Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/E7sXNd5Uus72m-jjeY3h7W5lZWc.roa
File: E7sXNd5Uus72m-jjeY3h7W5lZWc.roa (raw, json)
Hash identifier: 2UzXNYHY9mOBOfEcQGMK1YxjyssP1DyB7ga7/5UFuP8=
Subject key identifier: 13:BB:17:35:DE:54:BA:CE:F6:9B:E8:E3:79:8D:E1:ED:6E:65:65:67
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0187DC36E97CF5E28B32EFBC9B4119C58E70
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/E7sXNd5Uus72m-jjeY3h7W5lZWc.roa
Signing time: Tue 02 May 2023 11:26:38 +0000
ROA not before: Tue 02 May 2023 11:26:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 82.163.224.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 May 2023 13:29:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:dc:36:e9:7c:f5:e2:8b:32:ef:bc:9b:41:19:c5:8e:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: May 2 11:26:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13bb1735de54bacef69be8e3798de1ed6e656567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c7:4f:56:48:f6:12:2d:10:09:f0:0c:cc:ae:
8c:f9:50:2b:9b:73:7f:ac:4b:83:3c:71:56:90:91:
a1:ab:9f:ed:d4:bd:be:cd:e7:2e:28:75:2e:ab:cf:
66:08:20:ee:c3:5a:41:cd:b4:9b:fc:01:e1:2a:9b:
53:ad:a1:02:ba:88:4a:d2:df:91:86:e7:5b:97:1d:
c8:a9:d5:24:a2:16:94:98:cb:7c:49:03:ef:40:29:
1b:b9:ba:de:ca:b6:81:fb:49:41:eb:09:d8:89:1b:
63:4c:45:34:c7:6c:66:e2:0a:61:69:32:45:f2:92:
34:d9:59:14:e4:44:c0:01:1f:7f:da:76:d7:7c:6f:
57:45:27:b8:36:de:99:c1:95:e7:37:2e:7f:c6:e9:
e5:53:e1:6b:ec:f1:0a:87:98:ac:b2:eb:85:ed:f6:
d7:5a:72:72:ab:a1:50:5f:11:93:5a:76:7c:3f:a1:
49:43:f4:18:61:a6:ca:6a:47:eb:df:86:a3:e4:68:
f5:4b:1b:f9:1e:1d:80:35:e9:44:db:62:bf:08:d6:
33:12:d9:89:86:9f:93:13:e4:64:43:13:f9:09:07:
ba:ec:37:f1:91:f9:6b:8f:d5:65:78:e8:02:06:27:
2c:39:30:cd:b2:05:32:5e:32:62:d8:aa:a1:c7:bd:
1e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:BB:17:35:DE:54:BA:CE:F6:9B:E8:E3:79:8D:E1:ED:6E:65:65:67
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/E7sXNd5Uus72m-jjeY3h7W5lZWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.224.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:c2:48:f3:5b:e4:e2:a5:be:a9:e6:60:07:f5:71:9d:22:f1:
96:ed:3b:a7:c0:df:bf:4a:bb:52:69:39:31:66:78:68:ed:73:
0d:6f:0b:cc:cf:ae:76:8d:4b:b2:5f:7a:30:90:14:8b:4a:ca:
10:06:62:45:8e:74:12:11:ee:02:ec:b7:3a:fa:97:ae:40:d6:
7c:18:ea:5c:79:39:f8:99:d8:1e:54:1c:18:b3:2a:87:c3:e1:
0a:80:51:91:b1:82:9e:b4:77:2a:72:e4:a0:9a:21:b7:22:78:
46:a7:2e:04:08:4b:c6:20:cf:a3:0d:a5:40:63:ab:40:41:d8:
32:0e:ce:63:d1:20:f1:f6:cf:33:ed:76:78:79:1c:08:2f:d4:
f9:99:c6:ef:65:96:60:03:9c:43:6d:0a:81:cc:60:55:d5:0f:
4f:e8:82:1a:bf:fc:ca:e2:91:1e:0d:15:d7:21:37:e3:f2:1b:
32:a8:e0:eb:92:23:81:4c:f1:0c:c1:8b:86:31:fe:5d:64:a8:
c6:f9:d5:eb:05:a1:e8:6d:19:10:7b:17:3e:9a:bc:ed:61:dd:
41:5b:d7:80:cd:9b:1e:28:8e:86:32:19:db:15:1d:2f:be:a8:
32:33:63:80:2c:c9:72:c5:4e:f7:02:f6:ea:74:46:13:24:76:
fb:a4:d0:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org