Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/73CyiEyxcFZJFyqzuHorVhYqml8.roa
File: 73CyiEyxcFZJFyqzuHorVhYqml8.roa (raw, json)
Hash identifier: jD1XwhihKMsJE9BRDDl2EqJm5YipjE/l0KNhrgN/XnM=
Subject key identifier: EF:70:B2:88:4C:B1:70:56:49:17:2A:B3:B8:7A:2B:56:16:2A:9A:5F
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018875A56031EAF426BEE2E379AD25C228F7
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/73CyiEyxcFZJFyqzuHorVhYqml8.roa
Signing time: Thu 01 Jun 2023 06:29:12 +0000
ROA not before: Thu 01 Jun 2023 06:29:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 92.114.40.0/22 maxlen: 24
82.163.224.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Jun 2023 06:22:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:75:a5:60:31:ea:f4:26:be:e2:e3:79:ad:25:c2:28:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jun 1 06:29:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef70b2884cb1705649172ab3b87a2b56162a9a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f0:34:e1:e6:31:ca:84:33:f5:2e:40:a8:5a:
8e:3c:f9:71:59:f4:1f:75:da:ad:54:e0:a3:5c:45:
33:b8:f3:8c:67:af:26:2e:9e:f6:ef:52:e7:00:b6:
cb:9b:d4:22:5d:7e:d6:ec:c7:f8:68:b1:e3:16:4c:
02:73:29:b6:40:58:21:f7:df:62:97:87:22:2f:32:
d3:4d:c9:94:23:24:78:e5:d4:19:c1:79:26:30:5c:
80:fe:35:80:39:e4:64:89:c0:05:03:c8:a0:2f:b0:
c2:1a:e1:43:9c:a3:19:e4:fd:f2:94:ad:89:31:35:
60:e3:0a:7d:01:18:e3:4b:d3:f4:e5:cf:1b:52:c4:
20:89:83:a7:a7:2c:23:83:7a:05:39:2c:96:48:98:
f5:a9:9f:e1:14:a5:70:10:50:af:e7:a5:4b:bc:b2:
76:cd:9e:27:92:ae:56:fd:bf:69:a0:42:ac:27:5d:
6c:df:15:43:3c:fa:e2:ce:d1:c3:24:2f:a8:25:36:
2c:86:fe:e9:83:a1:ad:c1:bd:ae:f3:9a:62:13:e8:
1d:93:2d:b1:3c:18:23:5c:ac:e1:2d:64:5f:66:08:
bc:26:9d:e3:d7:b9:2b:de:06:17:b2:fe:be:e4:2a:
4b:d2:77:0b:3d:ac:30:bf:53:ef:5f:f1:62:72:f9:
56:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:70:B2:88:4C:B1:70:56:49:17:2A:B3:B8:7A:2B:56:16:2A:9A:5F
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/73CyiEyxcFZJFyqzuHorVhYqml8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.224.0/22
92.114.40.0/22
Signature Algorithm: sha256WithRSAEncryption
66:16:7d:a0:67:4d:61:b0:63:5e:7e:cb:2b:db:b6:b4:bb:32:
f9:75:74:82:80:dc:bd:52:69:c6:aa:3e:6a:e3:20:69:4e:b4:
bf:a6:ee:3f:74:5a:27:ab:32:19:d7:2b:4a:52:67:8b:cb:fc:
0f:93:95:67:79:cc:2e:f1:b5:af:bb:56:41:14:5c:25:bd:38:
71:ae:20:30:d3:04:e0:aa:dc:d7:92:c3:63:37:9b:2f:0a:8d:
da:4e:99:73:0a:c4:05:12:e1:b5:42:22:59:0b:5c:f4:ef:85:
5d:eb:a7:ae:ec:54:77:25:f7:6f:cd:04:b9:97:8c:14:8f:2e:
61:df:68:ba:5e:8e:27:82:43:45:0f:ff:d4:7b:8a:46:05:de:
85:54:cf:00:5a:9b:dc:f3:08:8b:d2:e4:cf:18:f1:cd:ff:8e:
1b:1c:92:69:03:8a:73:36:03:99:7f:0c:27:04:0c:dc:88:8d:
c9:23:aa:2f:d4:f8:a8:e8:6a:cd:f2:c3:a1:48:0f:53:e4:69:
3d:67:74:38:2a:ef:d9:6e:13:0d:1c:d8:5c:c4:b5:54:06:0a:
6c:eb:c7:cd:1d:be:50:1d:1b:b0:2e:ea:d8:67:21:3b:e1:a1:
e0:bb:12:0d:68:f7:8f:6a:55:49:87:b0:a0:f8:1b:82:8c:78:
1b:f8:44:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:46 2024 by rpki-client on console-ams.rpki-client.org