Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/HtrGn7NGi3wyyheb2lELv467YgQ.roa
File: HtrGn7NGi3wyyheb2lELv467YgQ.roa (raw, json)
Hash identifier: T2W38CBe736QEWNd2zScPsqoAF7BSQ8Fu7Pl8dAvKP4=
Subject key identifier: 1E:DA:C6:9F:B3:46:8B:7C:32:CA:17:9B:DA:51:0B:BF:8E:BB:62:04
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018CC5DCE56F38E0431A061D7AA65C4C5BE8
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/HtrGn7NGi3wyyheb2lELv467YgQ.roa
Signing time: Mon 01 Jan 2024 16:30:37 +0000
ROA not before: Mon 01 Jan 2024 16:30:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 82.163.54.0/23 maxlen: 24
82.163.52.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 10:08:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:e5:6f:38:e0:43:1a:06:1d:7a:a6:5c:4c:5b:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 1 16:30:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1edac69fb3468b7c32ca179bda510bbf8ebb6204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:65:c2:30:21:ca:52:5c:de:e9:f2:80:0d:f9:
dd:dc:85:91:78:b2:1a:19:e5:b4:72:5e:6f:13:78:
27:df:cb:36:9c:52:48:53:f0:24:0e:4e:96:03:2c:
c2:c2:c9:dc:b8:08:b4:09:be:42:52:81:68:0e:0a:
3f:b6:be:7a:44:2b:d5:6c:55:fc:53:91:6c:a8:e6:
41:f0:e5:77:eb:c7:c8:f7:01:77:a8:4a:53:34:5f:
31:91:31:bd:bf:ea:de:1f:bb:eb:19:87:5a:69:8f:
77:79:72:39:e3:ae:ce:b3:09:cf:ac:25:24:5d:86:
46:24:b3:65:f8:bf:94:f2:da:54:0c:90:d9:ae:27:
5d:39:bc:e7:c4:47:02:57:40:14:81:e5:70:90:63:
95:5c:6b:d7:b0:24:70:e0:17:42:98:c1:a9:63:0a:
ec:19:51:d3:62:e0:2f:fe:f0:8d:ad:be:12:49:25:
f4:c3:5a:ef:47:98:2a:20:93:7a:0a:c2:f1:7e:84:
b0:df:03:ba:c5:76:16:99:53:6b:5b:18:41:27:97:
36:2b:34:e5:f4:87:5c:de:d3:b4:18:54:e7:d0:cf:
a4:ef:d8:52:d5:c4:ae:38:ea:e9:55:d4:34:5e:56:
34:e5:06:ea:6d:72:ad:c9:fd:e0:14:b5:32:62:57:
07:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DA:C6:9F:B3:46:8B:7C:32:CA:17:9B:DA:51:0B:BF:8E:BB:62:04
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/HtrGn7NGi3wyyheb2lELv467YgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.52.0/22
Signature Algorithm: sha256WithRSAEncryption
76:33:45:25:f2:ed:34:54:d5:63:66:4b:fb:44:02:41:13:59:
f8:74:36:aa:f6:2e:5f:3f:b1:96:74:f8:2b:65:a3:e0:55:2d:
52:ae:2b:30:60:44:9e:2b:26:ea:f8:16:42:a4:ce:84:fe:8c:
2d:88:4f:c5:30:94:b6:77:22:f8:b5:47:fa:c9:55:5b:f1:f1:
12:c1:0a:32:f6:92:a7:63:38:82:e2:d6:c1:13:14:83:7b:c1:
f8:7a:f5:41:46:03:1a:b9:8b:4c:54:ad:ab:c1:f2:5a:30:92:
79:1b:eb:9d:79:06:f5:23:49:44:c9:00:0a:32:42:2b:48:f1:
cd:72:84:1f:cc:c0:41:b0:83:9d:30:26:2b:1b:18:b1:df:7a:
79:99:f0:58:69:15:c1:53:10:4b:b8:49:1a:a4:ce:c5:c4:26:
d0:5f:80:2e:1d:a0:9e:7d:bd:9d:b1:42:b4:22:7d:df:56:ea:
53:bd:05:8a:b9:56:2d:9b:ac:f0:de:a5:43:e4:bb:f4:3a:d1:
2a:39:99:fa:ea:74:b4:e0:5e:58:8e:80:a9:6a:80:2f:b7:b0:
46:f3:1d:f1:96:ad:cd:b7:a8:1d:f7:18:bd:7d:47:3f:7e:2b:
fc:8e:04:50:b4:2a:de:2d:36:58:6b:b4:57:e1:ea:16:32:6f:
ab:99:2b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org