Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/h6vD3y-elzrclkbxinUwyITMgfc.roa
File: h6vD3y-elzrclkbxinUwyITMgfc.roa (raw, json)
Hash identifier: hO0rdGg9Xgz23BSs+0a8u9PW+c5/3os/s9NGMostimA=
Subject key identifier: 87:AB:C3:DF:2F:9E:97:3A:DC:96:46:F1:8A:75:30:C8:84:CC:81:F7
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0190C013638BB40F86C6FAFE5D41E6398B4C
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/h6vD3y-elzrclkbxinUwyITMgfc.roa
Signing time: Wed 17 Jul 2024 09:43:34 +0000
ROA not before: Wed 17 Jul 2024 09:43:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5650
IP address blocks: 86.104.164.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Aug 2024 07:13:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c0:13:63:8b:b4:0f:86:c6:fa:fe:5d:41:e6:39:8b:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jul 17 09:43:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87abc3df2f9e973adc9646f18a7530c884cc81f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b3:92:01:a3:87:8b:43:e0:a1:cb:9d:84:d1:
1b:0c:57:f8:52:87:ac:76:70:8d:a3:c5:af:97:c7:
37:ca:a8:1c:4c:13:50:f6:e9:88:7c:22:6f:c8:e7:
8f:93:4f:e0:85:a7:1c:70:67:89:86:6b:24:64:07:
61:c3:87:6e:ac:bf:30:47:7c:be:31:70:cb:04:7a:
dc:46:a6:32:ad:d9:8b:2e:6c:9a:bd:99:53:23:c0:
76:f4:8d:28:87:96:99:29:64:f7:b6:4d:a6:c2:f5:
f9:10:25:0f:c7:5c:03:8c:e4:a9:5f:e9:d5:af:3f:
6d:3e:eb:f7:9d:65:16:34:58:ef:13:4c:a8:e9:37:
55:05:6a:d7:b3:b2:fc:ac:3f:59:87:c2:0c:dd:97:
22:2d:d8:e3:b4:be:66:c7:32:fb:e4:50:9f:a3:de:
37:5b:0f:30:7f:92:92:34:7d:b4:6d:8e:27:68:76:
75:95:2e:2c:73:d8:af:65:6a:97:8b:f7:94:cf:2d:
e4:e3:54:bd:21:17:fd:7f:c5:54:ff:40:54:30:9b:
05:ec:8f:d3:25:83:a9:77:70:c6:62:f3:a9:29:09:
a2:d8:3e:52:2c:44:a1:c7:60:b6:08:bf:2e:39:8c:
00:f2:14:25:46:14:11:39:0f:57:38:8c:1d:74:db:
95:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:AB:C3:DF:2F:9E:97:3A:DC:96:46:F1:8A:75:30:C8:84:CC:81:F7
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/h6vD3y-elzrclkbxinUwyITMgfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.164.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:6f:44:39:a5:b5:8e:16:b1:c0:86:51:d7:1b:ea:67:22:b7:
30:b8:b6:bf:a8:be:8c:4c:0e:67:80:68:f3:86:cd:9e:84:80:
e9:eb:25:44:e9:53:8c:b9:59:05:8a:dd:a1:3e:e8:0b:e6:fb:
20:b6:39:15:99:58:fb:2b:cf:d6:67:fb:22:55:20:e3:60:78:
04:0c:aa:a0:c9:19:10:5d:15:d1:c4:45:12:60:b0:63:63:d1:
b3:98:d3:bf:2b:3a:55:3e:a7:0e:e0:87:dc:5d:e6:8b:5c:87:
9a:3b:03:86:6e:60:1b:25:2f:8a:fe:0c:20:5e:d8:33:9e:a9:
01:fa:19:e6:a3:5e:c5:ec:07:2b:d7:3b:e3:60:2d:57:78:1a:
58:2c:b7:e0:51:44:23:7f:43:44:94:9c:ab:fe:83:b9:10:82:
82:02:72:1c:ea:7b:20:b0:c8:43:e5:71:20:52:0c:e2:d3:72:
2b:75:eb:fe:6a:88:af:19:2e:46:cc:ed:a1:61:3b:f9:3c:d5:
6e:e6:07:38:7d:bd:c6:58:a7:bb:46:d4:6e:36:2f:19:00:54:
17:8d:28:16:25:60:d5:48:79:c5:6b:f8:ae:8d:55:77:c9:e5:
5e:ec:b9:b7:9b:e0:95:78:b6:67:04:1f:27:35:ca:30:24:d8:
11:30:ae:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 16 10:13:44 2024 by rpki-client on console-fra.rpki-client.org