Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/iwtMNP31gYCIJx9hrXit_IndXw4.roa
File: iwtMNP31gYCIJx9hrXit_IndXw4.roa (raw, json)
Hash identifier: 3xE+Bz7FTELr+i5REfIWFPQZnmwyQOn1uu4xQaNUsjw=
Subject key identifier: 8B:0B:4C:34:FD:F5:81:80:88:27:1F:61:AD:78:AD:FC:89:DD:5F:0E
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018717C16FD492BFB740E545982A5E1A0129
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/iwtMNP31gYCIJx9hrXit_IndXw4.roa
Signing time: Sat 25 Mar 2023 07:52:45 +0000
ROA not before: Sat 25 Mar 2023 07:52:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 86.104.160.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Aug 2023 07:16:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:17:c1:6f:d4:92:bf:b7:40:e5:45:98:2a:5e:1a:01:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Mar 25 07:52:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b0b4c34fdf5818088271f61ad78adfc89dd5f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:78:ec:10:5b:7e:bf:df:66:96:44:07:53:ea:
d7:1b:78:62:25:62:3d:e8:bd:ba:9c:aa:be:16:6d:
c5:94:f7:4c:2f:80:68:b0:2c:6e:0e:87:ed:2f:ec:
a6:5d:52:f2:21:f3:8e:3b:20:9e:fd:ce:13:5a:0a:
e0:48:35:12:46:72:8c:bb:93:74:e7:0c:bf:af:75:
f9:91:48:87:13:40:7f:60:93:18:60:60:f4:5a:4a:
f2:0d:66:2f:98:42:f5:a8:9d:dc:26:a6:02:61:01:
40:30:fd:78:21:c9:99:3f:a2:4d:61:88:f6:64:9d:
44:1d:c8:40:49:b0:c2:fe:6f:8a:13:71:79:62:ee:
9d:b0:5f:a3:fb:09:f9:2c:4f:7b:e6:bd:c3:06:9f:
03:3b:7a:0d:8c:c8:dd:7d:02:f8:fc:35:8c:59:b2:
e5:83:de:69:63:3e:34:8c:6c:90:4b:c3:ad:99:f8:
63:04:2c:64:8a:57:a5:de:cc:51:93:09:8b:8c:2c:
dc:b7:bd:e7:74:c9:db:b2:bb:98:30:dd:d2:f5:fb:
ce:7b:6e:6c:01:af:c6:5b:1c:d5:43:84:d6:c7:d6:
7c:ab:c9:2c:ba:db:b9:92:ed:6b:d7:37:e8:fc:36:
f7:fb:fc:98:25:d4:6b:48:5b:34:a3:c6:23:34:bf:
03:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0B:4C:34:FD:F5:81:80:88:27:1F:61:AD:78:AD:FC:89:DD:5F:0E
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/iwtMNP31gYCIJx9hrXit_IndXw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.160.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:fc:87:a5:12:94:08:fa:67:43:32:bb:e5:aa:c5:8f:1f:dc:
92:cf:f7:ce:99:be:6d:ff:80:0c:5c:30:f0:ef:9f:88:71:9f:
76:72:d9:4c:14:d8:87:5f:73:c4:4a:05:ed:8e:79:45:da:77:
30:0b:ba:c4:2a:0c:b5:10:9b:53:00:8c:7b:d4:48:36:cf:64:
14:d7:c3:17:7c:d0:76:e9:24:e7:64:ea:8d:d1:76:76:7d:c8:
c5:17:a3:01:83:14:47:05:37:11:d0:35:7c:4f:d9:e2:ab:74:
74:42:f9:99:81:31:7f:cb:70:8e:8a:4e:58:17:aa:12:0e:69:
71:59:70:23:be:e3:ff:4a:82:07:21:17:de:26:bc:e6:63:45:
d7:54:45:6e:7b:e7:95:02:b1:f7:ca:b7:04:70:3a:38:e1:3c:
34:78:36:54:cb:46:76:21:cf:8e:c6:7d:8d:ed:bd:50:b5:70:
e8:f7:0d:dd:70:05:bf:9c:9d:7b:8b:dc:6f:7a:d7:85:48:0b:
77:92:bc:bb:ce:2a:c6:c5:c4:04:1b:b0:60:13:a2:a0:29:f1:
5a:f3:bb:a4:45:03:b9:05:b7:b2:48:c7:d3:84:b8:23:1c:bc:
00:89:13:54:0f:96:c7:3c:cb:11:fa:8c:0b:00:1c:a9:09:a3:
82:94:53:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcXwW/Ukr+3QOVFmCpeGgEpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2
N2IxZTQwHhcNMjMwMzI1MDc1MjQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YjBiNGMzNGZkZjU4MTgwODgyNzFmNjFhZDc4YWRmYzg5ZGQ1ZjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXjsEFt+v99mlkQHU+rXG3hiJWI9
6L26nKq+Fm3FlPdML4BosCxuDoftL+ymXVLyIfOOOyCe/c4TWgrgSDUSRnKMu5N0
5wy/r3X5kUiHE0B/YJMYYGD0WkryDWYvmEL1qJ3cJqYCYQFAMP14IcmZP6JNYYj2
ZJ1EHchASbDC/m+KE3F5Yu6dsF+j+wn5LE975r3DBp8DO3oNjMjdfQL4/DWMWbLl
g95pYz40jGyQS8OtmfhjBCxkilel3sxRkwmLjCzct73ndMnbsruYMN3S9fvOe25s
Aa/GWxzVQ4TWx9Z8q8ksutu5ku1r1zfo/Db3+/yYJdRrSFs0o8YjNL8DEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIsLTDT99YGAiCcfYa14rfyJ3V8OMB8GA1UdIwQY
MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut
ODk3MTRhN2U4ZDU4LzEvaXd0TU5QMzFnWUNJSng5aHJYaXRfSW5kWHc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4
LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVmigMA0G
CSqGSIb3DQEBCwUAA4IBAQB8/IelEpQI+mdDMrvlqsWPH9ySz/fOmb5t/4AMXDDw
75+IcZ92ctlMFNiHX3PESgXtjnlF2ncwC7rEKgy1EJtTAIx71Eg2z2QU18MXfNB2
6STnZOqN0XZ2fcjFF6MBgxRHBTcR0DV8T9niq3R0QvmZgTF/y3COik5YF6oSDmlx
WXAjvuP/SoIHIRfeJrzmY0XXVEVue+eVArH3yrcEcDo44Tw0eDZUy0Z2Ic+Oxn2N
7b1QtXDo9w3dcAW/nJ17i9xveteFSAt3kry7zirGxcQEG7BgE6KgKfFa87ukRQO5
BbeySMfThLgjHLwAiRNUD5bHPMsR+owLABypCaOClFOE
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org