Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/cYHyjdRngO4hVVOLdv1QKXQ6m7Y.roa
File: cYHyjdRngO4hVVOLdv1QKXQ6m7Y.roa (raw, json)
Hash identifier: Q8/oYtzu1hcJgdTGuRluunT3drZkz2mvnTnEk31kaww=
Subject key identifier: 71:81:F2:8D:D4:67:80:EE:21:55:53:8B:76:FD:50:29:74:3A:9B:B6
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0187841DDBA96DB8EFFEC8B8D05F135063A7
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/cYHyjdRngO4hVVOLdv1QKXQ6m7Y.roa
Signing time: Sat 15 Apr 2023 08:52:41 +0000
ROA not before: Sat 15 Apr 2023 08:52:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 82.163.168.0/22 maxlen: 24
82.163.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Jun 2023 08:15:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:84:1d:db:a9:6d:b8:ef:fe:c8:b8:d0:5f:13:50:63:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Apr 15 08:52:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7181f28dd46780ee2155538b76fd5029743a9bb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:98:04:1e:17:c9:63:c1:d3:ed:fe:fb:02:47:
69:0e:20:df:f7:32:ac:66:b1:d7:8c:ac:cf:a1:6f:
24:b7:72:a8:2e:56:10:d8:12:51:45:b8:ef:66:57:
7e:49:08:2f:80:2a:8e:69:f9:f6:d7:ea:df:fa:96:
ae:35:f5:15:10:8c:6c:f6:c2:4f:9f:6e:7f:06:9d:
67:24:bc:04:64:b4:17:b1:a9:07:2f:1a:d7:6c:59:
8f:fc:c4:88:ea:47:c8:6a:e8:ac:87:a7:49:71:b2:
5b:40:69:0c:95:2c:ec:5e:ac:2b:cc:9d:37:1e:a1:
39:9e:4c:56:9d:e1:7c:44:84:8d:da:f7:f0:3b:e0:
1a:90:6c:de:a9:80:bd:b3:28:da:33:b3:81:f3:61:
84:8e:c1:cb:3f:c4:4c:ff:49:a7:6d:6b:f2:04:ac:
28:91:b4:96:c0:41:4a:2b:e2:4d:74:f0:03:bc:65:
a2:3e:f4:ab:f2:9e:96:73:74:91:59:3d:82:17:f3:
ff:0c:c1:ec:00:8f:8a:66:f8:59:38:a9:ca:47:d1:
0c:b9:3f:85:e8:4d:2c:20:7d:8c:b8:d8:f1:8b:69:
8c:22:7a:6d:f4:2b:4b:a3:8f:3e:ac:94:fd:2a:b3:
d2:1b:c6:39:56:6e:cf:02:e6:a8:dc:b4:e5:44:da:
d7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:81:F2:8D:D4:67:80:EE:21:55:53:8B:76:FD:50:29:74:3A:9B:B6
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/cYHyjdRngO4hVVOLdv1QKXQ6m7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.60.0/22
82.163.168.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:71:32:50:b5:4f:2d:2b:93:96:21:55:60:af:c8:70:1a:41:
7d:2d:3c:d5:00:52:c2:08:58:b0:a1:df:53:ac:2f:91:e8:f4:
c8:77:f3:81:82:17:7e:72:02:f8:ac:cd:cf:be:26:9b:ea:01:
ea:fa:d4:41:ac:35:80:f9:f3:c8:fc:94:a2:7b:11:84:7c:b5:
85:03:4d:a8:c8:3a:65:d5:6b:67:78:15:43:69:ff:b6:19:de:
04:d0:23:96:3c:70:76:53:e6:01:23:0f:1a:af:bd:20:27:22:
93:08:ca:22:91:48:dd:5c:c2:07:4c:df:e5:b3:07:fa:58:bd:
98:cf:aa:ea:bc:08:73:31:03:e6:f6:3d:13:47:a0:3d:91:e5:
96:c1:f2:68:0c:1a:53:5c:9c:44:6b:ea:fb:95:ef:08:11:02:
f4:75:f0:3e:aa:f5:1f:1a:7b:86:70:af:f6:1e:bc:6e:da:8a:
ae:05:99:02:a5:41:f7:d1:da:49:3a:79:f8:fa:88:d2:44:93:
bd:f2:f5:6e:e1:4f:b3:a9:db:f4:4b:08:a8:58:6c:f3:9f:f8:
60:b7:73:92:40:03:ca:d0:c4:7c:9f:ec:6f:6a:29:77:10:a4:
8c:04:4d:47:cd:bb:80:6d:f4:c3:4b:57:89:46:0f:59:8d:d5:
2e:38:aa:6c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYeEHdupbbjv/si40F8TUGOnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2
N2IxZTQwHhcNMjMwNDE1MDg1MjQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTgxZjI4ZGQ0Njc4MGVlMjE1NTUzOGI3NmZkNTAyOTc0M2E5YmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5gEHhfJY8HT7f77AkdpDiDf9zKs
ZrHXjKzPoW8kt3KoLlYQ2BJRRbjvZld+SQgvgCqOafn21+rf+pauNfUVEIxs9sJP
n25/Bp1nJLwEZLQXsakHLxrXbFmP/MSI6kfIauish6dJcbJbQGkMlSzsXqwrzJ03
HqE5nkxWneF8RISN2vfwO+AakGzeqYC9syjaM7OB82GEjsHLP8RM/0mnbWvyBKwo
kbSWwEFKK+JNdPADvGWiPvSr8p6Wc3SRWT2CF/P/DMHsAI+KZvhZOKnKR9EMuT+F
6E0sIH2MuNjxi2mMInpt9CtLo48+rJT9KrPSG8Y5Vm7PAuao3LTlRNrXsQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHGB8o3UZ4DuIVVTi3b9UCl0Opu2MB8GA1UdIwQY
MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut
ODk3MTRhN2U4ZDU4LzEvY1lIeWpkUm5nTzRoVlZPTGR2MVFLWFE2bTdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4
LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCUqM8AwQC
UqOoMA0GCSqGSIb3DQEBCwUAA4IBAQBqcTJQtU8tK5OWIVVgr8hwGkF9LTzVAFLC
CFiwod9TrC+R6PTId/OBghd+cgL4rM3Pviab6gHq+tRBrDWA+fPI/JSiexGEfLWF
A02oyDpl1WtneBVDaf+2Gd4E0COWPHB2U+YBIw8ar70gJyKTCMoikUjdXMIHTN/l
swf6WL2Yz6rqvAhzMQPm9j0TR6A9keWWwfJoDBpTXJxEa+r7le8IEQL0dfA+qvUf
GnuGcK/2Hrxu2oquBZkCpUH30dpJOnn4+ojSRJO98vVu4U+zqdv0SwioWGzzn/hg
t3OSQAPK0MR8n+xvail3EKSMBE1HzbuAbfTDS1eJRg9ZjdUuOKps
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org