Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ByvRq6YQ1C1DwBoujNjd2Zyvdhg.roa
File: ByvRq6YQ1C1DwBoujNjd2Zyvdhg.roa (raw, json)
Hash identifier: D0tQYRZJpwIs/Ya/lCGHZpq1ImZxnabxOo0SiiKZows=
Subject key identifier: 07:2B:D1:AB:A6:10:D4:2D:43:C0:1A:2E:8C:D8:DD:D9:9C:AF:76:18
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01907C64CA5AAF01114704B7D449B633F829
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ByvRq6YQ1C1DwBoujNjd2Zyvdhg.roa
Signing time: Thu 04 Jul 2024 06:18:18 +0000
ROA not before: Thu 04 Jul 2024 06:18:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.102.96.0/20 maxlen: 24
5.102.96.0/21 maxlen: 24
86.104.164.0/22 maxlen: 24
89.46.180.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jul 2024 09:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7c:64:ca:5a:af:01:11:47:04:b7:d4:49:b6:33:f8:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jul 4 06:18:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=072bd1aba610d42d43c01a2e8cd8ddd99caf7618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3e:ec:fe:96:7f:5e:96:e6:53:ec:9e:0e:73:
24:5c:40:86:3a:59:a7:cd:97:3e:99:09:48:d7:a8:
e2:88:d0:8d:e7:2d:b0:35:20:ce:fc:d4:51:e7:25:
f9:29:b7:0e:f7:bf:99:cf:d5:c3:d6:62:ba:ee:ec:
9b:7a:02:58:3c:75:19:68:5c:e8:8f:33:49:64:e4:
9b:35:ce:09:7b:35:57:b0:ab:82:79:92:f4:c4:9b:
df:5c:6e:69:c3:4d:81:f6:04:a4:ad:eb:59:31:96:
a2:b2:b7:d7:51:8f:fd:57:ed:a9:3e:42:aa:07:41:
76:dd:e6:8f:af:c8:f4:ac:28:6e:3d:7b:95:43:9f:
fa:ef:c9:80:b2:9c:92:56:4c:46:6f:cf:df:71:70:
92:b6:80:5f:05:01:11:81:31:2b:5d:c1:1c:a8:a0:
7d:22:39:27:ea:cd:88:b2:c5:4c:ea:58:9f:4f:87:
20:8d:0b:82:b5:fc:4b:2e:f5:76:2d:99:e1:b1:ea:
4a:26:0b:9a:a1:74:22:a5:29:30:38:42:bf:5b:d1:
dd:fd:d0:ec:b4:7f:d8:57:69:36:60:54:59:b3:23:
89:05:3e:5e:41:fb:3e:19:df:c4:cc:ce:58:a5:33:
4b:5b:db:42:73:0d:c2:99:4d:e2:16:bb:56:6c:6f:
6b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:2B:D1:AB:A6:10:D4:2D:43:C0:1A:2E:8C:D8:DD:D9:9C:AF:76:18
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ByvRq6YQ1C1DwBoujNjd2Zyvdhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.96.0/20
86.104.164.0/22
89.46.180.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:35:a7:81:8b:a0:26:a6:a7:48:ae:a3:7b:6f:19:c9:69:8b:
1b:86:af:37:b8:dc:fb:bf:3f:ed:4b:b3:12:81:ff:14:ff:f4:
bc:f6:86:c6:4a:af:c1:6d:d9:f4:30:71:82:67:35:94:2f:73:
92:64:fa:83:42:09:5d:55:46:b5:35:bd:91:5c:ab:51:75:27:
a8:65:51:15:80:19:6e:a2:8c:9b:75:69:94:be:b6:4a:be:71:
ea:dd:93:77:40:09:cf:8a:f6:6d:80:27:a3:66:09:a5:39:ad:
ca:99:d0:3c:3f:3b:f6:69:27:15:87:26:56:4e:77:ce:82:06:
88:f8:8e:a2:e3:2e:eb:4a:fb:e1:35:ea:d7:4c:ba:af:17:d5:
5d:55:bd:1d:fb:b8:c8:35:7c:40:55:4c:76:df:af:d9:39:84:
a3:9a:c5:04:1b:12:da:5d:7a:40:09:54:1c:a6:aa:f8:15:8c:
cd:45:ab:56:73:30:d6:00:fa:94:bf:8a:53:42:85:5e:bf:89:
2f:e9:13:69:45:66:60:aa:f3:0a:f1:82:07:6e:57:e2:79:f2:
c4:12:25:c2:41:d7:69:84:44:17:03:0d:c0:aa:2b:83:12:c3:
a9:78:9e:01:5a:32:75:27:0d:74:b8:8c:6f:41:28:e3:47:c9:
6c:24:5d:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 10:20:16 2024 by rpki-client on console-fra.rpki-client.org