Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/aOvGjEs7bJQsGx_OG6Z1tcTOsOE.roa
File: aOvGjEs7bJQsGx_OG6Z1tcTOsOE.roa (raw, json)
Hash identifier: 1Pk1n0pRX4vjS3nBadGYmQQhtKAnMu4jzchGPDveMTo=
Subject key identifier: 68:EB:C6:8C:4B:3B:6C:94:2C:1B:1F:CE:1B:A6:75:B5:C4:CE:B0:E1
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0188A45FA7428FEBBBC7CE96B93A0C04BA51
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/aOvGjEs7bJQsGx_OG6Z1tcTOsOE.roa
Signing time: Sat 10 Jun 2023 08:15:12 +0000
ROA not before: Sat 10 Jun 2023 08:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 82.163.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 20:44:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a4:5f:a7:42:8f:eb:bb:c7:ce:96:b9:3a:0c:04:ba:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jun 10 08:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68ebc68c4b3b6c942c1b1fce1ba675b5c4ceb0e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ec:3a:8b:00:7a:87:fc:bf:10:20:b7:81:79:
fc:ed:4e:b8:2e:48:18:83:ac:35:d1:d9:de:6d:8c:
73:a5:de:d4:53:1a:fd:87:57:39:0a:2f:e8:1f:ed:
70:03:9a:9c:45:6f:7f:40:7a:bd:bc:b4:dc:22:79:
27:d4:6d:e3:e9:09:fb:4c:8b:29:15:ce:ad:20:4f:
67:32:8b:0b:fc:48:d2:05:dd:e1:d9:f8:7c:ff:97:
30:38:5b:bd:3d:d0:9a:cc:bc:1d:d5:1c:72:3f:2f:
60:30:e0:e5:f7:cf:a2:59:21:84:17:fb:4f:24:87:
86:ce:fa:e1:88:82:12:d8:05:72:91:d2:0a:d6:d9:
f6:91:cb:50:a5:cc:b7:61:e4:aa:9f:e2:bc:ee:58:
27:45:fb:55:94:44:d0:cb:1d:cb:2b:79:1a:37:2a:
e4:4b:96:0a:5a:68:76:10:c9:b2:68:ec:22:1b:ad:
c3:c4:0f:6f:ed:62:e3:ea:ba:bb:4f:5d:3e:8f:90:
5e:57:0e:a5:1c:7a:0d:cf:a6:54:2b:26:d3:f3:62:
60:00:2f:67:1f:8c:44:c8:ef:b1:69:ec:e8:25:74:
b5:8d:fd:96:91:bd:6c:e0:dd:2c:5f:75:56:ac:3e:
a0:0d:5f:40:6c:df:23:4f:78:be:9c:53:08:45:70:
52:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:EB:C6:8C:4B:3B:6C:94:2C:1B:1F:CE:1B:A6:75:B5:C4:CE:B0:E1
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/aOvGjEs7bJQsGx_OG6Z1tcTOsOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.60.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:f8:14:69:ed:2a:de:9f:9e:7e:66:18:5e:15:db:f5:15:cd:
b5:4f:53:1a:1e:18:2e:bd:c8:87:03:55:58:62:c6:da:18:ed:
e2:d3:da:6a:c5:4d:1c:ae:73:52:36:c2:ce:96:d0:d0:e6:cd:
9c:db:85:ae:63:54:93:e5:4a:c7:bc:00:7c:ed:a5:cf:50:0a:
6e:23:ba:db:59:32:1f:6b:52:de:d7:48:71:f9:f3:5c:5c:14:
59:10:92:44:b1:94:73:f5:3e:2f:c7:c6:6f:e5:66:6a:51:95:
e5:2c:4f:29:d3:d8:6c:53:ae:55:9f:18:22:50:11:78:28:1f:
21:cf:e9:83:e0:23:ef:31:6c:1e:fa:aa:3f:fe:2a:98:20:1a:
4b:8e:27:d9:d6:38:2f:1a:03:3f:62:d3:b5:18:56:44:08:a2:
17:2e:82:0d:31:1c:06:88:d8:ad:76:20:9f:0b:36:39:9e:f7:
98:fe:15:7a:90:08:24:d6:3b:09:96:76:3d:73:f0:b9:1a:46:
39:03:02:79:97:66:12:22:90:f9:fd:20:5a:3a:69:c5:89:0f:
4b:b8:be:48:b8:4b:6f:6a:b3:3e:b1:67:43:76:1a:b5:fe:19:
8e:1e:d2:b6:d3:c7:c4:a1:3f:2d:6e:7c:50:88:0a:db:62:39:
70:71:10:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org