Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/6hxIwDKErnEg2pZwY5IZIplrZsI.roa
File: 6hxIwDKErnEg2pZwY5IZIplrZsI.roa (raw, json)
Hash identifier: WSzqT6ywrIrD94/UCPyk/nnGkxDmCDydXVHX9MKpM/o=
Subject key identifier: EA:1C:48:C0:32:84:AE:71:20:DA:96:70:63:92:19:22:99:6B:66:C2
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018571B9F49B2D4DF7D3EA1FA37EA0D90FF2
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/6hxIwDKErnEg2pZwY5IZIplrZsI.roa
Signing time: Mon 02 Jan 2023 09:04:50 +0000
ROA not before: Mon 02 Jan 2023 09:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 31.186.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Jan 2023 07:13:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f4:9b:2d:4d:f7:d3:ea:1f:a3:7e:a0:d9:0f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 2 09:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea1c48c03284ae7120da967063921922996b66c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:72:95:6b:81:7d:ed:23:6c:f3:5f:35:0a:83:
da:7e:0f:3a:aa:13:4b:05:1f:1b:e2:09:69:4b:f6:
4b:3f:75:87:2c:1f:59:ea:3f:26:c7:c5:79:4a:ac:
2e:18:f2:04:2a:7d:72:2f:54:28:06:61:44:b9:a2:
a5:17:0b:db:ab:1d:5a:96:ec:70:29:5f:23:00:f3:
23:41:bc:ef:45:0f:cd:c6:d4:c6:e0:29:4e:e6:20:
30:bd:c7:c3:1c:ee:e0:ba:ac:9d:b8:ff:63:88:a0:
8b:51:16:1a:88:41:f8:9a:18:93:c7:9f:55:f4:4a:
9c:2c:9f:d3:9f:0c:4f:16:39:2b:d5:c8:aa:43:57:
83:9b:4d:8e:cb:df:a8:ab:8a:a6:db:ec:73:88:67:
e9:01:48:87:18:7e:28:b6:d3:b5:8d:cf:fd:36:d3:
f3:f3:f9:96:95:fc:9d:5d:3a:f2:ee:e8:ab:e6:10:
2a:19:b3:61:fe:c5:3d:f5:d0:96:39:20:c9:49:6d:
4c:bb:36:05:2d:fa:46:88:1f:26:ff:59:eb:dc:be:
4e:2d:66:b2:11:b8:3d:3a:11:b8:00:78:62:ac:a8:
98:ad:4b:9b:f4:55:f7:d7:85:02:99:e8:38:7b:8d:
77:9e:2a:65:85:43:22:67:89:a5:c6:60:ce:19:f8:
4f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:1C:48:C0:32:84:AE:71:20:DA:96:70:63:92:19:22:99:6B:66:C2
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/6hxIwDKErnEg2pZwY5IZIplrZsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
Signature Algorithm: sha256WithRSAEncryption
42:8f:51:a2:73:52:f0:7d:4b:a5:29:08:8c:80:6a:f1:73:7f:
f2:6f:c7:ee:dc:ac:a5:51:67:3b:0e:8e:19:63:44:b2:9a:20:
4e:6d:bd:05:bf:8d:74:a4:28:72:a6:9d:19:e0:97:8d:ba:37:
e6:e8:de:0e:f3:c9:a4:7a:b7:b0:fa:07:1f:fe:26:70:0e:35:
60:7c:08:3f:d6:8a:6b:74:5a:e7:3f:2e:32:49:02:6f:ec:31:
99:41:61:c3:d7:c6:cb:5c:1a:3a:c7:c6:a0:e5:0f:a2:1c:a7:
d1:e8:f0:c0:68:d6:94:98:da:ce:d3:d9:08:75:56:fc:86:44:
19:6f:90:84:cd:b9:11:f7:6e:3b:2e:64:a5:bd:5f:e6:4a:d6:
f3:8e:59:ed:01:7a:87:02:59:38:c2:3a:21:b9:d4:21:bc:ec:
d7:3c:7c:96:bf:8e:29:ee:9c:e6:98:8d:c9:a0:6a:39:f5:4c:
4e:1b:01:1f:51:93:9c:3d:4a:74:29:7b:d4:3c:8a:0e:fc:34:
a9:59:dd:6e:62:0c:af:b4:ce:2b:e7:6e:ca:d6:a7:b1:aa:3e:
d9:84:6b:c4:7a:4e:f2:33:ea:1b:52:cd:24:3a:bb:50:2f:ad:
b0:41:7d:f6:e4:34:8f:52:ed:66:c2:9d:d7:1f:04:9f:dd:db:
0f:cc:c8:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org