Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Yr_v5b8fJN0MJoTkLk5NMrS7jP0.roa
File: Yr_v5b8fJN0MJoTkLk5NMrS7jP0.roa (raw, json)
Hash identifier: awHDvHRSx13jTUqOHvd4+5zI0BcEG5cs3BBuSRUyzPQ=
Subject key identifier: 62:BF:EF:E5:BF:1F:24:DD:0C:26:84:E4:2E:4E:4D:32:B4:BB:8C:FD
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0188CE0798B7DDCA05BFDD7C680F22BEC133
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Yr_v5b8fJN0MJoTkLk5NMrS7jP0.roa
Signing time: Sun 18 Jun 2023 10:23:04 +0000
ROA not before: Sun 18 Jun 2023 10:23:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 82.163.168.0/22 maxlen: 24
92.114.40.0/22 maxlen: 24
82.163.224.0/22 maxlen: 24
130.255.68.0/22 maxlen: 24
46.20.210.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Jun 2023 07:29:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ce:07:98:b7:dd:ca:05:bf:dd:7c:68:0f:22:be:c1:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jun 18 10:23:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62bfefe5bf1f24dd0c2684e42e4e4d32b4bb8cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:63:91:83:17:c1:b0:6c:19:f8:c7:63:70:33:
ac:e3:0a:dc:05:68:b3:e4:5e:93:ef:0f:d4:19:39:
19:92:92:a5:8a:36:1f:c0:c7:dc:99:4b:3b:3c:eb:
21:fb:c7:5a:27:7e:ff:0c:7e:3f:f4:08:80:e7:21:
af:ef:77:17:2a:b7:a7:ba:99:b7:91:ec:b6:4f:98:
60:67:83:a1:e6:ba:3a:44:bb:b7:e9:46:08:28:71:
6f:32:48:08:27:b2:61:31:a9:28:06:67:5e:f5:08:
a0:49:2d:6a:4e:15:f9:5b:7d:fd:2b:04:4a:69:6f:
2c:1d:e2:fe:8a:95:31:36:f9:b7:3d:31:4d:58:c3:
21:3e:6e:2b:31:d7:3b:d2:e8:5c:35:47:95:e2:a7:
2e:3d:a6:e2:fd:36:c5:b4:4f:4e:18:f4:8f:21:fb:
d0:4c:27:b1:39:73:b2:d8:a4:86:08:ff:a8:8f:0b:
26:8b:3a:5b:c8:f6:77:6c:2c:e2:75:11:c6:61:e1:
53:05:9f:0b:a6:d3:91:45:61:38:87:52:a3:f6:3a:
c5:fc:b2:4c:1c:48:c4:a4:af:6a:c5:3d:0a:a4:c8:
eb:20:dc:6e:96:e9:47:8f:7e:59:48:40:d8:8f:d7:
28:3f:e0:e8:81:1c:3b:4b:fc:ed:62:5b:3e:d0:a1:
db:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:BF:EF:E5:BF:1F:24:DD:0C:26:84:E4:2E:4E:4D:32:B4:BB:8C:FD
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Yr_v5b8fJN0MJoTkLk5NMrS7jP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.210.0/23
82.163.168.0/22
82.163.224.0/22
92.114.40.0/22
130.255.68.0/22
Signature Algorithm: sha256WithRSAEncryption
96:1d:25:43:c8:89:d2:3d:91:54:cc:16:0e:17:aa:d1:df:cc:
c9:68:cd:eb:fc:38:ce:c0:d9:58:1a:ba:71:fb:96:64:28:36:
09:98:84:f2:33:82:32:f1:9b:88:38:31:7c:8f:89:75:4f:0d:
37:7d:61:42:c2:a6:c3:d4:66:fe:3f:57:75:7f:ec:ff:cf:d6:
07:51:57:1c:68:84:b8:7c:23:08:e5:b1:82:40:7c:98:3e:cc:
27:8e:02:59:1f:98:6a:b8:90:4c:5b:02:f1:7e:47:22:bf:ab:
e7:46:15:f5:fb:a8:f9:33:b4:2d:cb:09:fd:c4:87:94:ee:05:
f7:96:7a:aa:4c:a0:29:02:e4:2a:b4:cb:61:a9:8c:b5:c0:22:
4e:59:9e:88:25:2c:79:e1:d1:25:59:5e:e5:6b:65:b6:a2:ce:
67:7b:54:72:0e:f3:95:4a:bf:0e:5c:a8:46:d4:98:35:21:73:
8d:9f:da:52:d7:14:5a:87:a0:1a:ef:27:3f:47:24:3c:be:ab:
1d:d7:24:5f:cb:13:ff:64:cd:c7:3c:8b:0b:51:b1:dc:1d:9f:
b5:45:c1:7c:8e:97:3e:c7:a4:50:e1:29:88:0d:2c:0b:f6:7c:
01:6a:6a:68:f4:b0:e4:bc:16:f7:d6:bf:db:d9:1c:1f:d6:38:
36:cf:b7:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org