Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/rEIiuH35GyYCs7GIj_eWdpcL2xo.roa
File: rEIiuH35GyYCs7GIj_eWdpcL2xo.roa (raw, json)
Hash identifier: asKGenAAStEvXhAHwp4sDe7kudnRtV6LOhJ8BRkIcM4=
Subject key identifier: AC:42:22:B8:7D:F9:1B:26:02:B3:B1:88:8F:F7:96:76:97:0B:DB:1A
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018FF6EF49BF5138AF0C51D35A4CED250348
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/rEIiuH35GyYCs7GIj_eWdpcL2xo.roa
Signing time: Sat 08 Jun 2024 08:20:28 +0000
ROA not before: Sat 08 Jun 2024 08:20:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 5.102.108.0/22 maxlen: 22
92.114.40.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jul 2024 09:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f6:ef:49:bf:51:38:af:0c:51:d3:5a:4c:ed:25:03:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jun 8 08:20:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac4222b87df91b2602b3b1888ff79676970bdb1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7e:b8:6c:af:84:38:3b:d6:c3:fa:1c:2a:e5:
e0:d2:73:be:f4:68:09:af:e4:27:6c:c7:50:62:8d:
db:ff:fd:33:2b:d4:76:b1:d2:ca:3e:60:55:8d:94:
c8:cd:12:40:58:3d:2a:e6:3e:e8:25:56:ba:9b:cd:
1f:89:11:7b:a6:08:9b:47:4e:e7:5e:85:57:1c:48:
b5:c6:62:9e:89:8a:38:31:71:84:dd:72:0c:c8:a6:
11:79:e9:26:23:df:d3:6c:6f:a1:a9:ca:03:e3:b0:
18:49:12:ce:d8:d4:0e:62:ad:9f:53:54:fc:88:41:
63:e2:b6:b5:69:b6:92:fd:c2:cc:2d:c9:06:ee:c0:
3d:a6:2b:26:80:81:ea:65:bd:45:27:0d:3e:30:7a:
b3:ac:dc:de:4c:dd:fb:47:40:2e:39:80:8e:f3:e6:
31:d9:fe:50:bb:c8:fb:b4:fb:ea:56:ba:fd:86:99:
3c:44:45:4f:91:73:1f:ba:32:13:5d:e6:9c:18:6c:
6c:62:6b:61:06:56:8e:c2:03:b8:4a:e8:80:02:da:
ee:bd:16:82:bc:a9:53:68:e5:0f:10:85:d0:59:fe:
98:83:0a:4c:66:a2:86:a3:97:fc:38:2e:12:db:c4:
a9:bd:d6:44:de:60:62:34:ea:54:92:4c:d7:dd:3f:
97:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:42:22:B8:7D:F9:1B:26:02:B3:B1:88:8F:F7:96:76:97:0B:DB:1A
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/rEIiuH35GyYCs7GIj_eWdpcL2xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.108.0/22
92.114.40.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:c8:ff:67:44:5d:52:e1:c1:b7:62:b2:1b:ce:52:50:dd:01:
6b:61:d7:39:eb:d5:ab:96:d9:d8:44:f6:91:e2:de:42:62:68:
e6:8b:62:3f:37:75:eb:a9:95:3c:58:7d:3c:84:60:8f:f8:2b:
60:25:9d:aa:af:e3:56:3d:6d:b4:9d:bf:e5:e6:85:b3:9f:4c:
0f:5a:13:d2:cc:fa:2c:cf:c7:8e:41:de:86:da:99:8a:42:88:
0f:32:f8:1b:77:b6:2e:9c:02:b3:05:45:aa:b8:75:a8:1b:b7:
cd:bc:0a:ec:d5:18:19:2f:fb:10:4f:c7:f8:02:25:0b:ef:b6:
39:eb:8f:a0:a7:e3:b4:de:be:d6:61:c5:66:0d:1b:a3:9b:92:
65:10:10:e8:a0:55:6d:e6:27:3a:bd:f6:83:9e:e3:87:58:da:
e7:c7:eb:7b:39:bc:50:d1:57:62:94:13:28:48:ad:db:8e:15:
b2:74:34:56:c2:74:a8:26:41:7e:da:07:4f:04:66:47:00:b6:
e6:de:eb:6d:ed:47:ad:4a:64:c9:b1:7d:d2:61:43:a7:8f:d9:
d8:77:c4:e3:1e:48:5b:52:3a:9b:5e:ce:09:95:68:7c:fa:f4:
ff:24:db:81:de:17:b6:09:20:b9:65:46:4a:b3:e1:66:96:00:
32:2a:b6:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 09:46:35 2024 by rpki-client on console-ams.rpki-client.org