Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/egkij0aqr0tGB7Drgr6N5ctImb8.roa
File: egkij0aqr0tGB7Drgr6N5ctImb8.roa (raw, json)
Hash identifier: WuCJelVJqPzK1+tJaf/5KpnlFlageHPrVYPghAA6+aI=
Subject key identifier: 7A:09:22:8F:46:AA:AF:4B:46:07:B0:EB:82:BE:8D:E5:CB:48:99:BF
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018BA8890DE09DB28818ADA561437ECA4FCF
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/egkij0aqr0tGB7Drgr6N5ctImb8.roa
Signing time: Tue 07 Nov 2023 06:47:16 +0000
ROA not before: Tue 07 Nov 2023 06:47:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 82.163.68.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Nov 2023 08:22:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a8:89:0d:e0:9d:b2:88:18:ad:a5:61:43:7e:ca:4f:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Nov 7 06:47:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a09228f46aaaf4b4607b0eb82be8de5cb4899bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:62:10:7c:60:da:72:20:e2:4f:a7:0b:7e:9c:
d9:30:e1:de:86:39:04:b7:92:6f:50:b8:a8:94:2c:
ec:9c:5b:92:56:f4:73:a7:12:30:db:af:91:89:e1:
42:65:97:a6:2a:bd:f3:d7:82:5f:75:40:05:c7:b9:
87:4d:e6:a2:82:40:f6:6e:37:b3:7d:72:31:af:74:
f1:96:1f:c5:73:e4:54:bc:cf:30:e4:05:32:2f:fd:
b7:65:80:13:4b:65:f6:a5:1c:f0:f6:0d:3e:c4:91:
1e:c7:68:53:e9:e0:2b:c7:3b:22:a9:60:7e:6b:39:
ef:d9:14:cd:08:de:72:40:94:df:2a:3a:20:6f:77:
47:c9:10:e8:a1:2e:75:03:38:3a:0e:2e:ff:2a:1f:
ae:14:93:36:15:75:c7:d3:49:e1:48:d9:5d:c7:0b:
e7:b1:8d:28:0c:05:ce:64:3c:c8:63:34:6c:eb:b0:
9c:93:6c:89:09:0c:9f:8d:8b:58:05:a0:7f:03:82:
b6:7f:f0:0e:48:30:94:58:b0:22:b9:f6:49:9f:0a:
ec:ac:a6:8e:f7:06:e1:2c:f3:58:4a:12:db:0a:9f:
f9:09:8b:11:fa:84:2c:51:ce:fd:1e:5b:c2:eb:58:
95:f6:71:b3:4a:c5:c8:3c:4f:53:9c:91:28:e4:30:
63:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:09:22:8F:46:AA:AF:4B:46:07:B0:EB:82:BE:8D:E5:CB:48:99:BF
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/egkij0aqr0tGB7Drgr6N5ctImb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.68.0/22
Signature Algorithm: sha256WithRSAEncryption
00:14:39:24:b8:e5:b5:ed:ba:e8:ba:d0:15:a3:55:4f:ca:b9:
a5:77:47:5c:6d:66:bc:b7:22:ec:7f:63:9c:85:e5:84:20:98:
bc:7e:85:54:b2:0d:b3:6a:31:65:c6:98:78:90:91:23:0b:18:
75:8b:ca:d1:fc:76:12:a6:90:58:69:c4:e6:c9:c8:e8:15:4e:
be:65:77:88:67:4b:45:e4:94:ba:de:0f:a2:7b:46:28:12:a6:
6e:03:be:2e:df:71:fe:83:a3:c0:4d:7d:fb:b5:00:91:41:5b:
7c:b5:da:37:fe:96:8e:e3:1c:94:a1:36:fd:f1:81:b9:0a:a1:
9d:40:77:39:c4:da:d5:e3:a9:3b:07:29:54:39:9b:b2:a7:7c:
40:6b:d7:8b:39:af:88:56:e3:6b:ff:f1:73:17:8f:f3:c1:be:
0a:5e:92:13:f1:65:4a:73:4f:d7:80:a3:14:de:89:18:79:e3:
d3:ad:3a:bc:48:c5:4d:ba:d3:24:8c:8c:2a:08:6e:2c:8a:03:
5b:e0:6f:71:c5:23:f7:1a:c7:98:ec:9f:0a:9b:d1:87:9d:2e:
0f:fc:55:c3:ef:fe:22:71:c2:69:d1:1b:6b:f4:27:ec:ba:33:
c3:86:a8:54:e0:45:34:48:27:40:fb:5f:10:39:95:fa:53:af:
52:ee:01:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org