Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/4DSt8laA_orCjCjhPwkPLb_zwMM.roa
File: 4DSt8laA_orCjCjhPwkPLb_zwMM.roa (raw, json)
Hash identifier: 0thbnL/uNDR5TEm7m7GBKYQBUT4/+fgGgrTnnYcMgOA=
Subject key identifier: E0:34:AD:F2:56:80:FE:8A:C2:8C:28:E1:3F:09:0F:2D:BF:F3:C0:C3
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01907C64CB4D6088716C0DFF2D378C3682E1
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/4DSt8laA_orCjCjhPwkPLb_zwMM.roa
Signing time: Thu 04 Jul 2024 06:18:18 +0000
ROA not before: Thu 04 Jul 2024 06:18:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 82.163.54.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jul 2024 07:43:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7c:64:cb:4d:60:88:71:6c:0d:ff:2d:37:8c:36:82:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jul 4 06:18:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e034adf25680fe8ac28c28e13f090f2dbff3c0c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:08:98:70:4f:ea:89:e6:db:f3:78:7d:17:78:
57:19:39:e4:67:93:78:6c:d4:6c:66:93:b7:0c:9e:
bf:4e:c3:b9:bc:c8:48:a1:8d:b7:5a:b7:55:82:dd:
5c:5d:f3:fb:2e:0f:6e:c7:52:f1:57:74:10:a8:f1:
9b:e3:4d:20:89:a5:92:8d:e9:0a:b8:59:3b:7c:a2:
bb:14:4b:29:57:5c:9e:b9:02:61:c7:f6:e4:07:7f:
5d:b8:17:b4:6b:49:9b:61:2e:7c:d9:7b:e8:53:81:
8a:db:af:33:4d:f1:1c:52:38:47:0d:3b:e3:15:50:
34:23:2d:09:84:98:fa:e7:e9:36:47:8f:53:df:36:
d3:de:78:ca:7b:ef:06:c6:a3:ff:8d:00:34:e6:12:
63:7c:d8:54:5a:0f:7a:74:ce:f7:51:6b:2a:3a:86:
22:13:a9:69:4b:96:bf:c2:45:d2:52:6d:ab:fb:45:
bc:4a:21:72:ac:10:88:89:e5:ca:d8:b5:e2:af:22:
65:c5:63:b8:a9:73:7c:32:98:74:65:f1:11:88:d6:
81:0a:1c:ff:8a:41:2a:62:95:63:ee:77:73:ca:ba:
f8:33:35:ed:3d:50:cf:58:10:35:ad:27:f1:96:d9:
f7:87:cd:3f:68:7c:cd:19:c1:81:9e:7d:f9:86:2b:
3b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:34:AD:F2:56:80:FE:8A:C2:8C:28:E1:3F:09:0F:2D:BF:F3:C0:C3
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/4DSt8laA_orCjCjhPwkPLb_zwMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.54.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:0d:c8:83:7a:65:ca:ea:54:0f:4d:ea:c4:39:ea:c8:92:80:
c1:20:fb:9a:48:13:d7:c1:cf:bd:f1:ee:57:bb:b7:b7:a0:66:
da:4d:b9:51:5f:3f:de:7a:6b:a3:d3:5d:f2:a0:d9:7f:30:ba:
f4:d1:59:8e:1c:eb:dc:24:64:aa:25:75:18:d4:64:04:96:d7:
de:5c:98:62:39:68:8c:c9:56:b9:be:d5:1c:fc:43:c7:1a:d7:
90:2b:85:6a:20:51:88:ff:f2:05:32:2b:78:69:60:30:72:0c:
2d:85:b5:a7:3e:0f:7e:9d:97:46:91:3f:33:f9:3a:98:56:8e:
16:41:09:14:29:21:32:6e:91:90:43:01:28:64:20:43:c4:df:
19:01:c1:72:50:fe:37:24:96:17:c6:8e:c7:84:51:26:19:9d:
50:ca:66:47:06:fe:95:2a:39:7f:7a:fc:9a:19:ff:bf:f7:83:
fd:ba:36:82:a4:0b:af:44:12:21:c1:3e:04:63:7f:88:d7:dd:
73:ce:40:58:25:e6:0c:73:fa:95:42:07:17:52:8c:06:a3:f7:
eb:69:8b:32:65:ca:c9:90:dd:9f:21:f8:90:d7:aa:fe:66:64:
47:2d:a1:83:76:26:2f:71:be:3e:19:95:60:10:cb:b9:87:de:
cf:15:a9:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 09:46:54 2024 by rpki-client on console-fra.rpki-client.org