Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/e-lHO699Sx4xz2J3XbTWVZFhfNs.roa
File: e-lHO699Sx4xz2J3XbTWVZFhfNs.roa (raw, json)
Hash identifier: aTAfjegF1REfuZRupTbEYkxRTtZbB2IogvfvdBvfCrc=
Subject key identifier: 7B:E9:47:3B:AF:7D:4B:1E:31:CF:62:77:5D:B4:D6:55:91:61:7C:DB
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01859FCE5CFF6393CC54F28D72F2E5B6E9E8
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/e-lHO699Sx4xz2J3XbTWVZFhfNs.roa
Signing time: Wed 11 Jan 2023 07:49:39 +0000
ROA not before: Wed 11 Jan 2023 07:49:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 82.163.168.0/22 maxlen: 24
82.163.60.0/22 maxlen: 24
31.186.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 15 Apr 2023 08:52:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9f:ce:5c:ff:63:93:cc:54:f2:8d:72:f2:e5:b6:e9:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 11 07:49:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7be9473baf7d4b1e31cf62775db4d65591617cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8b:5d:f3:d2:cb:f6:a9:0a:42:40:12:6b:d4:
a9:1d:ef:54:16:98:99:cb:0e:45:5f:0a:67:1d:46:
c1:0d:66:d6:ba:e8:d6:3d:6d:e4:03:f6:ca:74:9d:
c4:f8:ca:1a:53:74:fc:a9:15:c8:75:ba:e7:e1:18:
c7:d7:00:8a:36:45:72:78:9f:b6:9d:b1:da:22:9a:
66:29:55:f5:84:11:71:b9:b7:c1:1b:8f:83:52:93:
c3:b0:7e:63:cd:2c:d7:23:54:5e:f9:ac:2f:29:72:
16:7c:51:42:ed:d9:49:aa:af:c5:7c:27:74:55:03:
61:46:0b:5f:05:af:3d:ef:2e:d1:47:1d:7d:f1:a8:
bc:95:e0:63:55:3a:a2:8f:eb:d5:b5:4e:b3:3e:f6:
b9:f9:6c:2b:2d:d8:9e:cb:cc:f2:0b:f9:83:88:b9:
72:e3:bf:57:78:b2:ee:f2:f4:48:ae:7b:4f:72:fd:
ca:5a:0d:52:be:48:7a:f3:6c:d6:69:9a:6d:f3:b2:
61:81:c0:d7:27:2d:a7:ba:35:af:83:fc:11:1c:4c:
6d:55:f9:01:ad:b0:30:0e:f4:5b:2b:90:0f:01:a1:
68:6f:c9:cf:69:93:7f:5e:58:2f:0c:07:c1:72:e0:
43:d0:ae:95:e7:d5:88:59:08:bd:6b:7e:47:11:8d:
b0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:E9:47:3B:AF:7D:4B:1E:31:CF:62:77:5D:B4:D6:55:91:61:7C:DB
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/e-lHO699Sx4xz2J3XbTWVZFhfNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
82.163.60.0/22
82.163.168.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:bd:b3:7c:d8:16:16:a5:10:e6:82:a5:1f:1a:79:ec:ad:21:
ff:b6:35:65:bd:de:25:fb:d7:aa:1c:3a:9c:ec:0b:5f:e8:d2:
69:d2:6b:01:18:9d:79:96:59:57:75:83:02:28:87:ec:50:f6:
3c:e1:d3:0f:b2:1f:b5:a3:d2:52:e6:90:93:16:87:e1:3c:88:
04:94:6b:5e:56:e3:c4:0a:eb:86:ea:5e:cd:28:05:01:6f:aa:
c7:e1:ae:5f:dc:83:d0:b1:a7:13:48:67:15:63:30:04:8c:0c:
9f:eb:73:6c:ed:c3:0b:ec:32:2f:46:32:fb:d2:3b:6c:62:6a:
5b:56:9b:ed:8b:74:2d:1b:eb:0e:bb:36:5a:d8:0c:69:92:23:
f1:e8:94:ab:40:55:1d:38:67:e1:6c:b7:73:56:fa:f6:58:15:
d2:15:f8:d3:5a:14:85:fd:84:8e:da:a5:4b:08:14:79:6d:f6:
19:ee:81:cc:34:70:3d:6f:16:f6:64:83:10:5a:2a:88:f0:d3:
07:20:2f:04:c7:d6:91:5b:7d:ad:46:61:d1:80:02:16:74:74:
7b:c0:33:e4:42:51:1c:6c:1d:2f:6b:5e:da:a4:6b:4f:5c:5c:
3e:9d:3f:1f:f9:da:a0:d2:d6:ca:ee:3d:41:f4:cb:98:18:93:
4e:09:57:91
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYWfzlz/Y5PMVPKNcvLltunoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2
N2IxZTQwHhcNMjMwMTExMDc0OTM5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YmU5NDczYmFmN2Q0YjFlMzFjZjYyNzc1ZGI0ZDY1NTkxNjE3Y2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4td89LL9qkKQkASa9SpHe9UFpiZ
yw5FXwpnHUbBDWbWuujWPW3kA/bKdJ3E+MoaU3T8qRXIdbrn4RjH1wCKNkVyeJ+2
nbHaIppmKVX1hBFxubfBG4+DUpPDsH5jzSzXI1Re+awvKXIWfFFC7dlJqq/FfCd0
VQNhRgtfBa897y7RRx198ai8leBjVTqij+vVtU6zPva5+WwrLdiey8zyC/mDiLly
479XeLLu8vRIrntPcv3KWg1Svkh682zWaZpt87JhgcDXJy2nujWvg/wRHExtVfkB
rbAwDvRbK5APAaFob8nPaZN/XlgvDAfBcuBD0K6V59WIWQi9a35HEY2w5QIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFHvpRzuvfUseMc9id1201lWRYXzbMB8GA1UdIwQY
MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut
ODk3MTRhN2U4ZDU4LzEvZS1sSE82OTlTeDR4ejJKM1hiVFdWWkZoZk5zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4
LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCH7qwAwQC
UqM8AwQCUqOoMA0GCSqGSIb3DQEBCwUAA4IBAQBrvbN82BYWpRDmgqUfGnnsrSH/
tjVlvd4l+9eqHDqc7Atf6NJp0msBGJ15lllXdYMCKIfsUPY84dMPsh+1o9JS5pCT
FofhPIgElGteVuPECuuG6l7NKAUBb6rH4a5f3IPQsacTSGcVYzAEjAyf63Ns7cML
7DIvRjL70jtsYmpbVpvti3QtG+sOuzZa2AxpkiPx6JSrQFUdOGfhbLdzVvr2WBXS
FfjTWhSF/YSO2qVLCBR5bfYZ7oHMNHA9bxb2ZIMQWiqI8NMHIC8Ex9aRW32tRmHR
gAIWdHR7wDPkQlEcbB0va17apGtPXFw+nT8f+dqg0tbK7j1B9MuYGJNOCVeR
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org