Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/_icWVTddbRuR5EUeJ5a_Decl2Xs.roa
File: _icWVTddbRuR5EUeJ5a_Decl2Xs.roa (raw, json)
Hash identifier: ZMa52pG9gqQyNOG91MNfC7/LmW7v6D2VlxldeTD7/tY=
Subject key identifier: FE:27:16:55:37:5D:6D:1B:91:E4:45:1E:27:96:BF:0D:E7:25:D9:7B
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01862C31DA33EE876342E2D9833485CC825A
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/_icWVTddbRuR5EUeJ5a_Decl2Xs.roa
Signing time: Tue 07 Feb 2023 14:05:09 +0000
ROA not before: Tue 07 Feb 2023 14:05:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 82.163.104.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Feb 2023 06:46:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2c:31:da:33:ee:87:63:42:e2:d9:83:34:85:cc:82:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Feb 7 14:05:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe271655375d6d1b91e4451e2796bf0de725d97b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:54:d8:40:b5:d2:17:a1:27:76:af:4b:10:4a:
bb:c1:1b:95:3c:9c:96:c7:9b:ba:7b:72:bc:e3:18:
1c:e7:06:d3:03:2c:f2:cc:7e:ca:1d:b7:c1:eb:1d:
25:8c:4e:33:df:f9:d7:34:b3:2a:72:cb:82:56:a5:
74:b3:04:6f:f6:44:8a:62:d0:4f:2f:2e:a4:0d:62:
24:80:0c:02:ef:b7:b1:68:85:9d:2c:e8:c6:72:54:
80:a4:55:62:50:71:49:c9:d2:ee:fa:08:a0:f4:af:
81:1e:97:e6:fc:1b:68:0d:aa:2d:cc:f3:34:55:bb:
4b:b5:f7:d0:b8:73:42:30:73:5a:77:55:ed:e2:71:
6e:6e:d8:f9:f1:d1:25:21:56:c6:34:56:d1:74:a0:
26:57:a0:76:3d:0b:86:c8:f8:92:8d:cc:ad:c5:50:
ab:34:ce:eb:63:94:5a:0f:e6:d1:8c:23:e5:24:01:
a8:ee:b1:6e:2f:ef:2a:14:14:7b:b4:0f:93:e2:1d:
72:04:37:73:9c:d2:00:8e:23:8c:5e:d2:0e:df:d0:
84:1a:32:b4:1c:42:f9:fe:2d:35:26:d8:1c:78:c0:
e9:c0:16:4e:b2:1b:df:bd:5f:f8:c2:aa:72:c9:84:
7d:fe:11:bc:10:fd:e4:76:60:f2:84:30:85:23:8b:
aa:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:27:16:55:37:5D:6D:1B:91:E4:45:1E:27:96:BF:0D:E7:25:D9:7B
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/_icWVTddbRuR5EUeJ5a_Decl2Xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.104.0/21
Signature Algorithm: sha256WithRSAEncryption
28:cd:6e:d5:f9:e5:17:99:19:28:37:71:0b:b3:03:12:fa:99:
14:b9:64:46:26:f5:f2:16:8e:ef:de:b6:32:70:75:16:d7:48:
6a:c5:27:90:d0:60:a2:44:32:87:b0:ec:0e:77:1c:d3:3c:fe:
6d:dc:65:1c:4d:d2:35:d4:b7:5f:f9:03:dc:1e:7f:fb:d7:bf:
d0:02:9b:e5:73:ff:3a:48:90:81:86:37:da:73:6b:23:40:a9:
67:00:de:14:cb:ac:fd:e2:d9:8c:c5:dd:b0:9d:fa:2d:55:4c:
f0:23:9a:c4:11:de:0b:16:96:89:df:62:3a:c7:ca:71:b4:93:
7a:4e:80:b3:1d:58:06:49:32:ec:e2:1b:2e:10:3b:25:0b:34:
fe:d4:d7:48:e6:24:af:49:75:43:61:13:9d:46:cb:01:fe:2d:
83:18:0f:a9:62:41:2d:7f:45:a2:36:55:05:4d:26:2e:7e:71:
b4:ba:8a:56:b5:11:6f:71:9f:0c:ad:39:fc:af:e5:79:2e:26:
fb:19:34:d5:95:b0:8b:60:f8:76:51:6b:f2:74:1c:13:0e:f0:
a4:a6:af:ec:45:ec:96:a6:91:d7:f3:b7:a0:84:bb:df:93:e7:
6f:fb:1e:a1:49:b3:0a:1c:a8:c6:94:0f:82:36:05:3a:75:a5:
f0:00:d1:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org