Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/zjXcYgFVb6DXj7jNWtwOafVpUeQ.roa
File: zjXcYgFVb6DXj7jNWtwOafVpUeQ.roa (raw, json)
Hash identifier: p92xEXxEm5bmgWIbhImh/4xPVwLimhdunCyaO0NrdeM=
Subject key identifier: CE:35:DC:62:01:55:6F:A0:D7:8F:B8:CD:5A:DC:0E:69:F5:69:51:E4
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0186C82463E1AD7EBED925E651293EFD2298
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/zjXcYgFVb6DXj7jNWtwOafVpUeQ.roa
Signing time: Thu 09 Mar 2023 20:51:13 +0000
ROA not before: Thu 09 Mar 2023 20:51:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207326
IP address blocks: 130.255.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Apr 2023 07:48:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c8:24:63:e1:ad:7e:be:d9:25:e6:51:29:3e:fd:22:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Mar 9 20:51:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce35dc6201556fa0d78fb8cd5adc0e69f56951e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a6:1d:2d:97:9b:80:88:de:ac:33:5b:96:cd:
a8:cd:7f:dc:9b:e6:7b:a6:a7:41:8c:4f:2c:ba:8a:
30:36:57:0b:28:5a:aa:bd:98:b9:4e:c6:64:68:1b:
f7:07:b4:77:93:82:cf:16:e9:ad:84:39:4a:0c:c2:
27:85:f9:d9:33:f1:41:2b:39:e7:8a:4d:38:d1:79:
f7:24:bc:74:c9:6e:1d:93:e2:89:fd:7b:b9:75:fc:
ed:78:96:91:13:cc:c8:49:2b:2b:24:d5:2b:e8:90:
f6:d2:16:c2:52:70:4e:70:39:1b:2a:6c:0c:33:9d:
14:fd:4a:a6:93:8d:51:97:65:20:8d:e4:bf:2e:12:
38:80:64:5e:c7:81:8e:d2:02:e9:43:d6:8d:02:c7:
76:a1:e5:1d:31:b3:eb:f1:1a:f8:81:1c:6f:bd:d5:
76:62:da:12:a9:a1:13:09:2f:f9:81:39:9e:fb:12:
a3:00:59:83:f3:11:43:36:d4:41:3b:f5:fe:76:c2:
fe:04:19:19:30:6b:1a:61:3a:d9:1a:14:d3:5e:41:
91:df:99:75:f4:25:89:97:31:ba:06:f9:7e:9b:5a:
61:1b:69:e1:9f:79:b2:2b:58:fc:58:ee:b0:46:1d:
c9:f8:68:9a:fe:9f:e0:95:cf:1d:df:93:26:87:6a:
01:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:35:DC:62:01:55:6F:A0:D7:8F:B8:CD:5A:DC:0E:69:F5:69:51:E4
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/zjXcYgFVb6DXj7jNWtwOafVpUeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.255.64.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:a7:2f:1a:6f:e1:48:a2:cc:a7:6c:28:80:3c:ba:40:c2:62:
13:32:cc:41:70:db:fc:86:97:da:e7:20:2f:5e:ff:0f:9d:c0:
06:96:44:cd:92:ea:d2:e4:c8:1e:95:76:6d:50:e8:7e:bd:74:
0c:93:15:fb:c7:e6:de:49:22:ee:77:1b:64:8f:ee:a4:6c:96:
22:d7:06:5b:3b:c7:5a:37:d4:e6:a6:f3:e6:ad:1b:ce:8f:fa:
31:04:af:1f:c6:d5:fc:b3:df:00:66:55:fa:4d:81:26:cd:88:
e0:b6:ae:f0:65:b5:d2:b7:6d:69:6d:fc:a1:6a:89:83:e0:00:
6c:c5:54:b6:25:a6:56:94:7e:93:84:26:dc:00:28:56:fa:32:
be:94:6d:a3:88:7d:31:34:00:5d:d7:53:73:25:5a:20:99:77:
5d:3d:72:86:1a:97:ba:55:ac:a4:46:37:4d:6a:6d:52:9d:bf:
d8:79:16:34:fe:92:13:89:bf:5e:a9:a7:96:ec:e8:3e:e4:9c:
4a:bf:e9:ca:4e:12:5e:b3:06:87:b8:45:70:67:47:85:66:64:
c1:f3:53:90:78:9c:fa:a8:8f:76:d7:4b:ce:1f:4f:23:a5:5d:
45:66:71:81:fe:c6:29:7f:36:39:4c:35:b3:d6:cd:98:b5:f2:
f8:6d:10:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org