43:48:
b2:49:2e:9a:86:8c:00:6c:4d:91:35:38:ed:52:01:7c:83:73:
8b:f0:16:76:a2:de:ee:30:8e:74:01:2e:a4:d8:b3:9b:74:04:
45:ac:6a:b7:c8:94:00:72:49:29:4d:3f:a2:70:7b:45:21:0a:
db:8b:65:f3:ad:d5:ea:52:70:46:4f:44:0e:06:68:e9:d1:32:
82:fe:be:93
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYjSOJlj+kf3Q2rFJYKycM/wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMDdjODdlN2I2ZTI5NGYyNzAwNzkwZWVmMTllODI5Mzlk
ODVjZDYwHhcNMjMwNjE5MDU1NTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDYxYjRkNTE0M2IyMjM0ODk3MzdkNTk1NGJkM2JlOGExYWEzNTU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRL+t7Wo2wCZwX16xTEpYaKCe5ry
po8RYxImNsn7lJRkshXgyowOEpf6QyQyXLI6pdW4ZkeUfFdFLwEZImak/HndQxDq
n8B8doUgxa1jTfiW6j4Hfewxw5s70cE4YZuH+uf27xvLFZMDeQLueu5OvTjSctrh
TD643EvRiAhVMGgnJX8XQZViSrNWeSuNJM4uueczJGIso8Xp5S28dL9JG/JYKDQW
wABtFv1l4NV9/cX82XjelRqOS5Va/hHB+LvEzlxTTC10T1qspaRfeoFAdcpqAKvi
c0x6TzgAtwcz1HhoHPHALrcbVZYG0ptiyX+6momxRyFIG2xtHCQj5hWq+wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFD1htNUUOyI0iXN9WVS9O+ihqjVYMB8GA1UdIwQY
MBaAFLMHyH57bilPJwB5Du8Z6Ck52FzWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODct
NjQ5NDVhNGY4ZTEyLzEvUFdHMDFSUTdJalNKYzMxWlZMMDc2S0dxTlZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODctNjQ5NDVhNGY4ZTEy
LzEvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuTUiMA0E
AgACMAcDBQAqEPpAMA0GCSqGSIb3DQEBCwUAA4IBAQAP98RFA5TLDNeWOs42ED6/
aSmrLXdHR2WxeKBZMVgVCYothNMWbYIhhTALEQGLSxlGG5mCo70BS7JuMqf7mhk9
nHoArBt7/CSJlYs9X9SfNV+UqshpyNkMZreo9OIxKR9AkTtdTXvNpU7ig7EGmTmi
NkKOyZD2R1UUPNsd9nI13gGB3qM9PdZjaDL43HKrVaGZ+1anKEaFI+NUn3EGwn8G
jeNWJiCuWYbp/G7zWq/aZ0W/Q0iySS6ahowAbE2RNTjtUgF8g3OL8BZ2ot7uMI50
AS6k2LObdARFrGq3yJQAckkpTT+icHtFIQrbi2XzrdXqUnBGT0QOBmjp0TKC/r6T
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:42 2024 by rpki-client on console-ams.rpki-client.org