Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/PIuATxUjxoWd9gfev_qF4bEz5DA.roa
File: PIuATxUjxoWd9gfev_qF4bEz5DA.roa (raw, json)
Hash identifier: uS7xJsUBT/fArvMCpQ8aNO92PRBWc6LQZW0RDrJXrFQ=
Subject key identifier: 3C:8B:80:4F:15:23:C6:85:9D:F6:07:DE:BF:FA:85:E1:B1:33:E4:30
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018585EDA32A2B14E50A913CCB3D46C61679
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/PIuATxUjxoWd9gfev_qF4bEz5DA.roa
Signing time: Fri 06 Jan 2023 07:13:41 +0000
ROA not before: Fri 06 Jan 2023 07:13:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 82.163.60.0/22 maxlen: 24
31.186.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Jan 2023 07:49:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:85:ed:a3:2a:2b:14:e5:0a:91:3c:cb:3d:46:c6:16:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 6 07:13:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c8b804f1523c6859df607debffa85e1b133e430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:cb:10:4a:d2:dd:4a:48:15:a5:62:a3:07:55:
0e:36:92:4e:64:c7:ee:62:3a:11:45:ec:4a:f1:bf:
59:bc:d7:00:f8:fb:44:a6:77:98:0a:f7:58:d7:7b:
6c:4d:06:c8:1b:e3:fb:56:73:30:1c:d3:66:f6:88:
a1:d8:b0:79:ef:f4:f2:60:54:6f:d7:5b:1b:08:93:
73:2d:31:4b:ac:b6:63:81:ae:68:00:49:74:f7:44:
af:5b:96:83:f3:ea:f4:cc:f5:cf:cd:4e:dd:35:29:
5d:40:75:f7:65:9a:a0:52:da:fe:7e:94:85:c5:2f:
d5:12:ba:83:a8:a7:76:13:2e:17:68:e4:c5:da:4a:
bd:98:48:e7:01:10:f2:f1:29:4e:45:e8:79:cc:98:
da:27:7e:f2:cf:95:24:b2:c7:a6:08:8e:c8:2f:77:
00:ba:74:1d:3f:51:36:3a:11:6f:85:ec:b2:e0:a2:
cd:51:3f:f6:55:9b:ef:aa:43:df:b3:f8:13:6d:17:
0c:a2:aa:10:18:03:92:60:89:55:4a:01:ee:d9:28:
21:41:a3:e5:d0:64:c8:90:56:65:48:45:ca:8f:b4:
33:a1:85:6d:0c:c7:09:d5:8c:23:cd:f7:46:e4:c6:
b9:6b:dc:75:7e:13:f3:77:73:7f:c2:02:95:f9:cf:
7e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:8B:80:4F:15:23:C6:85:9D:F6:07:DE:BF:FA:85:E1:B1:33:E4:30
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/PIuATxUjxoWd9gfev_qF4bEz5DA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
82.163.60.0/22
Signature Algorithm: sha256WithRSAEncryption
22:68:3e:b1:40:ac:52:c4:4c:9b:a7:0e:9d:2f:04:99:d2:95:
c2:16:90:80:46:33:0e:e1:84:7d:1b:17:9e:e8:5d:31:03:70:
fb:3a:20:d0:f2:84:d7:10:51:3a:6f:10:04:09:f5:e1:d8:cf:
e1:40:d9:78:a8:ef:0d:59:9f:86:71:3f:6b:20:90:b3:7f:a6:
4a:15:29:26:58:6a:72:91:e6:06:46:76:ec:ac:a2:d9:57:f5:
cf:70:55:f2:fd:de:da:b7:c8:81:04:da:96:d4:82:b4:2d:39:
67:32:ef:b3:53:5e:6e:11:04:60:83:e1:2f:dd:1a:f0:c4:65:
f9:49:f8:d8:d5:ef:ea:fc:d1:34:be:f1:ec:0e:c6:14:50:73:
54:d3:5a:04:dc:94:3b:cf:aa:13:53:97:a0:ac:f7:19:e3:19:
28:9e:66:23:91:91:a0:06:16:3b:0f:4f:a4:9b:a6:51:14:98:
46:02:cc:32:d0:77:3f:da:f0:f3:9c:a9:bb:e8:33:6c:87:fd:
18:6b:f1:b8:a2:0c:83:1f:15:5a:08:08:1c:40:8e:bf:67:78:
06:3b:d2:d4:61:19:ff:59:b8:18:ec:de:c5:9b:e4:b6:80:81:
7e:1a:48:7d:30:3f:d4:5b:19:a4:0c:7e:06:46:35:e3:1c:84:
de:96:5b:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org