Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ehnsB41UoWMfBviaT_g9ewOh53U.roa
File: ehnsB41UoWMfBviaT_g9ewOh53U.roa (raw, json)
Hash identifier: 0obJac87l2gKYZXMhLidbJGFQJotORL+jrAaefUdHpA=
Subject key identifier: 7A:19:EC:07:8D:54:A1:63:1F:06:F8:9A:4F:F8:3D:7B:03:A1:E7:75
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01867886FA78D3B6EF67630A5B694ECF209C
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ehnsB41UoWMfBviaT_g9ewOh53U.roa
Signing time: Wed 22 Feb 2023 09:49:17 +0000
ROA not before: Wed 22 Feb 2023 09:49:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 82.163.96.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 Mar 2023 07:52:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:78:86:fa:78:d3:b6:ef:67:63:0a:5b:69:4e:cf:20:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Feb 22 09:49:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a19ec078d54a1631f06f89a4ff83d7b03a1e775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b0:fa:8d:02:34:da:af:82:7b:2b:9f:d4:2c:
28:1f:39:08:50:d7:ab:39:c2:9b:fb:92:e1:6e:c4:
67:6d:1a:11:68:1f:87:5d:c9:31:cc:ab:43:cb:0d:
58:70:72:1f:3a:13:ae:b2:08:6f:13:9f:4e:c9:62:
2e:7f:1d:51:53:e0:2c:67:55:34:f0:db:38:f5:f1:
6c:e2:59:16:72:b6:c6:d4:af:cb:27:a3:3b:ff:f0:
51:3f:92:c2:d4:1f:9a:14:5c:a7:b7:4b:7b:6e:0e:
1b:1d:d0:11:ec:19:54:69:0e:e4:3f:ae:7c:bb:cf:
3a:4f:eb:18:c0:7e:a6:ff:48:13:1b:c3:f8:a0:c7:
32:d2:d3:41:48:ce:79:bc:0a:a0:51:7c:0d:e4:9e:
ab:29:0a:d6:8b:cb:cb:54:d7:af:a1:49:e4:5b:d8:
97:7e:2f:e0:37:f2:87:4c:61:2c:18:50:33:7e:75:
c2:ba:4e:73:4a:85:14:c4:4f:ed:d3:8e:83:b0:7e:
a5:c1:84:0f:f6:dd:04:4e:37:17:cf:ae:db:c1:65:
f5:13:5b:3d:b0:65:c8:1c:9a:94:a1:c8:ea:fe:e4:
b9:85:a6:e7:12:3a:a7:d3:5d:eb:5b:9a:75:57:e2:
bd:07:f3:15:38:f1:d0:5b:d1:c2:b3:be:5b:92:9a:
4b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:19:EC:07:8D:54:A1:63:1F:06:F8:9A:4F:F8:3D:7B:03:A1:E7:75
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ehnsB41UoWMfBviaT_g9ewOh53U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.96.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:7d:91:38:a1:7f:7b:0c:f6:2e:34:5d:f9:db:81:85:b7:09:
f3:97:28:55:96:0b:62:68:07:8f:08:4f:97:f5:ea:4d:1c:c2:
5c:c7:bd:83:97:31:10:2c:13:58:84:f4:75:6d:d8:bd:61:00:
23:86:f5:ba:97:44:cd:9a:7a:95:3b:26:7f:e6:0b:b6:e0:48:
2b:c8:e8:2d:96:c3:a2:d2:76:3d:23:c9:a2:bf:5e:c8:45:76:
d4:5b:7c:31:59:75:02:9a:8e:06:73:1c:2b:32:dc:76:b0:d5:
6d:10:0f:ce:47:90:7c:41:6f:5b:9e:a4:cb:00:a6:63:a0:81:
60:ba:a5:19:8c:0b:50:e4:83:21:cf:84:2c:a0:3d:8a:24:8c:
32:31:3f:7c:97:68:10:f3:36:b9:2c:a1:12:33:61:7d:10:c6:
d1:e7:e7:1f:fc:2c:75:98:18:a1:0d:22:ee:03:e0:3f:fc:dc:
1a:17:b0:09:41:7f:f3:12:52:13:96:de:aa:47:38:68:fb:67:
57:34:a2:c8:c1:10:cd:d8:51:b2:33:9c:22:7e:1d:0c:59:7f:
d7:45:12:51:49:19:ab:2a:b5:06:92:b7:71:00:6d:a7:ff:e5:
1c:cc:27:d0:9f:84:79:18:b6:7a:47:e9:d6:2a:0c:4f:88:ca:
cf:34:1a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org