Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/CvhMYqFtX7vdeFwfep5txJr3hCY.roa
File: CvhMYqFtX7vdeFwfep5txJr3hCY.roa (raw, json)
Hash identifier: M8z/Gugq473hINZh1G5jCH3Jr+gdsePoYzvOLMnfuYs=
Subject key identifier: 0A:F8:4C:62:A1:6D:5F:BB:DD:78:5C:1F:7A:9E:6D:C4:9A:F7:84:26
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0188851035C475C4CD9D1C84B8CA8F1517D6
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/CvhMYqFtX7vdeFwfep5txJr3hCY.roa
Signing time: Sun 04 Jun 2023 06:20:11 +0000
ROA not before: Sun 04 Jun 2023 06:20:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 82.163.54.0/23 maxlen: 24
82.163.52.0/23 maxlen: 24
31.186.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jul 2023 06:26:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:85:10:35:c4:75:c4:cd:9d:1c:84:b8:ca:8f:15:17:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jun 4 06:20:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0af84c62a16d5fbbdd785c1f7a9e6dc49af78426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:75:c2:74:4c:af:50:4e:da:e3:a1:3e:2f:35:
77:19:19:ab:8c:38:97:f9:4b:df:f5:3c:5a:71:67:
1d:62:e6:31:dc:38:14:95:cb:25:10:8f:2a:7f:b9:
55:32:a3:fb:68:b9:ca:3c:bf:06:65:bd:16:c2:19:
8a:95:db:5b:47:a6:44:7d:df:6b:ea:48:2f:ca:d6:
ef:59:58:47:ea:4d:f1:85:28:dd:fa:35:3f:68:79:
ed:e7:74:15:18:2f:86:cd:d8:b8:53:f4:2a:be:4d:
c9:b0:52:12:16:c0:21:d6:61:6d:00:a9:14:76:8e:
6a:84:e0:d4:aa:43:41:93:54:fa:5e:61:c3:a3:71:
8b:43:fb:f1:04:08:e4:7d:4a:24:93:e2:35:7d:68:
86:db:3a:90:9a:34:13:81:88:09:85:3b:ea:76:0d:
30:b3:10:e7:0e:6a:0d:12:73:8f:50:61:a2:ad:8d:
25:8f:f6:c5:5b:44:d9:48:ab:14:d0:da:ec:5f:cd:
d9:37:28:59:2c:b3:78:3f:21:c5:d6:5c:df:e0:f8:
a6:46:52:5f:55:7d:fe:0d:2c:71:9f:23:96:da:73:
e7:67:f5:26:27:9f:0f:98:ad:e4:53:ca:ac:1b:c0:
55:95:01:7b:14:5e:da:f6:4d:0e:3d:ae:e1:8b:12:
b8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F8:4C:62:A1:6D:5F:BB:DD:78:5C:1F:7A:9E:6D:C4:9A:F7:84:26
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/CvhMYqFtX7vdeFwfep5txJr3hCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
82.163.52.0/22
Signature Algorithm: sha256WithRSAEncryption
49:73:12:bc:3d:74:4c:31:ff:53:6b:a5:2d:89:2e:01:a5:2d:
44:d5:eb:cc:9c:6a:20:3b:7f:c8:f0:57:88:f9:93:3c:d1:09:
1b:a5:72:71:fc:07:7f:88:10:a7:f6:35:ba:a7:69:8a:96:4c:
2b:50:4f:8c:6b:85:03:28:82:8c:a2:9d:f0:01:a1:76:f0:38:
a5:a8:46:45:62:8a:af:ec:ab:10:18:00:ef:e7:95:62:4c:de:
d1:54:41:df:67:9d:8f:e9:7c:ce:5e:d0:ef:74:3e:7f:b4:b1:
11:47:36:0a:47:46:e5:09:db:62:65:2e:a9:a2:56:25:e8:d8:
33:cf:e2:61:76:08:94:c2:23:41:4b:8d:ac:4a:3d:03:8a:a5:
b5:fa:49:ae:ed:b6:3f:6f:69:26:8c:09:a5:27:b8:a7:e3:88:
5d:f5:22:d3:10:48:ec:d9:45:11:4e:54:df:b5:4c:e0:12:bf:
08:d3:e9:8e:ba:d9:99:75:75:a5:df:61:9f:6a:01:71:bf:d4:
2f:c8:73:f3:1e:bb:27:02:41:5f:0a:6f:20:fa:1b:c6:90:b4:
13:56:62:49:51:ac:34:cf:3d:0f:c7:7d:f3:68:79:93:ee:ec:
09:77:54:32:bb:7f:79:c0:9c:57:5f:37:7a:0b:68:f0:0d:f5:
c6:4d:cd:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org