Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/lEBkz_F3_LRt9Fdjk8AeMF0Sbzw.roa
File: lEBkz_F3_LRt9Fdjk8AeMF0Sbzw.roa (raw, json)
Hash identifier: pK+XAftx2mckpUWmEd7oxXmXfA80BCosba2IYISRwi4=
Subject key identifier: 94:40:64:CF:F1:77:FC:B4:6D:F4:57:63:93:C0:1E:30:5D:12:6F:3C
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018800B3964934B494C1ACA5D39B653D614A
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/lEBkz_F3_LRt9Fdjk8AeMF0Sbzw.roa
Signing time: Tue 09 May 2023 13:29:09 +0000
ROA not before: Tue 09 May 2023 13:29:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 130.255.68.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Jun 2023 06:22:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:00:b3:96:49:34:b4:94:c1:ac:a5:d3:9b:65:3d:61:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: May 9 13:29:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=944064cff177fcb46df4576393c01e305d126f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:72:d7:71:57:0b:e4:ae:b2:b6:44:c9:d1:f7:
f5:06:d0:7c:e2:d2:e9:4b:75:52:81:72:ab:dc:97:
13:8a:99:95:47:93:b4:a2:3d:03:d2:96:a4:78:60:
db:82:4f:3a:45:75:ac:a7:13:2d:e5:5c:c0:1e:0e:
c5:42:54:79:c1:64:3a:62:fd:1b:c6:a6:64:79:97:
63:b9:4e:3b:67:5d:03:c2:c0:4d:0c:9a:d5:13:f4:
45:25:e5:f5:40:85:b1:f1:c0:36:a4:1b:13:98:3f:
73:be:0c:19:ce:9a:9c:97:bd:37:41:2a:30:17:14:
53:79:e5:69:ec:8e:69:6f:6c:bc:59:9c:63:8a:95:
be:0a:d1:be:59:7d:c5:99:55:d5:79:50:4d:c8:ad:
4c:03:f9:4c:f6:86:84:9f:ca:c0:d0:eb:7f:9a:17:
05:bb:a9:95:a1:55:7f:aa:ff:49:40:b3:6f:07:2d:
bf:62:e9:57:db:50:77:43:23:59:1c:1a:16:f5:52:
6a:af:6e:af:91:c8:dd:9a:b2:74:7b:f8:e5:07:70:
72:fb:9b:30:5e:94:24:b4:7e:05:a0:b1:c9:2c:05:
a1:4e:44:c5:89:8f:e6:99:c3:e0:82:b8:f4:cb:7b:
a9:01:a9:dc:d0:c6:36:55:5c:56:af:41:c7:c7:57:
ee:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:40:64:CF:F1:77:FC:B4:6D:F4:57:63:93:C0:1E:30:5D:12:6F:3C
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/lEBkz_F3_LRt9Fdjk8AeMF0Sbzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.255.68.0/22
Signature Algorithm: sha256WithRSAEncryption
39:15:99:ba:28:15:68:a3:d0:40:9d:dd:01:b6:0f:c2:94:d1:
ed:d3:8f:19:2a:6c:d2:0f:43:b6:01:b9:0d:67:b9:40:82:51:
5a:53:66:0b:70:e0:69:42:ca:59:3b:82:4a:1f:5e:8c:96:21:
6b:26:0a:cf:16:3f:7e:55:35:3f:45:7a:05:fe:7d:53:81:af:
0b:1b:49:3d:c0:84:1c:8a:9a:d3:d6:f9:f1:b9:3f:bc:cb:4e:
b7:d6:4b:d8:ff:ee:3f:ec:8d:1a:7d:6f:67:2f:91:52:83:45:
80:e7:ac:a1:f2:b2:82:f2:1f:d2:4d:4e:fb:c2:d6:46:f0:b2:
55:29:85:13:cc:13:7d:e1:f1:2d:71:29:fe:c1:b5:7e:11:dc:
b1:76:72:cb:1e:e1:25:14:35:6e:f8:49:72:80:7c:38:b2:72:
d6:32:a2:cf:62:96:33:ef:a8:b7:ed:ae:73:f1:67:42:c9:e7:
df:bc:46:4a:7e:8d:2f:72:88:26:b6:f1:6d:79:0f:6c:90:23:
48:59:52:e5:38:c2:6a:8b:29:05:1c:fd:98:25:e6:0a:a2:08:
33:52:1a:04:54:5b:9e:6a:95:9f:40:03:18:8c:4c:35:b0:9f:
90:bf:18:14:a3:1e:ed:4d:6a:53:b2:c6:84:ec:31:6a:95:03:
ac:53:f4:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:36 2024 by rpki-client on console-fra.rpki-client.org