Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Dn04i7ZP9t9ABxUlN4fb1jtDOwQ.roa
File: Dn04i7ZP9t9ABxUlN4fb1jtDOwQ.roa (raw, json)
Hash identifier: YtfzEHIljtltMkgYKl26dhu+miiyVVDAWWulYvitwS4=
Subject key identifier: 0E:7D:38:8B:B6:4F:F6:DF:40:07:15:25:37:87:DB:D6:3B:43:3B:04
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 019265614E55790CF284D2481F71EBBD6DE0
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Dn04i7ZP9t9ABxUlN4fb1jtDOwQ.roa
Signing time: Mon 07 Oct 2024 05:08:48 +0000
ROA not before: Mon 07 Oct 2024 05:08:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 82.163.52.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 07 Oct 2024 10:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:65:61:4e:55:79:0c:f2:84:d2:48:1f:71:eb:bd:6d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Oct 7 05:08:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e7d388bb64ff6df400715253787dbd63b433b04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b8:98:43:cd:ae:bb:ea:41:a4:7a:28:08:f4:
85:b7:c6:d7:c4:97:c9:56:45:5e:39:1c:47:6e:6f:
7c:cd:82:da:1a:16:3b:34:87:7a:55:78:ae:6f:5d:
7c:8f:02:78:1f:91:2a:a4:63:70:40:98:c8:41:1d:
f7:0e:91:c9:af:66:af:05:dc:26:7d:69:21:07:40:
df:fe:92:f5:b9:c7:48:6b:02:b3:5b:48:47:c1:7a:
0d:bf:97:b6:03:68:a6:27:9c:27:3b:b0:6d:09:5b:
0a:a6:08:6f:d0:e1:d4:b9:e7:62:85:48:8c:4d:4a:
cf:6c:ea:f9:12:18:3d:59:b0:5d:33:38:8f:ec:3b:
ac:02:9f:40:a7:b5:3f:51:68:94:51:90:00:a6:0c:
87:6a:8e:54:96:a6:87:ce:e8:27:6a:05:25:73:6d:
a3:ee:c9:ee:31:a0:4d:26:a6:a5:cd:02:dc:55:03:
0a:c1:7a:79:d5:43:83:b5:8c:74:af:52:17:1b:03:
d4:1e:49:84:1a:ff:0d:9f:da:15:97:f8:99:7d:78:
f1:bf:12:1b:40:20:01:44:f8:b3:b2:cd:22:c3:df:
74:0b:50:6b:01:9f:b7:fa:17:e6:0d:95:fc:fc:01:
7d:e5:71:15:c5:dd:c3:f7:43:f6:3a:bb:fe:9e:84:
af:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:7D:38:8B:B6:4F:F6:DF:40:07:15:25:37:87:DB:D6:3B:43:3B:04
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Dn04i7ZP9t9ABxUlN4fb1jtDOwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.52.0/23
Signature Algorithm: sha256WithRSAEncryption
30:b9:8e:62:47:14:61:db:19:a2:88:d5:48:57:42:2c:ac:e6:
ee:6a:81:c1:a8:4d:14:e9:b9:23:c6:8d:ef:c2:55:5d:3e:4d:
d5:0d:6a:70:f9:3c:59:c4:8f:33:24:9c:7f:e2:b7:ed:51:e1:
1c:cc:77:24:3d:d4:0a:cb:10:e5:a5:aa:de:4a:b5:3b:b2:9a:
05:2a:c2:d8:90:d9:36:dc:91:2c:e4:75:0d:9a:4f:e7:6e:4c:
bd:94:3e:81:88:21:79:c8:4f:46:25:0f:fd:89:56:34:9e:a9:
49:cf:6e:59:3b:95:77:32:79:5c:6b:3d:b4:d5:7e:2d:fc:90:
d6:5d:16:8a:87:99:0a:f0:f3:11:61:09:2b:9f:90:49:06:7b:
9a:da:2c:f6:4a:a6:8c:c7:88:22:68:da:8f:92:f0:1c:f8:b6:
bd:ea:53:2b:6e:0b:fa:02:07:fe:67:43:ab:8c:47:c8:5f:dc:
b2:81:ec:9c:be:42:2f:92:5b:b3:23:54:ce:01:d9:70:60:3e:
0d:d8:8c:12:6b:87:5f:93:5c:a5:cf:5d:08:90:01:36:40:7b:
78:25:0f:95:36:b9:91:32:62:db:aa:5c:89:f2:46:d1:d2:75:
8b:ef:89:de:b1:e4:a0:bd:87:df:01:d7:0f:e9:fb:a0:1e:28:
1c:8e:62:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 14:40:53 2024 by rpki-client on console-ams.rpki-client.org