Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/OE7U_-0ZXAJrvAI3qOBhTPd7hBo.roa
File: OE7U_-0ZXAJrvAI3qOBhTPd7hBo.roa (raw, json)
Hash identifier: LrS/Hw+gjra2KO373XlxdbNEnrhm54yy5fX03tPxcFw=
Subject key identifier: 38:4E:D4:FF:ED:19:5C:02:6B:BC:02:37:A8:E0:61:4C:F7:7B:84:1A
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0189FD3F1117E4C8BF09211F8A8FD3738BBA
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/OE7U_-0ZXAJrvAI3qOBhTPd7hBo.roa
Signing time: Wed 16 Aug 2023 07:28:36 +0000
ROA not before: Wed 16 Aug 2023 07:28:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 82.163.60.0/22 maxlen: 24
82.163.168.0/22 maxlen: 24
188.215.120.0/22 maxlen: 24
5.102.96.0/19 maxlen: 24
5.102.96.0/20 maxlen: 24
82.163.224.0/22 maxlen: 24
130.255.68.0/22 maxlen: 24
5.102.112.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Aug 2023 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fd:3f:11:17:e4:c8:bf:09:21:1f:8a:8f:d3:73:8b:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Aug 16 07:28:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=384ed4ffed195c026bbc0237a8e0614cf77b841a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2d:4a:95:69:d5:a3:06:87:6f:cc:e8:dc:2f:
13:cb:6d:8c:fe:01:a6:a3:b1:7c:a8:2f:9d:5b:72:
36:19:5f:79:03:18:52:1e:a3:5b:c2:fd:0e:ec:74:
82:c6:7d:10:2b:cc:c1:ce:91:06:04:e5:e6:2e:e2:
59:89:75:23:3c:57:80:1e:1b:54:55:87:3c:ae:da:
52:26:a8:7f:be:0f:a2:75:d0:47:5c:63:c7:b9:e7:
09:0f:3a:27:49:d0:74:82:8a:ea:cf:5c:b3:37:fd:
3a:85:e8:19:d8:e8:0e:31:b0:8b:44:d7:af:0a:a9:
b6:66:f9:5a:2b:b2:af:5f:73:d6:ad:aa:8a:0b:ad:
af:34:77:5c:52:40:84:d2:78:dd:64:ba:5e:ab:2a:
d7:81:02:d0:bb:50:71:35:f2:27:f3:0d:e7:7c:3c:
87:bb:fc:fa:2c:20:ae:ea:77:72:6c:55:64:14:06:
15:6d:6c:90:8e:7c:92:a9:a2:9e:8f:a1:89:4c:76:
13:04:eb:30:17:8d:5a:1e:de:d4:ad:cd:8b:d1:3e:
de:3e:04:7e:6b:62:16:3a:b3:a4:69:2e:a2:fa:b6:
5c:8e:98:5b:2a:29:67:46:d4:d4:9a:c0:c0:cf:f9:
6d:8b:e9:bb:65:ed:79:29:0e:28:18:3f:d8:c2:ad:
c9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:4E:D4:FF:ED:19:5C:02:6B:BC:02:37:A8:E0:61:4C:F7:7B:84:1A
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/OE7U_-0ZXAJrvAI3qOBhTPd7hBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.96.0/19
82.163.60.0/22
82.163.168.0/22
82.163.224.0/22
130.255.68.0/22
188.215.120.0/22
Signature Algorithm: sha256WithRSAEncryption
86:aa:b6:3c:23:f0:1d:b8:7a:4b:0f:24:db:74:9a:9b:8d:69:
d2:08:51:80:08:3d:48:96:7e:b8:00:4c:30:8c:96:20:9f:6f:
bd:c4:4a:c8:28:a5:53:3c:58:28:d5:e4:73:c3:f3:05:aa:95:
54:e7:bb:67:38:97:1f:d0:6e:b0:6c:6e:3f:fb:54:71:fd:12:
9e:1c:4f:a2:8e:a5:bb:e5:30:c6:b1:6d:cd:35:dc:b4:79:91:
4f:47:56:10:d0:a5:e2:62:a1:bc:05:40:9e:b8:16:23:b8:e4:
14:3e:73:5b:d7:a5:40:f9:6c:05:80:ef:46:0c:de:5c:1f:33:
d3:93:72:08:a4:52:b8:3c:db:05:51:ca:de:55:2a:c3:6c:3b:
e6:64:57:76:75:40:d2:30:6a:de:29:39:73:5e:2e:6d:f1:6d:
77:aa:85:92:85:b1:3d:b8:f3:9c:2a:c4:18:30:41:56:77:de:
5c:f2:e8:79:e9:29:e0:83:37:92:5d:dd:01:35:ec:e2:58:6b:
69:27:94:4a:b4:e2:36:cb:41:b7:25:71:01:c1:27:79:40:a2:
ff:2f:a5:d0:3d:9b:7f:93:ec:f7:29:93:e5:cb:3f:bc:07:f4:
a3:00:0e:cc:6f:1a:7d:e4:c1:8d:e2:6f:4e:08:4e:e7:f9:a7:
60:d1:6d:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org