Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/IHhmPD4QQya03mFqP69Vg4b7JvA.roa
File: IHhmPD4QQya03mFqP69Vg4b7JvA.roa (raw, json)
Hash identifier: +3Oomqe10VuRFBaQDj3T7sWW1JP/zyeWmjt/Rg60miA=
Subject key identifier: 20:78:66:3C:3E:10:43:26:B4:DE:61:6A:3F:AF:55:83:86:FB:26:F0
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018CC5DCE9826BBA6692CBDE61CA094482B4
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/IHhmPD4QQya03mFqP69Vg4b7JvA.roa
Signing time: Mon 01 Jan 2024 16:30:38 +0000
ROA not before: Mon 01 Jan 2024 16:30:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400909
IP address blocks: 82.163.228.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 13:23:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:e9:82:6b:ba:66:92:cb:de:61:ca:09:44:82:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 1 16:30:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2078663c3e104326b4de616a3faf558386fb26f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d8:15:bc:79:58:e6:4d:70:19:c2:67:7f:44:
c2:86:38:62:9b:56:a6:ca:48:8f:1e:33:0c:34:5f:
0b:22:99:8b:09:82:b7:0f:e3:72:8c:7b:35:f2:45:
cd:ce:19:06:50:fe:7e:f2:85:af:6b:46:22:d4:e4:
e2:49:4b:73:d8:3f:af:4b:91:a7:04:d1:1b:8f:41:
c9:61:4e:2c:35:6b:bf:bd:25:e1:50:1b:b6:1a:19:
3a:8b:c4:0d:bd:1c:58:75:e5:b3:e6:2e:92:a8:74:
b1:3f:2b:10:29:08:c9:b5:70:ee:7b:ac:4a:37:16:
1c:af:df:4d:c6:97:cc:40:97:ca:fe:56:3f:db:65:
22:75:1c:0c:f6:ec:30:d0:6d:c8:18:e4:df:91:04:
4f:43:ea:9e:5e:a3:f0:d3:e1:3f:b4:28:61:97:d6:
a9:79:21:d8:21:db:6b:c9:1a:90:6f:e9:93:b3:4c:
12:68:af:77:a7:5a:5e:8d:df:1b:bc:5e:a0:09:62:
b4:8b:67:18:51:d3:8c:8d:7c:8e:f3:1f:58:46:1e:
94:e1:3d:26:31:a8:fa:f2:43:e9:99:f1:8a:48:cf:
51:e2:91:eb:d8:f8:56:50:a9:1c:72:e7:bb:a8:9f:
11:8f:c8:34:10:56:05:29:a3:81:5f:fa:df:78:2a:
8d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:78:66:3C:3E:10:43:26:B4:DE:61:6A:3F:AF:55:83:86:FB:26:F0
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/IHhmPD4QQya03mFqP69Vg4b7JvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.228.0/22
Signature Algorithm: sha256WithRSAEncryption
47:18:b0:ef:6b:38:92:2d:22:6e:03:65:64:a8:1e:5a:89:86:
41:4b:6f:e4:f1:be:21:10:be:90:a4:7f:92:2d:bc:76:89:90:
40:ed:3f:eb:c1:b7:88:a8:4d:77:b0:61:ec:9f:ff:70:80:c4:
21:2b:b3:11:c8:99:20:3d:6e:2c:2b:47:6f:28:3d:26:f5:83:
e6:c0:00:de:6e:01:d3:b2:7a:93:5d:84:56:95:43:7c:58:bc:
d9:ec:bf:53:03:ff:40:9f:53:0e:a6:12:f9:e6:37:51:12:25:
65:df:15:7e:43:ac:d9:3e:96:f0:61:d4:a1:4c:99:d2:8f:11:
49:91:7e:15:e5:ca:6d:f3:a1:73:8f:7f:f1:fa:87:da:45:fe:
78:a0:4c:90:8b:50:e4:d8:7f:35:16:b0:14:f0:c7:4d:ca:0e:
2e:59:6c:eb:a1:a7:e7:b7:b4:d7:ed:e5:e9:fc:28:36:2d:a3:
de:16:5f:68:67:ce:f2:e9:d4:31:9c:94:a0:8d:65:5d:16:d3:
7a:1c:d9:02:3e:19:c1:02:be:b3:00:dd:44:46:b4:e8:b7:f3:
06:94:c4:d4:3d:ff:c8:9f:06:95:dc:57:fc:26:fa:c0:a9:16:
17:6a:62:fb:d7:5f:f1:f7:36:f2:d3:10:96:d0:90:6e:0c:77:
a0:f1:93:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org