Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/QhipTmTSSd2wcO1nPb_3cvuNghc.roa
File: QhipTmTSSd2wcO1nPb_3cvuNghc.roa (raw, json)
Hash identifier: T36faAkLM4Re337aUoEJW4s7yW7vnsrxfABvD43fMYM=
Subject key identifier: 42:18:A9:4E:64:D2:49:DD:B0:70:ED:67:3D:BF:F7:72:FB:8D:82:17
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018885120A443F89E6FA0EE18BEC72314D20
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/QhipTmTSSd2wcO1nPb_3cvuNghc.roa
Signing time: Sun 04 Jun 2023 06:22:11 +0000
ROA not before: Sun 04 Jun 2023 06:22:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 92.114.40.0/22 maxlen: 24
82.163.224.0/22 maxlen: 24
130.255.68.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Jun 2023 08:15:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:85:12:0a:44:3f:89:e6:fa:0e:e1:8b:ec:72:31:4d:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jun 4 06:22:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4218a94e64d249ddb070ed673dbff772fb8d8217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:12:1b:c6:d9:44:ef:56:0d:74:c7:dd:55:eb:
f6:80:52:9f:91:2f:83:43:67:30:45:99:77:71:e1:
b0:4e:13:19:93:08:7a:76:ea:cf:21:91:9e:a1:8c:
89:e3:23:4d:a9:e8:7f:c6:29:76:35:43:74:a6:c1:
35:57:f4:a7:68:c9:61:46:a2:b9:88:cf:96:61:d5:
1a:60:e9:b0:8d:b4:7d:4c:36:21:66:fe:39:57:a0:
b0:2a:3e:a8:df:55:8b:96:66:e5:db:25:26:85:2a:
9d:1b:f2:c7:a3:12:4c:2d:99:60:91:c4:a3:85:13:
cf:5b:6f:be:cd:8f:36:e3:b1:60:f4:f5:49:e0:51:
9e:90:14:eb:dd:1c:cc:c1:83:8e:2f:77:0e:6b:4b:
b6:1f:d1:f9:54:63:e1:98:26:9d:2b:8f:41:f4:f3:
3c:4e:a4:8c:bc:c2:60:c0:b6:8a:05:c3:3c:1f:67:
26:a8:6f:2f:43:47:6b:7f:3b:fc:06:30:40:ab:91:
5e:87:36:47:a0:dc:66:18:49:e7:66:19:6a:03:03:
35:ad:a5:3d:0e:e5:a6:8d:e8:2c:d4:f0:f3:f9:e8:
fd:7c:c5:7d:09:4b:9b:35:ed:a3:bd:5a:5d:11:9b:
c9:b9:56:e2:b4:d4:24:dc:85:49:88:3c:44:83:af:
3b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:18:A9:4E:64:D2:49:DD:B0:70:ED:67:3D:BF:F7:72:FB:8D:82:17
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/QhipTmTSSd2wcO1nPb_3cvuNghc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.224.0/22
92.114.40.0/22
130.255.68.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:8a:4e:9a:c8:9b:5d:b2:18:83:90:d3:7e:3a:c4:73:d5:08:
d6:e2:67:02:77:e2:1b:fb:55:c7:5e:de:19:c9:d6:29:dc:ce:
8b:4f:49:44:6a:72:cd:da:60:a0:98:22:b9:78:9c:29:8e:04:
02:9c:bf:0a:e8:37:9f:f0:f0:1d:7d:e7:b4:54:ff:bb:d0:ed:
f7:bc:6f:b3:24:a3:f0:f6:eb:99:60:97:d3:97:49:c2:3c:57:
2b:da:e3:4c:b4:75:a4:a3:b1:09:52:11:a7:23:ed:1b:fe:ae:
14:92:6e:51:fc:29:20:41:de:af:86:a9:51:b9:17:76:27:99:
27:94:d8:b8:ce:27:01:0e:35:ee:4b:26:c5:32:9b:54:5d:50:
40:82:1c:ce:8b:43:d0:b1:65:59:15:e6:ff:cc:75:9d:37:0c:
27:fe:f4:c1:80:51:09:b9:45:fc:e7:bb:6e:21:1d:be:42:eb:
3a:f2:65:07:95:3e:a7:a3:04:16:55:4a:35:76:19:f3:e9:11:
db:45:bc:9c:7d:05:ea:b9:56:2e:77:b9:05:33:7f:9c:71:8e:
b7:7f:47:bc:bf:9a:3a:80:69:4e:f3:c1:d7:d4:b6:75:4c:e6:
37:c0:73:09:96:1f:ba:5a:24:90:86:d3:33:7f:61:c6:44:f0:
84:d0:12:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org