Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/FplNaVOIJCbuK90K1pcIQXesz2U.roa
File: FplNaVOIJCbuK90K1pcIQXesz2U.roa (raw, json)
Hash identifier: j5H3MvJ8BfveV0vLzIpSdOLWLMwPKfwZ4UsXkg8igUI=
Subject key identifier: 16:99:4D:69:53:88:24:26:EE:2B:DD:0A:D6:97:08:41:77:AC:CF:65
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018C621F470735C5E0ECFBFF292C3ED717F0
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/FplNaVOIJCbuK90K1pcIQXesz2U.roa
Signing time: Wed 13 Dec 2023 07:41:06 +0000
ROA not before: Wed 13 Dec 2023 07:41:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 82.163.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:62:1f:47:07:35:c5:e0:ec:fb:ff:29:2c:3e:d7:17:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Dec 13 07:41:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16994d6953882426ee2bdd0ad697084177accf65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e3:87:92:d4:19:80:30:50:6f:17:87:66:5b:
f5:86:a7:88:50:13:83:4f:b3:77:36:7c:15:d0:8a:
8d:3e:52:e4:f0:2c:e9:80:6a:ba:cf:d2:40:a7:3a:
e2:d7:af:90:3b:98:56:f3:ab:95:22:ab:d4:cd:5e:
1b:92:12:d4:c5:af:3c:4d:be:e6:16:f9:e7:76:65:
9b:05:e5:15:40:51:ae:f8:9e:74:33:de:ea:43:d3:
25:86:fa:00:eb:a7:12:a0:b9:76:1f:ff:a7:0d:1b:
33:8d:8f:8f:3c:74:b9:ec:53:b3:2d:84:5c:1d:9e:
e9:df:74:ea:6d:1d:88:77:fe:32:0b:ae:32:10:01:
83:14:eb:0f:10:d5:55:8e:55:01:8f:b3:5d:32:e2:
61:80:9e:ca:7c:e6:89:3a:1b:99:ae:99:f6:3c:3f:
35:db:3a:69:c0:e2:04:12:86:39:9d:d2:d7:00:81:
b4:36:f9:b5:0f:4e:56:1b:32:23:c9:b6:31:f2:af:
73:23:f5:97:61:22:6b:b2:71:92:35:14:e4:00:15:
d0:8d:b3:41:13:55:a2:56:9f:93:f4:06:b9:24:ca:
e0:67:a3:94:86:fc:b5:f9:3f:40:e0:09:d3:04:83:
e5:cd:a9:3c:f7:dd:4d:4d:1d:e3:54:9a:c6:20:27:
29:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:99:4D:69:53:88:24:26:EE:2B:DD:0A:D6:97:08:41:77:AC:CF:65
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/FplNaVOIJCbuK90K1pcIQXesz2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.64.0/22
Signature Algorithm: sha256WithRSAEncryption
39:9e:99:6e:3f:93:d3:2e:06:21:a8:a1:a8:14:99:d4:80:8a:
23:ac:6d:fa:88:13:9c:88:cc:ee:34:95:7a:76:b1:d3:87:b8:
d0:dc:05:14:fd:df:5e:23:81:fd:15:9d:39:3c:c7:15:fc:ef:
1e:a0:6a:ea:22:a5:9a:ab:85:3b:93:76:1c:f2:75:32:72:31:
35:50:cc:96:8c:1c:c8:e2:cf:8e:ef:7c:59:f4:3f:87:a6:4b:
29:0a:2f:3a:97:dd:b7:69:d3:63:f3:36:29:e3:34:72:bb:d0:
c1:00:a5:3b:6d:55:e8:77:9b:e1:3c:69:6e:6c:fd:5e:28:03:
78:e0:89:56:dc:ba:b0:ac:03:41:02:8c:06:b1:73:23:80:41:
d7:85:4a:01:6f:97:eb:d1:aa:4f:a8:1d:15:d3:c8:62:b1:ad:
8a:26:47:fe:d3:55:58:43:7e:59:7e:82:78:ac:95:79:65:d9:
46:37:73:90:00:6c:7b:d8:ff:8b:41:9a:b9:1a:1a:3f:c4:cf:
28:c6:c5:cb:51:db:56:18:b7:56:5e:fc:66:89:db:5a:bc:df:
95:b1:5f:e7:23:09:74:87:6e:5b:87:db:32:27:50:de:20:85:
e4:f7:e6:90:d5:3a:0e:ef:96:c6:6e:8f:8f:9a:3b:c0:53:4b:
41:1c:82:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxiH0cHNcXg7Pv/KSw+1xfwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2
N2IxZTQwHhcNMjMxMjEzMDc0MTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjk5NGQ2OTUzODgyNDI2ZWUyYmRkMGFkNjk3MDg0MTc3YWNjZjY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhuOHktQZgDBQbxeHZlv1hqeIUBOD
T7N3NnwV0IqNPlLk8CzpgGq6z9JApzri16+QO5hW86uVIqvUzV4bkhLUxa88Tb7m
FvnndmWbBeUVQFGu+J50M97qQ9MlhvoA66cSoLl2H/+nDRszjY+PPHS57FOzLYRc
HZ7p33TqbR2Id/4yC64yEAGDFOsPENVVjlUBj7NdMuJhgJ7KfOaJOhuZrpn2PD81
2zppwOIEEoY5ndLXAIG0Nvm1D05WGzIjybYx8q9zI/WXYSJrsnGSNRTkABXQjbNB
E1WiVp+T9Aa5JMrgZ6OUhvy1+T9A4AnTBIPlzak8991NTR3jVJrGICcp0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBaZTWlTiCQm7ivdCtaXCEF3rM9lMB8GA1UdIwQY
MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut
ODk3MTRhN2U4ZDU4LzEvRnBsTmFWT0lKQ2J1SzkwSzFwY0lRWGVzejJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4
LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCUqNAMA0G
CSqGSIb3DQEBCwUAA4IBAQA5npluP5PTLgYhqKGoFJnUgIojrG36iBOciMzuNJV6
drHTh7jQ3AUU/d9eI4H9FZ05PMcV/O8eoGrqIqWaq4U7k3Yc8nUycjE1UMyWjBzI
4s+O73xZ9D+HpkspCi86l923adNj8zYp4zRyu9DBAKU7bVXod5vhPGlubP1eKAN4
4IlW3LqwrANBAowGsXMjgEHXhUoBb5fr0apPqB0V08hisa2KJkf+01VYQ35ZfoJ4
rJV5ZdlGN3OQAGx72P+LQZq5Gho/xM8oxsXLUdtWGLdWXvxmidtavN+VsV/nIwl0
h25bh9syJ1DeIIXk9+aQ1ToO75bGbo+PmjvAU0tBHIKb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org