Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/poGgLSIOYv1Lgm_I1N-PqjTq2Bo.roa
File: poGgLSIOYv1Lgm_I1N-PqjTq2Bo.roa (raw, json)
Hash identifier: LO5UMkpGOnZLWES3i1eIKoGt/Vj1NMwCMdy1aaf5XNc=
Subject key identifier: A6:81:A0:2D:22:0E:62:FD:4B:82:6F:C8:D4:DF:8F:AA:34:EA:D8:1A
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01876F4ABF5183AA7F67A9E030B31C0A62D5
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/poGgLSIOYv1Lgm_I1N-PqjTq2Bo.roa
Signing time: Tue 11 Apr 2023 07:49:42 +0000
ROA not before: Tue 11 Apr 2023 07:49:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 130.255.64.0/22 maxlen: 24
130.255.68.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 May 2023 13:29:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6f:4a:bf:51:83:aa:7f:67:a9:e0:30:b3:1c:0a:62:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Apr 11 07:49:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a681a02d220e62fd4b826fc8d4df8faa34ead81a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d7:3e:35:94:9f:fe:9e:b6:a5:8b:d7:fc:98:
a9:62:e3:a0:3d:50:d3:6a:85:c1:46:49:1f:f2:78:
43:ff:2f:2b:98:97:29:35:fc:b0:4b:bb:9f:2c:6c:
86:38:db:d3:aa:4e:31:6a:43:6c:3d:bc:de:18:e3:
3d:8f:90:3b:1d:bc:57:88:7e:b3:e8:de:d2:13:6f:
7d:e5:45:9c:a1:03:ea:e8:99:78:7c:34:cf:17:15:
db:58:09:10:a1:2d:43:74:dd:5a:54:96:c8:13:85:
d0:d5:41:09:63:fb:11:b2:79:ae:a4:7e:89:89:e4:
6d:14:57:aa:82:b2:2e:2c:c7:43:71:4a:ff:7c:e3:
c6:10:69:e0:35:f8:26:3e:0a:a4:28:dc:d8:f0:ce:
35:6f:c3:89:3d:b5:94:12:bb:00:f1:f1:93:72:ea:
10:e3:e5:17:3c:04:5b:c3:ca:43:2e:0f:00:f2:56:
d6:d1:49:44:a8:e8:f5:64:af:a5:9d:db:1d:d0:08:
e2:8c:1c:82:8b:bc:f2:8b:6f:be:3a:56:28:70:e6:
a9:b2:3a:9d:58:22:9b:ed:92:e3:4f:31:8c:16:c6:
f9:ab:b9:58:00:60:77:cb:dd:eb:d4:13:40:b2:26:
50:49:06:dc:33:e0:d7:02:4f:6c:06:8b:01:28:b4:
a3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:81:A0:2D:22:0E:62:FD:4B:82:6F:C8:D4:DF:8F:AA:34:EA:D8:1A
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/poGgLSIOYv1Lgm_I1N-PqjTq2Bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.255.64.0/21
Signature Algorithm: sha256WithRSAEncryption
35:5f:fd:5f:d8:2e:63:53:87:3b:95:f0:f1:9d:69:b4:20:5d:
28:28:51:a5:22:2a:3f:df:02:7d:73:c5:50:38:20:56:d9:54:
72:9a:24:48:a6:5d:eb:49:06:d8:b1:65:16:9a:7a:cc:24:a7:
24:90:90:e9:6f:d6:bd:c2:9c:49:ff:bb:a1:c1:14:92:37:6d:
38:bc:36:b8:07:1b:3f:fd:26:54:a7:ce:41:11:fa:b3:90:e3:
f5:a4:de:49:83:35:87:75:6e:8e:ad:a8:0d:b4:f8:49:48:d8:
51:ba:9c:bb:61:70:a0:2f:b1:7b:fc:53:69:47:56:ea:33:11:
7a:24:90:7a:ec:c3:5a:ee:b0:8b:21:a2:74:a3:27:b4:a2:63:
3f:fa:95:69:05:28:12:a4:01:7c:9c:0a:dd:52:d4:44:53:05:
95:54:8d:ef:48:83:30:45:ae:6e:e0:00:01:30:5e:5d:3e:db:
5e:93:70:8c:7b:d6:3e:22:4d:13:e7:cd:57:b1:5a:7e:21:2d:
e5:60:fc:2d:8f:74:eb:c3:8f:8d:e1:46:02:80:4e:99:43:05:
70:52:94:38:a6:9e:71:4c:e0:58:eb:25:ae:65:4d:49:51:6f:
81:c4:6c:3b:ad:97:b1:e4:59:b4:b0:e0:2a:27:f3:b4:82:4d:
6a:bc:2d:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org