Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/POGPha3U7xZVckIv_rwpJAse-Ao.roa
File: POGPha3U7xZVckIv_rwpJAse-Ao.roa (raw, json)
Hash identifier: AdpWso2eYz6uYSMm88welhty3bv2E0Xvss4VYd5AhXE=
Subject key identifier: 3C:E1:8F:85:AD:D4:EF:16:55:72:42:2F:FE:BC:29:24:0B:1E:F8:0A
Certificate issuer: /CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6
Certificate serial: 018DB264B8DE06DEB2B06FDC71D199922AD3
Authority key identifier: 58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/POGPha3U7xZVckIv_rwpJAse-Ao.roa
Signing time: Fri 16 Feb 2024 14:49:21 +0000
ROA not before: Fri 16 Feb 2024 14:49:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29180
IP address blocks: 82.132.128.0/22 maxlen: 24
82.132.132.0/22 maxlen: 24
82.132.136.0/23 maxlen: 24
185.238.16.0/23 maxlen: 24
185.238.18.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 09:23:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b2:64:b8:de:06:de:b2:b0:6f:dc:71:d1:99:92:2a:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6
Validity
Not Before: Feb 16 14:49:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ce18f85add4ef165572422ffebc29240b1ef80a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0b:b2:d2:89:31:55:dd:9b:b7:ec:db:07:06:
2a:39:78:19:4d:6a:d2:23:6d:02:48:fd:b9:2d:56:
80:aa:3e:8d:7b:41:66:f7:ca:38:b5:49:c9:2d:8f:
be:ef:ed:85:d4:6f:c6:54:8c:f8:9b:c3:57:cc:d6:
94:35:43:dc:c7:79:fc:f9:fb:7f:eb:09:0d:e4:83:
7c:0d:b0:b2:43:a1:8c:44:15:5c:35:18:78:21:8d:
89:b0:f3:77:6e:ca:b2:88:7e:17:8d:e4:e6:e6:d0:
64:ff:7a:c1:e3:d1:a8:f0:bb:c8:8b:40:ea:37:a2:
ff:ca:72:c3:0d:da:35:ee:a7:9f:8e:07:5a:45:10:
92:7c:1f:65:d3:8e:0f:24:be:4e:ee:48:b9:0d:67:
56:8f:44:30:03:73:f2:4c:4e:56:3a:4f:c7:63:97:
6a:9a:78:51:9e:aa:f4:ca:8e:f9:63:4b:39:5d:a6:
92:09:52:86:fb:a9:ed:f5:f4:5b:67:9a:5f:c5:fb:
49:f3:39:48:ab:6f:a1:87:60:50:24:84:11:ce:6b:
65:c6:6c:18:82:3d:40:ce:a7:57:f7:df:32:3a:e1:
97:f3:a2:60:76:0a:82:6e:a6:2a:97:33:8e:8c:d6:
37:ea:d4:5a:c0:5a:0a:0f:6e:9a:c0:53:9f:d6:92:
6d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:E1:8F:85:AD:D4:EF:16:55:72:42:2F:FE:BC:29:24:0B:1E:F8:0A
X509v3 Authority Key Identifier:
keyid:58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/POGPha3U7xZVckIv_rwpJAse-Ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/WLKee4oN25w2xuDj9JV3gXsOo6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.132.128.0-82.132.137.255
185.238.16.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:ca:5f:39:53:3b:67:98:d5:c9:40:72:08:61:41:7b:59:fe:
