Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/1_ZHP0t5mLdkJWtbHXIxH_a_c_k.roa
File: 1_ZHP0t5mLdkJWtbHXIxH_a_c_k.roa (raw, json)
Hash identifier: 97/Bj99atdcF8AQUirfn0/6n3FqgDy6wOA0uuihtdOc=
Subject key identifier: D7:F6:47:3F:4B:79:98:B7:64:25:6B:5B:1D:72:31:1F:F6:BF:73:F9
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0185E413AEF884FFC14AEBF3651179497A02
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/1_ZHP0t5mLdkJWtbHXIxH_a_c_k.roa
Signing time: Tue 24 Jan 2023 13:59:33 +0000
ROA not before: Tue 24 Jan 2023 13:59:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.106.192.0/23 maxlen: 24
82.163.54.0/23 maxlen: 24
82.163.52.0/23 maxlen: 24
92.114.44.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Jan 2023 06:25:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:13:ae:f8:84:ff:c1:4a:eb:f3:65:11:79:49:7a:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 24 13:59:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7f6473f4b7998b764256b5b1d72311ff6bf73f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1f:75:b0:94:6b:28:bf:08:e9:63:b5:2c:5e:
dc:f7:e6:34:55:7a:73:67:10:50:7e:a0:f4:80:00:
13:14:c7:ac:b3:cb:d5:49:82:c3:a7:a8:e4:91:dc:
d4:0d:36:07:c2:d0:c3:7f:65:47:81:b3:e1:e3:cf:
49:fa:ce:da:52:99:49:41:8f:c3:4e:81:1d:db:0b:
3c:bd:2f:cd:eb:58:95:71:42:66:d9:fa:a6:4d:c7:
78:dd:87:7b:20:40:ab:f1:18:96:0b:51:fb:7d:a6:
e0:09:64:b7:28:ba:73:39:d6:65:f2:fb:f5:9b:bf:
71:12:e1:7e:87:e9:c0:70:4d:e7:9c:7f:7e:6e:be:
1d:9a:16:81:ff:7f:8c:d6:a4:4d:9b:90:e4:81:72:
b7:a3:27:07:0d:45:d9:c3:d6:ee:95:9b:08:90:dd:
f6:89:bf:de:c3:5b:e0:6b:76:97:64:46:80:dc:92:
ee:bb:bf:29:1f:dd:90:95:5b:f3:6a:01:89:d1:f5:
3c:28:44:d2:cd:c4:a2:5c:44:26:8f:ca:55:8f:88:
bb:e5:e2:f9:aa:a3:0b:d3:ec:6a:94:99:d9:99:cd:
d5:90:94:ae:a0:55:ec:3c:33:0e:04:e5:be:89:ab:
00:18:65:5e:d4:23:7e:4e:d3:01:08:b0:8c:1d:a8:
62:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F6:47:3F:4B:79:98:B7:64:25:6B:5B:1D:72:31:1F:F6:BF:73:F9
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/1_ZHP0t5mLdkJWtbHXIxH_a_c_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.52.0/22
92.114.44.0/22
185.106.192.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:d9:d8:62:d8:e5:5a:e8:60:d7:b9:c8:fc:c8:c0:40:bf:76:
6c:30:8c:67:7f:c3:9d:49:60:df:f2:f3:4c:27:63:35:7d:86:
5c:64:1d:98:5e:73:ad:13:32:a0:87:9f:47:24:8a:f7:d6:00:
ad:71:de:94:fa:60:e3:15:90:cf:7d:cb:f0:b6:f6:4e:36:d5:
2a:d9:f7:92:b4:0c:03:a4:90:5b:b2:1a:58:2a:04:d1:3a:31:
d8:4a:d3:75:08:c1:dd:81:6f:ef:17:23:43:5b:a1:80:f5:a8:
54:22:21:66:b2:b9:7e:06:c7:d5:4c:28:5f:64:d0:0c:94:a1:
53:d0:d2:06:ea:3b:f6:75:04:70:8a:c4:5e:da:67:e8:0b:e4:
81:a4:ea:5a:de:20:d4:aa:03:da:1c:2a:72:72:45:a7:36:a2:
d7:12:11:a5:83:df:52:8a:76:b3:75:0f:77:e5:bc:1e:d3:89:
36:80:4c:aa:16:7d:55:e4:91:17:90:36:1c:11:7d:52:45:8b:
bd:ce:2f:51:6a:23:c0:8e:eb:47:3a:73:44:1d:ea:af:fb:37:
d9:f0:fa:bc:a3:e0:5b:cd:4b:6b:d9:d4:e0:c2:42:37:42:be:
9a:1e:b8:84:2b:69:ad:82:6f:58:2b:84:00:c2:3c:46:33:23:
25:2c:da:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:46 2024 by rpki-client on console-ams.rpki-client.org