Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/vb4Iv66lflheDyj87hguVb3V74U.roa
File: vb4Iv66lflheDyj87hguVb3V74U.roa (raw, json)
Hash identifier: xvE71rRJgz/fEa50Vn5/PHgmcEESuHhpmJDjx38vvCw=
Subject key identifier: BD:BE:08:BF:AE:A5:7E:58:5E:0F:28:FC:EE:18:2E:55:BD:D5:EF:85
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018A4603BC88FA5188FABD6F1B548FA25003
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/vb4Iv66lflheDyj87hguVb3V74U.roa
Signing time: Wed 30 Aug 2023 10:36:04 +0000
ROA not before: Wed 30 Aug 2023 10:36:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10753
IP address blocks: 82.163.56.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Oct 2023 08:21:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:46:03:bc:88:fa:51:88:fa:bd:6f:1b:54:8f:a2:50:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Aug 30 10:36:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdbe08bfaea57e585e0f28fcee182e55bdd5ef85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3f:34:88:cf:04:8f:a9:10:65:ca:10:d8:ff:
03:ab:de:c7:84:08:08:75:f2:1e:61:90:cd:69:f6:
c2:69:85:01:13:2e:20:62:a8:1e:bd:f0:8d:6e:80:
d0:f8:f8:6d:52:01:bb:b2:23:0e:4c:d9:d3:d1:40:
84:00:c8:07:b3:e2:c6:3c:57:6b:23:a6:83:6d:aa:
c2:e2:ef:ff:5f:3e:21:3f:28:e5:8d:ad:cc:8c:7d:
4e:06:9d:6f:e2:df:08:cc:79:d5:95:33:05:a5:57:
7e:a1:18:a3:14:8a:e9:60:17:cf:9e:83:58:9f:c9:
8a:70:98:1f:55:53:e4:46:b1:5f:8d:ba:f9:cf:1b:
0a:60:04:24:57:3b:85:79:5f:8a:72:5e:a8:92:f4:
86:68:b3:44:b3:60:f9:b9:cb:fb:9b:82:2c:26:b7:
6f:cb:50:b4:96:03:2b:7c:85:ae:29:61:64:1f:f0:
d0:7a:ca:1d:0b:d4:26:07:1f:0a:b0:e3:85:bb:09:
53:92:4b:29:3e:b6:4a:a7:14:a3:b1:f5:79:29:6c:
07:93:16:3a:ba:93:39:19:18:c2:0f:91:3b:5f:4d:
fe:e5:52:bd:eb:fc:18:95:51:00:76:b6:aa:df:27:
a6:73:2a:6b:a2:03:68:23:3c:2f:85:0b:b5:d9:22:
eb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:BE:08:BF:AE:A5:7E:58:5E:0F:28:FC:EE:18:2E:55:BD:D5:EF:85
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/vb4Iv66lflheDyj87hguVb3V74U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.56.0/22
Signature Algorithm: sha256WithRSAEncryption
82:bd:c7:66:f5:f1:e2:03:9e:6a:1c:e5:0c:6f:3b:6a:69:11:
26:62:8d:2c:d0:e0:61:db:5c:a0:5a:69:11:d7:97:5a:8f:97:
66:6d:63:d6:33:de:60:07:48:d4:1e:66:2b:b5:11:06:d0:f7:
c7:78:10:2d:10:e4:37:6b:21:be:03:20:25:21:85:e8:ed:a1:
29:33:b8:c9:91:bd:6c:06:54:bc:4c:a1:4f:fd:16:2a:18:b4:
0d:a9:f6:65:4b:d7:f3:58:d3:99:c5:97:73:3c:2b:e9:50:ef:
09:b1:4d:bb:65:9f:af:44:53:ad:34:a5:a1:19:fe:bd:c2:13:
b9:4d:67:ef:42:5d:59:1b:50:39:64:81:a9:0b:12:8c:81:52:
fa:69:7a:c7:8f:d5:4b:ba:8a:5a:6b:af:70:7e:a9:c2:f1:e5:
79:19:bf:82:03:ad:d1:dd:cd:c0:1d:6d:47:5a:5f:80:8c:a4:
66:79:7a:0c:93:10:e6:92:a0:4f:b1:6b:0c:2d:cc:b5:3b:e5:
f8:62:de:26:d4:3e:63:e5:3e:df:c8:d7:81:1b:cb:b8:b8:4a:
e7:54:e7:bd:35:a0:19:ba:9b:36:95:19:8e:5b:ed:76:ed:e5:
51:5c:e5:b2:f0:e8:17:14:c2:37:6b:70:7b:1c:92:8c:c8:a9:
03:6d:ad:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org