Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/2Dtra16QhmUbVvHtBfNLRx6yrYE.roa
File: 2Dtra16QhmUbVvHtBfNLRx6yrYE.roa (raw, json)
Hash identifier: UkFG2DiyJDGg3EMSvUSk/s/NIKOxuWKi+0nY074RyXk=
Subject key identifier: D8:3B:6B:6B:5E:90:86:65:1B:56:F1:ED:05:F3:4B:47:1E:B2:AD:81
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0190BFAF97F4292E5C0690F09D25F5B412D6
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/2Dtra16QhmUbVvHtBfNLRx6yrYE.roa
Signing time: Wed 17 Jul 2024 07:54:34 +0000
ROA not before: Wed 17 Jul 2024 07:54:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210542
IP address blocks: 82.163.52.0/23 maxlen: 24
149.126.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 15 Sep 2024 09:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bf:af:97:f4:29:2e:5c:06:90:f0:9d:25:f5:b4:12:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jul 17 07:54:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d83b6b6b5e9086651b56f1ed05f34b471eb2ad81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:55:8b:1e:c0:c3:f3:77:28:45:95:c3:cf:13:
b7:1b:42:82:6f:08:db:9e:7e:92:97:92:1b:47:b2:
07:9a:54:b5:95:6c:61:95:30:1a:d3:d8:4f:d4:17:
e6:54:e3:00:40:4d:3a:19:33:b0:2d:55:17:00:42:
96:74:9e:51:11:5d:94:1c:a8:98:d3:34:a6:29:7a:
2e:16:c1:c3:d2:17:71:08:cd:89:5c:80:cb:36:1d:
5d:c7:05:71:26:bd:d9:8f:50:64:3e:0f:ab:de:92:
7d:cb:6f:82:dc:b9:c8:75:3b:38:79:f2:d3:df:c4:
3c:60:c5:e6:c1:b7:53:ee:98:e8:36:57:4f:6f:5b:
c7:e7:98:7a:e4:17:b5:60:f1:f3:48:18:4a:cd:7e:
3a:b8:2b:d8:b9:03:cf:c1:f7:a3:3c:27:94:15:da:
81:76:bc:bc:df:5c:ca:c4:55:b9:a5:b2:39:9b:08:
7f:7b:97:87:ab:ac:38:56:a0:a6:2e:f8:c0:f8:22:
83:1e:f4:b1:7a:1a:85:d9:ee:40:9b:31:13:22:e5:
cd:4b:93:0e:16:6a:3e:b4:bd:7c:f3:4a:d4:a0:d6:
4c:4b:dd:95:d7:06:f8:0d:69:b5:f9:a6:62:78:06:
f5:75:da:a2:c2:5c:42:af:ed:ce:f8:be:53:90:a5:
8d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:3B:6B:6B:5E:90:86:65:1B:56:F1:ED:05:F3:4B:47:1E:B2:AD:81
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/2Dtra16QhmUbVvHtBfNLRx6yrYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.52.0/23
149.126.92.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:ad:41:cf:40:8e:43:ad:84:42:f4:2a:f0:38:b3:74:01:4d:
51:f6:51:03:99:f0:7b:3e:2b:73:22:46:29:4f:12:09:0a:27:
44:07:ce:18:6e:9e:ea:ae:37:55:f5:7f:ab:7f:23:32:9a:ce:
38:3a:02:1f:20:5d:12:9e:d4:75:1f:c8:a8:58:b4:61:74:c2:
ab:5d:13:ea:4d:5d:55:c0:5c:c7:22:28:96:4e:e5:b3:eb:42:
46:f7:90:dc:48:92:01:3f:8a:9d:af:36:31:f0:a1:34:82:57:
19:65:17:cf:5a:67:56:de:e8:eb:fc:97:35:a4:6b:51:d9:fd:
d7:cd:79:3c:e0:dd:80:00:dc:3d:85:9c:dc:51:a5:e8:9d:e3:
59:f5:27:7e:44:a0:30:02:bb:9c:87:99:44:a0:d4:99:f6:ee:
c5:ed:8e:77:cd:28:ec:c9:f0:43:2c:03:63:b1:b6:ae:b7:03:
3a:c1:07:83:12:82:5f:5f:64:e9:a9:90:f1:77:7a:13:c5:36:
04:47:9f:d0:92:67:31:f2:82:aa:7e:31:cc:cf:45:37:78:67:
23:88:60:d2:09:1a:10:bf:4e:0c:80:08:84:30:46:6f:06:45:
01:db:de:b6:6b:8d:61:c4:4d:dc:74:84:c8:6f:32:6e:98:26:
53:a0:a2:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 15 11:19:27 2024 by rpki-client on console-ams.rpki-client.org