Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/TQGivBcxq9Ne1yOIV7Fq_nhWQLw.roa
File: TQGivBcxq9Ne1yOIV7Fq_nhWQLw.roa (raw, json)
Hash identifier: 4ciNnS/+Vh6B8LHRMGNebS7EsY4qKAc6zClYsuBBbdM=
Subject key identifier: 4D:01:A2:BC:17:31:AB:D3:5E:D7:23:88:57:B1:6A:FE:78:56:40:BC
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018C5A4787AD61472C82FC337C7522591436
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/TQGivBcxq9Ne1yOIV7Fq_nhWQLw.roa
Signing time: Mon 11 Dec 2023 19:08:06 +0000
ROA not before: Mon 11 Dec 2023 19:08:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1273
IP address blocks: 82.163.104.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5a:47:87:ad:61:47:2c:82:fc:33:7c:75:22:59:14:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Dec 11 19:08:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d01a2bc1731abd35ed7238857b16afe785640bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:02:17:9e:7c:d2:84:ec:d9:49:0f:4b:08:a2:
98:53:7b:b7:35:b2:7f:04:87:3e:36:88:d3:5a:71:
3e:ef:84:be:b3:51:ac:1a:69:86:fb:0b:ef:59:75:
ac:28:a2:3f:d8:83:04:59:d2:61:7d:11:a9:13:7a:
53:92:34:4c:3f:29:6f:dd:64:69:f5:6a:cb:a6:ae:
73:69:71:bd:84:3b:b5:be:8a:6a:c0:1e:a1:d1:59:
4e:51:fc:10:82:5d:49:8a:cc:22:dd:d4:d7:23:b9:
52:d8:cb:03:3c:f4:5d:8a:f4:74:d5:29:c3:d4:a3:
c6:bb:02:78:16:90:09:81:61:4b:be:12:1c:e6:7e:
0c:e4:da:f8:0c:9d:d2:3e:72:80:64:44:3f:f1:b2:
69:31:7a:b7:01:85:f6:34:ee:a1:21:99:9f:ec:d2:
c2:4f:5e:6f:ed:64:14:ad:6c:a7:73:c2:5b:d7:6d:
df:01:7e:1b:d5:cc:89:ea:a3:68:85:bc:9a:be:4c:
4b:15:70:94:94:d1:71:4a:b6:5c:99:17:b9:ce:2d:
30:bb:33:8a:cb:58:2b:40:a4:00:d7:08:64:91:c9:
e9:46:de:fd:bf:33:c5:36:74:bd:45:07:f3:dc:4d:
ea:2f:f3:7d:18:f3:c5:54:66:62:ec:a8:fb:21:af:
e3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:01:A2:BC:17:31:AB:D3:5E:D7:23:88:57:B1:6A:FE:78:56:40:BC
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/TQGivBcxq9Ne1yOIV7Fq_nhWQLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.104.0/21
Signature Algorithm: sha256WithRSAEncryption
56:a7:70:d8:71:a4:78:02:b6:6b:4d:3d:6d:d0:1b:ed:f4:95:
f2:ec:61:c0:12:d9:e5:e4:48:a5:14:07:f6:20:98:9d:fa:e2:
06:40:34:d7:1f:3f:66:94:1e:0f:b0:80:8d:b2:07:b7:86:dd:
f6:4f:07:7d:71:73:67:14:e6:11:d4:ba:64:da:51:e4:51:c4:
f9:63:be:85:98:56:93:72:85:3f:84:34:1d:33:1d:7f:04:f5:
9d:a9:3c:be:a6:b7:c2:11:09:2b:8a:07:0b:d0:27:74:22:ee:
7d:52:64:7a:51:8a:cd:a5:89:05:eb:ac:4e:28:33:cf:d2:c6:
59:18:82:33:c0:8b:4f:7a:c3:1c:a1:8e:72:e3:e6:bd:f0:07:
63:ef:0f:ac:9e:55:db:4a:de:48:48:88:ed:70:79:ea:56:8f:
5f:02:a1:b0:d3:28:26:5c:9e:1c:e8:d6:af:6c:f8:67:50:2e:
bf:47:b9:b7:24:57:a1:53:00:91:1b:be:c1:57:42:3f:c7:df:
bc:67:e0:d6:28:7b:b0:00:75:d8:e6:1b:fd:d8:b0:60:61:2f:
7f:be:0e:02:89:b8:43:92:fe:b7:d7:8b:30:9e:a2:8f:7f:b8:
e3:fc:9e:53:56:8a:90:3a:0f:89:cc:38:f7:7b:6d:52:a1:67:
3b:03:13:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org