Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/POGfeawRIT71KsOaWoAJltd7FWE.roa
File: POGfeawRIT71KsOaWoAJltd7FWE.roa (raw, json)
Hash identifier: ribd/vpCqZUgBTNvso4t/DY4uj7AlCR8VhHSjDRoCRU=
Subject key identifier: 3C:E1:9F:79:AC:11:21:3E:F5:2A:C3:9A:5A:80:09:96:D7:7B:15:61
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018571B9F01D25637F9104E08D5444795516
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/POGfeawRIT71KsOaWoAJltd7FWE.roa
Signing time: Mon 02 Jan 2023 09:04:49 +0000
ROA not before: Mon 02 Jan 2023 09:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 89.46.180.0/22 maxlen: 24
149.126.88.0/22 maxlen: 24
130.255.64.0/22 maxlen: 24
130.255.68.0/22 maxlen: 24
185.86.142.0/23 maxlen: 24
37.34.88.0/21 maxlen: 24
185.86.140.0/23 maxlen: 24
37.218.208.0/21 maxlen: 24
37.218.216.0/21 maxlen: 24
188.215.120.0/22 maxlen: 24
188.215.124.0/22 maxlen: 24
31.186.180.0/22 maxlen: 24
46.20.210.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Jan 2023 10:47:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f0:1d:25:63:7f:91:04:e0:8d:54:44:79:55:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 2 09:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ce19f79ac11213ef52ac39a5a800996d77b1561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:19:1d:5d:e8:5a:99:27:25:fa:dc:af:f9:1a:
8c:b0:e1:82:91:27:9c:26:73:d7:fd:5e:b9:7c:03:
80:18:3d:3e:46:82:5b:f6:82:e2:12:74:46:27:fd:
df:eb:7c:37:30:63:5a:1b:07:37:0c:a7:41:c4:93:
c0:2c:04:bc:42:e3:81:63:53:b5:f0:34:09:2d:71:
29:58:5a:85:d0:dd:55:af:bd:03:ac:1a:98:a2:73:
2e:31:f3:32:51:b9:91:e8:b9:ab:e8:f4:16:15:ed:
3d:61:0d:f3:51:31:8e:4f:8b:0c:da:6e:ec:1a:07:
dd:0a:17:29:39:69:64:76:27:61:19:99:a9:25:d7:
c6:e3:d8:d6:a5:14:5b:09:53:42:02:c4:2b:82:26:
85:30:f8:cd:8b:71:97:c2:75:f3:ef:c0:a3:74:bc:
f1:07:bc:2d:bc:3a:f1:d9:c6:69:e6:46:27:f9:4d:
50:97:bc:d3:0a:d9:93:73:ed:36:93:d7:4f:ae:b2:
62:7b:e5:61:44:79:1f:7f:dc:43:18:fb:58:55:9f:
be:65:66:69:55:f9:fa:c0:97:2b:4a:c3:09:69:80:
6e:71:84:d9:63:ac:ac:d9:cc:2f:c1:75:38:85:c0:
2f:db:e6:d0:e7:12:5f:e2:aa:2f:03:ab:99:bd:c0:
45:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:E1:9F:79:AC:11:21:3E:F5:2A:C3:9A:5A:80:09:96:D7:7B:15:61
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/POGfeawRIT71KsOaWoAJltd7FWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.180.0/22
37.34.88.0/21
37.218.208.0/20
46.20.210.0/23
89.46.180.0/22
130.255.64.0/21
149.126.88.0/22
185.86.140.0/22
188.215.120.0/21
Signature Algorithm: sha256WithRSAEncryption
06:a1:7a:3b:b0:84:8a:60:d3:50:e8:ae:80:31:ac:6d:c2:24:
c7:cd:53:24:84:fe:6e:1d:db:8d:55:31:c1:e6:33:ad:30:12:
22:fc:19:7e:0b:71:d8:86:95:59:90:d6:af:d0:3d:ac:a4:c8:
e6:04:b7:ce:78:06:2c:ac:65:7b:f2:57:57:2e:35:97:57:00:
2d:05:e4:c7:4a:65:50:2f:eb:0d:ac:d5:58:9c:6c:19:4e:fd:
fc:ed:84:6c:43:f1:f9:c7:72:bc:e3:0a:6d:d1:85:41:24:d4:
50:5f:d0:67:b1:b4:19:3d:e4:b0:1a:e6:82:20:63:9f:f6:36:
64:f2:dd:f3:e0:b2:bf:8c:6d:45:5e:b8:72:32:e0:af:05:92:
fa:3a:ba:2a:c7:cc:3b:33:0a:a2:fc:ff:c0:05:93:f4:0f:7f:
af:5d:7c:b8:26:86:01:6d:fa:4d:9f:a9:24:32:89:7b:a3:03:
59:69:fe:e3:0d:8a:d5:27:5a:88:6c:dd:87:71:5a:02:99:9c:
5c:41:ad:f4:ba:79:16:c8:af:0e:e7:cb:19:ba:ca:d7:28:10:
7a:4d:87:1d:fa:63:53:ad:37:b4:e6:4d:b6:af:71:42:a1:66:
6a:43:b1:b8:1e:a8:f7:8b:27:1a:da:59:1a:4f:78:7c:7f:4b:
2c:e3:7b:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org