Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Gmc2Bfu5v870bRxZOFMg4FZ52Ks.roa
File: Gmc2Bfu5v870bRxZOFMg4FZ52Ks.roa (raw, json)
Hash identifier: TfduLvrLtxoUgLzb+IrPoED/dgzuM/RmDbw9+2XRVg4=
Subject key identifier: 1A:67:36:05:FB:B9:BF:CE:F4:6D:1C:59:38:53:20:E0:56:79:D8:AB
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018875A560B49D55E9CC545E93232EB32071
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Gmc2Bfu5v870bRxZOFMg4FZ52Ks.roa
Signing time: Thu 01 Jun 2023 06:29:12 +0000
ROA not before: Thu 01 Jun 2023 06:29:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 130.255.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Jun 2023 06:45:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:75:a5:60:b4:9d:55:e9:cc:54:5e:93:23:2e:b3:20:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jun 1 06:29:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a673605fbb9bfcef46d1c59385320e05679d8ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9f:12:d3:74:15:0d:5d:3a:cc:85:68:86:a2:
08:01:dc:09:51:6c:bd:e3:e4:11:f1:77:6b:b2:49:
75:fd:a0:1f:3b:ac:88:60:95:37:b9:32:93:21:35:
ea:22:63:19:2a:7a:97:7b:8c:03:cd:63:3a:49:c7:
fe:95:d9:c9:ed:f8:3d:a9:f7:cd:6c:07:0d:70:7e:
24:b7:36:11:a9:68:02:80:ec:ef:53:22:97:dc:e5:
ce:5c:fc:d3:15:49:39:83:e6:3b:5e:12:9e:c0:5d:
8c:61:5e:e5:14:48:5f:06:9a:20:f2:27:48:cb:0a:
4b:50:d5:21:4a:02:47:eb:aa:e4:fd:19:99:45:4a:
ed:c2:6a:fd:e2:1e:83:96:87:41:06:30:d5:b1:b9:
f2:35:5c:21:17:a5:23:18:8b:7f:7a:9f:2a:b9:d9:
b0:46:06:07:1b:22:46:5f:93:5c:a1:54:04:69:b2:
d8:ab:63:28:64:ad:2f:3f:be:42:08:4c:c8:12:e2:
4e:82:35:49:a5:30:b7:8b:16:0b:7e:a6:59:3e:41:
b4:cd:bc:98:43:99:a4:e4:fc:fe:a5:38:c1:cc:00:
c9:df:3c:3a:a8:53:d3:a1:ae:13:b6:b1:e0:e5:07:
1a:e1:7c:f3:1d:0c:51:a4:ae:88:f6:eb:1e:03:c0:
76:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:67:36:05:FB:B9:BF:CE:F4:6D:1C:59:38:53:20:E0:56:79:D8:AB
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Gmc2Bfu5v870bRxZOFMg4FZ52Ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.255.64.0/22
Signature Algorithm: sha256WithRSAEncryption
04:8c:63:c8:46:df:2c:dc:f1:26:3f:31:bc:8a:98:9f:54:ad:
37:01:e0:4a:5c:eb:9e:c6:38:ed:22:20:bf:75:89:32:eb:b6:
bd:30:7e:fc:f6:20:ad:41:ce:27:d4:3b:16:c8:a4:73:5a:9d:
db:ae:be:7a:9f:52:42:94:da:55:f4:6e:4f:a7:3a:3f:05:0f:
d0:0e:70:b8:12:13:41:69:88:7f:a8:24:a3:ee:eb:57:c4:ed:
95:e3:26:4c:34:04:bd:9e:07:a7:77:75:52:c3:66:0e:2f:47:
84:14:49:34:48:f3:e5:31:3f:f5:b8:52:e2:38:75:62:75:2d:
f1:21:c9:1d:00:0e:62:91:81:d3:6e:d7:5c:99:b2:f7:87:2c:
45:42:90:ff:4e:d3:ef:91:08:1e:9a:22:ce:37:ef:05:3c:0d:
c0:2d:b0:1a:91:2a:f6:38:5c:cc:a3:de:38:7a:8e:a3:a0:f1:
2e:17:29:b3:a9:4f:0c:f7:21:36:4c:af:71:65:64:88:25:e9:
76:03:8f:f9:4a:23:36:57:f4:80:d0:1c:ca:2c:13:f7:19:84:
24:e2:82:59:5e:24:4b:27:48:de:0a:40:36:4c:90:aa:92:67:
04:64:43:85:98:82:2f:01:28:f8:c9:d8:03:2c:2e:a5:d9:c4:
51:33:de:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org