Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/J-o56htBZDA8THCEtgGnlDclxvE.roa
File: J-o56htBZDA8THCEtgGnlDclxvE.roa (raw, json)
Hash identifier: qWh1/R/b2Y9E23YPTQBrwlvwfC1tH1jjiLLn3L0+3e0=
Subject key identifier: 27:EA:39:EA:1B:41:64:30:3C:4C:70:84:B6:01:A7:94:37:25:C6:F1
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 019131D6C696A53D591B2A27D8999509D0DA
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/J-o56htBZDA8THCEtgGnlDclxvE.roa
Signing time: Thu 08 Aug 2024 11:54:04 +0000
ROA not before: Thu 08 Aug 2024 11:54:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.102.96.0/20 maxlen: 24
5.102.96.0/21 maxlen: 24
5.102.96.0/22 maxlen: 24
46.20.216.0/21 maxlen: 24
82.163.54.0/23 maxlen: 23
82.163.96.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Aug 2024 07:42:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:31:d6:c6:96:a5:3d:59:1b:2a:27:d8:99:95:09:d0:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Aug 8 11:54:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27ea39ea1b4164303c4c7084b601a7943725c6f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f8:1e:15:41:1d:79:ef:52:58:9b:05:8e:2e:
c2:7e:95:5f:fd:80:0b:99:3c:90:55:6f:ab:1c:bb:
5c:3a:63:b6:5f:f9:9a:1e:f5:8e:83:fa:09:0c:4b:
ab:1c:e0:90:c6:54:00:7d:fa:b1:37:9d:4b:f6:5b:
0e:ce:5e:32:bb:08:54:7b:fb:03:70:ff:a2:61:c9:
50:f7:8c:0e:08:a1:48:7a:d8:60:14:8a:72:80:c4:
79:51:61:96:66:aa:b4:30:ed:d0:00:88:bc:7c:e8:
46:cd:69:c4:05:3d:a1:4d:84:2e:81:45:48:1e:94:
0a:ab:2b:09:8b:cc:2f:02:74:67:ff:2a:90:a6:b4:
31:f6:86:37:9c:ed:4e:dd:e8:5f:5b:9a:ab:4c:ba:
e7:56:7c:48:9c:0f:81:96:0d:c2:78:61:f3:ad:98:
43:4b:74:ff:61:e0:08:2c:79:24:10:71:67:2b:79:
44:c6:a5:6b:79:d5:24:8e:39:c5:8d:73:1a:00:43:
a6:da:40:26:65:ba:9f:da:e8:c3:cc:7f:40:3e:bd:
92:a1:2b:0c:ee:c9:41:df:31:be:8d:b3:36:8f:51:
ce:f3:d6:b0:da:e5:3f:69:c8:84:07:e6:e9:c0:bc:
93:d3:dd:ad:7f:00:ab:b1:09:f8:20:a1:30:05:8d:
97:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:EA:39:EA:1B:41:64:30:3C:4C:70:84:B6:01:A7:94:37:25:C6:F1
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/J-o56htBZDA8THCEtgGnlDclxvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.96.0/20
46.20.216.0/21
82.163.54.0/23
82.163.96.0/21
Signature Algorithm: sha256WithRSAEncryption
98:d1:81:fb:4e:07:ab:08:90:e4:61:a1:5b:a1:2a:ef:ef:2c:
b5:7d:44:ed:09:06:78:dc:e8:3a:17:1b:8c:c6:bc:12:db:d0:
5b:6a:53:f6:81:82:c1:c6:8b:11:6b:6c:59:9b:95:12:67:d5:
f2:60:b3:ae:e1:fb:06:1f:93:28:75:3e:c5:33:37:ba:e2:b9:
6b:d1:ad:12:d6:42:8f:95:98:c3:16:78:ef:0d:20:f6:8d:5f:
51:51:ff:97:0e:3a:a9:98:57:89:57:3f:52:1f:73:05:9c:bc:
93:d3:84:8a:91:69:27:c3:72:70:08:a2:9b:eb:c2:65:cc:0a:
c2:66:ec:a0:c6:ff:8e:28:1a:18:91:60:b5:72:f0:6f:ac:65:
db:d2:50:50:6a:58:03:b7:1a:6d:1d:b6:ed:09:0f:61:de:cc:
b6:82:3c:be:89:62:c6:f4:26:e9:bd:b0:f1:4f:5f:80:99:77:
ae:31:2b:05:b2:b8:16:11:ea:f8:28:c1:41:73:f6:e7:b8:98:
92:4d:af:17:de:8f:3e:c6:8f:ee:03:ee:bd:77:41:0f:97:06:
70:82:a0:14:04:8c:f9:7d:ca:3d:64:c6:da:52:63:57:90:1e:
9a:22:a8:2b:bd:f1:c3:3e:ef:c3:5b:45:55:54:29:01:4d:86:
c7:f9:90:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 11 10:00:56 2024 by rpki-client on console-ams.rpki-client.org