Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/2ml3lccSphw1fxPrX-KYBBVbQzo.roa
File: 2ml3lccSphw1fxPrX-KYBBVbQzo.roa (raw, json)
Hash identifier: 0SHLC/cl/WtC363tOxbV5ZSgiw1dpuYLmRpLNrSJnys=
Subject key identifier: DA:69:77:95:C7:12:A6:1C:35:7F:13:EB:5F:E2:98:04:15:5B:43:3A
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018BA8E00904FA335A499EC20403E9771E4F
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/2ml3lccSphw1fxPrX-KYBBVbQzo.roa
Signing time: Tue 07 Nov 2023 08:22:16 +0000
ROA not before: Tue 07 Nov 2023 08:22:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 82.163.68.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 29 Nov 2023 11:11:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a8:e0:09:04:fa:33:5a:49:9e:c2:04:03:e9:77:1e:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Nov 7 08:22:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da697795c712a61c357f13eb5fe29804155b433a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ef:16:3f:e1:7a:d3:aa:52:a2:ef:92:56:3d:
0d:2f:84:f7:97:be:3b:d5:a3:c9:48:25:33:3a:ba:
9d:20:54:6f:c6:fe:52:ee:9b:65:b4:8c:d5:49:ff:
c7:e9:e8:e6:56:58:60:46:12:b1:35:35:13:5d:21:
c2:0c:7f:fc:ac:4e:9e:0d:d6:b5:33:7f:88:70:01:
9f:3e:27:38:24:eb:21:c5:40:79:cd:0b:69:36:36:
4c:a6:a3:e3:06:97:91:e3:5f:e9:90:3a:b2:53:7c:
53:f4:1d:fc:c9:77:30:e9:0b:dc:24:f4:a8:1d:be:
10:13:00:98:3b:54:f7:8c:2f:36:09:0d:32:63:47:
44:a8:f8:c1:21:3e:a0:eb:0a:08:4a:27:f1:e0:7c:
e0:04:ec:d8:db:6b:b3:16:76:5c:98:7e:0a:b8:01:
f9:d6:86:d7:72:56:b8:50:80:cd:73:ec:72:04:4d:
40:75:56:20:79:07:ac:83:eb:cb:90:96:14:fd:17:
e6:90:d0:35:7b:ff:6f:bf:aa:5c:a3:82:a4:cd:6d:
de:76:27:5a:a7:09:63:9c:6e:1e:8f:d4:c2:71:bf:
d8:61:4f:f2:48:ca:ad:e5:24:46:25:bb:88:9a:f7:
50:8b:92:7a:f1:6b:35:a6:5b:c0:04:50:7d:41:f9:
d4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:69:77:95:C7:12:A6:1C:35:7F:13:EB:5F:E2:98:04:15:5B:43:3A
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/2ml3lccSphw1fxPrX-KYBBVbQzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.68.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:24:eb:bd:a1:23:ad:42:f3:23:34:a6:94:3e:94:c6:56:2b:
e8:8c:64:41:11:08:5c:66:4f:2b:0a:8a:87:0a:65:18:3f:51:
6c:0f:10:a0:82:db:ab:d8:10:64:a4:4e:04:87:8d:30:02:3b:
f1:ef:9f:4e:2d:c7:11:20:f7:c3:2d:9d:5a:61:c9:8c:fd:c0:
01:36:44:b1:fe:85:c7:00:ff:12:64:fb:29:9a:dd:8f:ad:65:
30:ed:db:56:e8:3c:fe:7a:28:8c:2f:5a:c6:2a:d4:40:0b:69:
0b:eb:5e:4e:97:49:84:73:37:4a:8a:cc:f1:15:a1:2a:98:19:
ea:70:ff:33:47:0d:82:ae:31:c4:d3:13:ee:e5:9f:ee:cd:28:
23:2e:3e:fb:37:cc:0a:67:25:3f:2f:35:59:ab:4c:a2:5a:69:
15:1e:0b:e9:d7:2e:b9:bd:ad:00:3a:05:d9:b8:fe:d7:f1:37:
3b:3a:c1:1b:3d:98:7b:82:46:6a:e4:6b:25:c1:d7:4e:24:b0:
a6:14:d9:05:6b:af:0e:c5:b3:f5:05:de:6a:7f:a0:93:cc:31:
57:e1:f2:71:60:a8:86:75:46:0a:ed:83:38:94:8d:ed:26:2f:
97:e4:00:c5:b7:f5:f5:d3:b3:c7:15:ad:ed:cc:98:f4:2b:34:
36:97:a5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:46 2024 by rpki-client on console-ams.rpki-client.org