17:c9:24:78:2d:5f:82:65:33:64:32:51:ee:ca:49:94:f3:ce:
a7:81:fe:b2:a9:9b:e3:22:89:9e:e6:ae:71:c4:0f:16:ff:ef:
88:e6:55:1c:5d:44:fe:e9:fa:90:40:31:1d:8d:d1:9e:4c:8a:
69:68:5b:c2:7c:f8:4a:dd:10:5c:1d:51:e0:41:ff:36:31:9f:
a9:be:94:c6:f8:8e:b9:c3:e1:1b:85:3d:a6:83:10:08:3a:5e:
00:c9:d8:df:f7:a3:a3:70:e6:ad:e0:64:78:bd:63:94:09:0b:
c6:b2:a0:c3:c0:7c:82:9f:b8:b4:b8:92:82:5b:ee:26:3c:b6:
fa:79:84:ce:6a:0f:a0:84:6a:32:fb:a2:8b:58:0f:d3:28:e4:
80:b0:f5:b6:74:e6:6e:3a:2e:70:80:42:ea:c5:c2:9d:44:fc:
85:f0:b1:03:ea:3b:ef:ce:d3:fb:3f:62:06:2b:bf:93:58:c2:
bf:95:e7:8c:8f:e4:72:91:e3:a7:74:8c:52:a7:7f:45:a9:9c:
3c:1e:3f:3e:38:81:e0:2c:db:02:37:b9:7a:28:2d:6c:d8:3d:
39:3e:91:14:a3:c7:fc:e3:ad:8e:51:d5:08:6c:81:04:87:9e:
d4:5f:12:65
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAY2yZLjeBt6ysG/ccdGZkirTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YjI5ZTdiOGEwZGRiOWMzNmM2ZTBlM2Y0OTU3NzgxN2Iw
ZWEzYTYwHhcNMjQwMjE2MTQ0OTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2UxOGY4NWFkZDRlZjE2NTU3MjQyMmZmZWJjMjkyNDBiMWVmODBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQuy0okxVd2bt+zbBwYqOXgZTWrS
I20CSP25LVaAqj6Ne0Fm98o4tUnJLY++7+2F1G/GVIz4m8NXzNaUNUPcx3n8+ft/
6wkN5IN8DbCyQ6GMRBVcNRh4IY2JsPN3bsqyiH4XjeTm5tBk/3rB49Go8LvIi0Dq
N6L/ynLDDdo17qefjgdaRRCSfB9l044PJL5O7ki5DWdWj0QwA3PyTE5WOk/HY5dq
mnhRnqr0yo75Y0s5XaaSCVKG+6nt9fRbZ5pfxftJ8zlIq2+hh2BQJIQRzmtlxmwY
gj1AzqdX998yOuGX86JgdgqCbqYqlzOOjNY36tRawFoKD26awFOf1pJtjQIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFDzhj4Wt1O8WVXJCL/68KSQLHvgKMB8GA1UdIwQY
MBaAFFiynnuKDducNsbg4/SVd4F7DqOmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0xLZWU0b04yNXcyeHVEajlKVjNnWHNPbzZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8yY2IzYmItMGVkMS00ZWNmLThhZjUt
ZWU3M2ZlMjFlZDIzLzEvUE9HUGhhM1U3eFpWY2tJdl9yd3BKQXNlLUFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8yY2IzYmItMGVkMS00ZWNmLThhZjUtZWU3M2ZlMjFlZDIz
LzEvV0xLZWU0b04yNXcyeHVEajlKVjNnWHNPbzZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAdShIAD
BAFShIgDBAK57hAwDQYJKoZIhvcNAQELBQADggEBAHrKXzlTO2eY1clAcghhQXtZ
/hfJJHgtX4JlM2QyUe7KSZTzzqeB/rKpm+MiiZ7mrnHEDxb/74jmVRxdRP7p+pBA
MR2N0Z5MimloW8J8+ErdEFwdUeBB/zYxn6m+lMb4jrnD4RuFPaaDEAg6XgDJ2N/3
o6Nw5q3gZHi9Y5QJC8ayoMPAfIKfuLS4koJb7iY8tvp5hM5qD6CEajL7ootYD9Mo
5ICw9bZ05m46LnCAQurFwp1E/IXwsQPqO+/O0/s/YgYrv5NYwr+V54yP5HKR46d0
jFKnf0WpnDwePz44geAs2wI3uXooLWzYPTk+kRSjx/zjrY5R1QhsgQSHntRfEmU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:10 2024 by rpki-client on console-fra.rpki-client.org