Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/u2eKv8xnEFg7LU4QIZSk_4gwUF8.roa
File: u2eKv8xnEFg7LU4QIZSk_4gwUF8.roa (raw, json)
Hash identifier: VUBbvwOXF9wMg6wC0kNPohzJZlJPBqgayZS0xDI6I/A=
Subject key identifier: BB:67:8A:BF:CC:67:10:58:3B:2D:4E:10:21:94:A4:FF:88:30:50:5F
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018602E995067CB016B791D071C6AE81480A
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/u2eKv8xnEFg7LU4QIZSk_4gwUF8.roa
Signing time: Mon 30 Jan 2023 13:41:47 +0000
ROA not before: Mon 30 Jan 2023 13:41:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206119
IP address blocks: 82.163.96.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Feb 2023 08:51:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:02:e9:95:06:7c:b0:16:b7:91:d0:71:c6:ae:81:48:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 30 13:41:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb678abfcc6710583b2d4e102194a4ff8830505f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d9:c0:82:7b:eb:d5:d5:82:0d:f5:c5:06:23:
1a:4a:3c:98:27:0e:82:05:00:4d:a0:a1:ca:f9:06:
55:17:9f:76:65:56:79:54:a6:53:54:a4:06:fd:e0:
8d:50:74:0b:0e:3a:47:3d:5b:45:ad:96:13:78:99:
2f:01:d9:e7:c2:78:f6:1c:ae:20:52:74:bc:0a:74:
4c:1f:3b:a8:21:c9:23:32:89:08:0d:81:3c:73:66:
b0:9b:4a:3f:7a:35:63:16:7a:74:0d:67:73:13:d3:
e6:ec:27:3a:c1:ba:a3:b6:84:b8:0d:8c:de:3a:6a:
1b:29:03:85:ed:ae:c7:0f:1a:9c:61:17:9f:1e:50:
5a:ab:b3:e9:09:7c:d7:37:0d:d1:84:45:d0:99:c4:
cd:13:03:a1:2f:de:08:a6:33:ba:b1:59:a7:70:f0:
ea:06:f0:33:d9:a2:86:ec:77:fb:6d:22:1b:f3:4e:
f7:9f:a7:da:71:c6:25:37:ea:7f:0d:e0:84:6c:82:
c7:e0:cf:77:01:da:de:0e:33:19:ca:22:85:78:7e:
b7:e0:15:a9:15:92:45:b5:b1:7d:1d:2c:ac:a7:db:
e1:01:83:e1:65:7d:6b:8a:78:1c:3c:dd:dd:d4:3b:
60:98:a2:df:f5:9e:b3:9d:59:a7:a7:a8:39:2e:eb:
e1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:67:8A:BF:CC:67:10:58:3B:2D:4E:10:21:94:A4:FF:88:30:50:5F
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/u2eKv8xnEFg7LU4QIZSk_4gwUF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.96.0/21
Signature Algorithm: sha256WithRSAEncryption
a2:d4:91:a4:f2:7a:80:c1:dd:48:c4:51:51:0c:5c:0d:5f:02:
56:3a:f7:83:84:af:7a:6b:a3:36:91:27:d4:18:5e:24:b8:3c:
ef:28:cb:74:fa:f3:45:db:a0:40:a9:86:3f:66:7c:2d:0f:ac:
10:32:77:da:85:2d:de:86:ec:a2:3a:57:6f:98:f4:d4:1f:d7:
e9:04:e3:68:1d:9d:d8:76:a5:e5:f7:71:36:a8:54:c2:16:b5:
b2:1f:ef:91:98:1c:4a:5d:02:7c:c9:86:79:df:15:ed:f7:c6:
31:75:a3:17:b2:b1:74:b3:a4:30:91:19:54:f8:7a:c6:40:f9:
34:6c:fc:f2:d9:1f:eb:df:77:34:e3:f4:54:81:9e:d0:e9:09:
29:56:f4:33:71:b1:b4:eb:1a:86:e2:7d:6d:1d:70:be:46:ac:
81:78:64:74:6c:ba:0e:65:b7:8d:2d:fa:8f:02:79:48:66:80:
b6:83:69:54:3f:a4:52:3f:92:0c:a0:9f:93:5b:ba:13:d9:0b:
b9:24:39:44:57:1d:16:25:4d:57:9d:f6:b4:bc:cf:4a:59:8c:
32:4f:77:08:57:da:e9:8a:ac:c2:72:a4:47:a8:63:73:80:e9:
de:ee:be:05:3b:bc:9a:e9:23:e1:1a:fe:4b:e7:80:2b:b8:8f:
7e:9d:7e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org