Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/RmGyXhtzCTCqofMX90NFwUpQ0NA.roa
File: RmGyXhtzCTCqofMX90NFwUpQ0NA.roa (raw, json)
Hash identifier: q5L40XRCjRwR8SwtQaO4QSCL6We2bYFkPX1x1FBeu0I=
Subject key identifier: 46:61:B2:5E:1B:73:09:30:AA:A1:F3:17:F7:43:45:C1:4A:50:D0:D0
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018AF4A1142AB5F372C9210F94BED483F5E1
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/RmGyXhtzCTCqofMX90NFwUpQ0NA.roa
Signing time: Tue 03 Oct 2023 08:21:51 +0000
ROA not before: Tue 03 Oct 2023 08:21:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10753
IP address blocks: 82.163.56.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f4:a1:14:2a:b5:f3:72:c9:21:0f:94:be:d4:83:f5:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Oct 3 08:21:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4661b25e1b730930aaa1f317f74345c14a50d0d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:09:46:a0:7b:38:f4:12:33:7c:92:ac:46:dd:
45:ce:31:99:76:c5:b7:cc:06:a2:2a:d1:2a:45:90:
1c:42:5c:3a:cf:80:ff:96:e4:c1:77:aa:34:63:f1:
32:f9:c0:59:0f:1e:d3:f4:2a:39:af:20:5c:b9:90:
bb:06:4a:f5:63:64:6f:8a:6f:6b:d4:19:9e:ea:19:
63:8e:71:2a:c0:8f:c3:61:25:0b:ed:c4:ba:90:4e:
48:a1:b8:56:a1:26:ea:87:7a:8b:aa:8d:26:a3:d6:
4c:c6:8d:a3:1e:a9:1f:4e:c0:e3:f8:33:57:69:83:
b1:0b:73:95:3f:5d:2d:b8:59:0c:44:3f:5e:f8:7e:
32:2b:14:7a:e2:1a:2b:f5:6b:be:9e:bd:e3:fe:3b:
9d:e3:09:4d:fd:1d:1b:49:b2:27:13:18:22:8c:a3:
78:63:74:07:ae:0f:78:04:b9:f3:b1:36:f7:81:d9:
58:60:6a:d5:f3:49:3e:77:80:2e:6b:6b:03:c0:9c:
68:d7:19:58:f1:b4:5b:13:68:5e:a5:43:51:9c:d4:
ec:55:e2:17:4f:9e:18:f4:7a:04:2a:20:35:53:74:
74:f1:58:38:4b:a3:eb:e1:f3:09:b8:6d:a9:5e:a9:
ab:11:44:95:e1:d9:22:65:48:12:6a:aa:2c:ef:d0:
b8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:61:B2:5E:1B:73:09:30:AA:A1:F3:17:F7:43:45:C1:4A:50:D0:D0
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/RmGyXhtzCTCqofMX90NFwUpQ0NA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.56.0/22
Signature Algorithm: sha256WithRSAEncryption
31:c1:21:0a:57:6e:96:47:76:a3:61:d4:3c:b4:2d:15:ae:d2:
6d:0c:63:04:f4:90:cd:6c:08:dd:06:9c:e3:88:e2:c9:d2:61:
b3:ee:c3:29:7f:7d:95:41:16:82:e5:e4:ce:31:53:d9:bd:8c:
9a:3a:9f:b8:04:04:bc:c4:c6:4d:6c:31:93:a5:27:0e:40:be:
9d:f0:73:64:c7:20:c7:b8:9a:45:7d:22:1c:73:5e:3b:80:7d:
a3:af:5f:31:c1:0c:a3:21:1a:47:74:12:56:91:ec:ba:8a:74:
5d:58:ee:70:f2:41:73:03:f2:2e:4d:eb:b7:e2:20:36:7e:7f:
40:cb:20:44:80:1f:0d:d5:ce:a5:5d:94:63:ec:7c:6f:2d:47:
2a:43:70:13:55:1f:fb:2d:f0:ac:26:39:87:53:9e:3f:92:3d:
a9:49:18:f5:fa:2e:81:d2:8d:fe:2d:64:e8:5d:37:ae:2d:bc:
ab:41:2c:fd:0a:0b:3f:82:c7:7d:36:43:1b:c8:0a:7a:f1:ab:
ed:59:c5:c2:9d:2d:a4:fa:22:f3:e0:2e:cf:5f:ad:d0:7a:ce:
2f:92:16:29:1e:95:00:e7:6d:75:09:d8:a0:4a:13:44:0b:75:
2b:6f:c9:6a:d7:b2:81:85:a2:e7:d3:99:01:f7:61:94:96:40:
af:ba:7b:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org