Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/flmWI8NoAnL1oe_GJFTe0xweELU.roa
File: flmWI8NoAnL1oe_GJFTe0xweELU.roa (raw, json)
Hash identifier: vGEykQOFQLghuwo5iAoiOLF9A7HbosqXg8dF6Iz0tQM=
Subject key identifier: 7E:59:96:23:C3:68:02:72:F5:A1:EF:C6:24:54:DE:D3:1C:1E:10:B5
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018924BAFAA90EB0F1FC13F47804479AB417
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/flmWI8NoAnL1oe_GJFTe0xweELU.roa
Signing time: Wed 05 Jul 2023 06:26:20 +0000
ROA not before: Wed 05 Jul 2023 06:26:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 82.163.54.0/23 maxlen: 24
82.163.52.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Nov 2023 09:58:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:24:ba:fa:a9:0e:b0:f1:fc:13:f4:78:04:47:9a:b4:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jul 5 06:26:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e599623c3680272f5a1efc62454ded31c1e10b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:dc:c4:34:7b:37:76:8b:6b:44:df:11:88:ab:
57:a3:39:2b:d7:6d:f6:5f:cc:ec:48:e0:08:da:e7:
62:ae:16:a8:42:77:8b:e1:a2:04:6e:95:e0:fb:36:
02:bb:3a:ff:e7:43:c8:7a:8d:55:24:f5:32:aa:c4:
9f:ac:ef:6f:f9:ca:0b:cb:7a:cc:4d:f5:ec:04:dc:
04:28:8c:12:9b:ec:21:0c:e9:2c:2d:92:3e:a4:38:
81:c9:9a:40:07:25:d3:36:a7:5e:3e:5e:1f:6c:28:
32:2b:a4:28:58:01:4e:d6:c3:f5:8e:88:4e:4b:4b:
56:30:8f:2b:59:d7:c5:73:e9:b7:80:e8:f0:86:dc:
3f:e3:ab:36:03:a7:d7:33:7a:83:9f:4e:b7:a7:32:
10:9b:fa:96:29:cb:35:53:24:a3:70:13:00:bd:e7:
92:13:c3:9f:86:1b:2e:a7:a0:18:7b:50:f6:ce:3a:
a3:1c:0a:18:7d:15:12:72:b8:90:9f:3d:61:f8:42:
d7:58:4d:4e:8e:22:e8:91:18:20:ce:f4:fa:d6:b3:
db:1a:29:cb:f8:61:50:c2:c7:fd:a6:4f:71:be:bf:
53:8b:73:31:2f:2b:68:8f:cb:f2:d5:af:41:6e:ba:
90:1e:c8:57:2f:d9:5c:f5:13:a1:49:3e:a2:5f:63:
56:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:59:96:23:C3:68:02:72:F5:A1:EF:C6:24:54:DE:D3:1C:1E:10:B5
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/flmWI8NoAnL1oe_GJFTe0xweELU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.52.0/22
Signature Algorithm: sha256WithRSAEncryption
22:dd:bf:b9:bf:27:e5:db:1c:5d:8c:0a:1b:fe:6b:3e:74:82:
ea:fe:50:57:9a:c9:8a:2a:0f:d1:8d:b3:35:9c:34:d1:00:a8:
fc:04:0c:64:42:91:d1:3e:fb:84:1c:09:81:ef:fc:63:cd:25:
3c:ce:9e:c7:3b:d0:a1:8c:e3:d9:4b:85:79:bd:7e:2c:f4:8f:
10:43:e4:1b:20:98:8f:a9:91:e1:e0:b3:48:56:c7:bc:7b:ea:
86:3d:f3:43:59:bf:7d:e7:55:91:c5:97:c3:d0:d4:6b:18:fa:
16:fb:aa:49:13:00:27:90:d0:ee:ea:64:7c:45:ae:cc:7e:59:
71:d7:fa:5b:96:9a:1e:21:de:ba:aa:ce:20:61:e7:b6:19:4b:
65:0b:21:28:d9:b8:1a:7e:1a:62:55:bf:6c:74:14:68:fd:4c:
e7:24:f1:92:f8:3c:9c:e7:c0:44:44:76:e4:55:e1:8f:1e:c6:
48:70:25:fe:57:30:38:85:99:56:b0:f1:aa:2b:b5:84:7a:1b:
55:54:e8:c4:1d:94:47:b4:80:c7:76:32:9a:c9:f6:8e:6d:d5:
8d:0b:4f:0b:57:3b:dc:53:89:31:9d:46:2e:0c:bf:0d:c7:e1:
84:cd:75:0d:5a:25:1c:17:43:a8:a3:7c:d3:ee:dd:80:d2:a7:
84:c3:d4:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkkuvqpDrDx/BP0eARHmrQXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2
N2IxZTQwHhcNMjMwNzA1MDYyNjIwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTU5OTYyM2MzNjgwMjcyZjVhMWVmYzYyNDU0ZGVkMzFjMWUxMGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NzENHs3dotrRN8RiKtXozkr1232
X8zsSOAI2udirhaoQneL4aIEbpXg+zYCuzr/50PIeo1VJPUyqsSfrO9v+coLy3rM
TfXsBNwEKIwSm+whDOksLZI+pDiByZpAByXTNqdePl4fbCgyK6QoWAFO1sP1johO
S0tWMI8rWdfFc+m3gOjwhtw/46s2A6fXM3qDn063pzIQm/qWKcs1UySjcBMAveeS
E8Ofhhsup6AYe1D2zjqjHAoYfRUScriQnz1h+ELXWE1OjiLokRggzvT61rPbGinL
+GFQwsf9pk9xvr9Ti3MxLytoj8vy1a9BbrqQHshXL9lc9ROhST6iX2NWWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH5ZliPDaAJy9aHvxiRU3tMcHhC1MB8GA1UdIwQY
MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut
ODk3MTRhN2U4ZDU4LzEvZmxtV0k4Tm9Bbkwxb2VfR0pGVGUweHdlRUxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4
LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCUqM0MA0G
CSqGSIb3DQEBCwUAA4IBAQAi3b+5vyfl2xxdjAob/ms+dILq/lBXmsmKKg/RjbM1
nDTRAKj8BAxkQpHRPvuEHAmB7/xjzSU8zp7HO9ChjOPZS4V5vX4s9I8QQ+QbIJiP
qZHh4LNIVse8e+qGPfNDWb9951WRxZfD0NRrGPoW+6pJEwAnkNDu6mR8Ra7Mfllx
1/pblpoeId66qs4gYee2GUtlCyEo2bgafhpiVb9sdBRo/UznJPGS+Dyc58BERHbk
VeGPHsZIcCX+VzA4hZlWsPGqK7WEehtVVOjEHZRHtIDHdjKayfaObdWNC08LVzvc
U4kxnUYuDL8Nx+GEzXUNWiUcF0Ooo3zT7t2A0qeEw9Rz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org