Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0a2KcEB8jzLGYJZ3h5fqZ0l283Q.roa
File: 0a2KcEB8jzLGYJZ3h5fqZ0l283Q.roa (raw, json)
Hash identifier: jsXH70sHHafDDc+i29H3jbOk4O717yYHVMISODgwNDg=
Subject key identifier: D1:AD:8A:70:40:7C:8F:32:C6:60:96:77:87:97:EA:67:49:76:F3:74
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0189EBAB9B59B5C97CBB8DFBB8463FB408A8
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0a2KcEB8jzLGYJZ3h5fqZ0l283Q.roa
Signing time: Sat 12 Aug 2023 21:33:59 +0000
ROA not before: Sat 12 Aug 2023 21:33:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56913
IP address blocks: 163.5.76.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:eb:ab:9b:59:b5:c9:7c:bb:8d:fb:b8:46:3f:b4:08:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 12 21:33:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1ad8a70407c8f32c66096778797ea674976f374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:89:41:dd:8d:55:b8:87:1c:76:0a:63:13:87:
61:4a:3a:73:a7:a6:61:a3:ac:b4:65:55:4e:a9:3e:
13:ac:94:d5:a2:a8:e1:41:66:3a:1e:f9:69:77:7e:
fe:e7:7e:36:a7:88:67:67:bc:4a:9b:0b:58:00:3b:
74:7c:01:13:0b:fc:bb:25:f7:79:91:86:59:c3:9c:
58:1e:f7:bf:26:d6:db:3b:1c:5b:bf:60:2f:e0:b6:
8d:9e:0a:b2:02:e1:5d:46:e8:d5:22:7e:6e:d7:d4:
f3:31:30:c1:06:1d:cd:37:d9:2e:bd:22:94:2d:9f:
4c:a5:cd:6e:2e:61:11:64:f0:d5:29:c5:ca:f6:d1:
14:22:bb:3b:13:dc:b5:62:b1:fd:a0:ad:20:61:9b:
bb:73:75:bb:a7:36:7a:b9:5e:d4:42:d2:7f:35:3a:
52:4f:96:1d:f6:92:91:a4:a4:7a:fd:b5:78:24:ca:
c4:db:6c:e9:df:9b:29:83:f7:d0:71:4e:58:e7:14:
9a:f6:76:21:a7:a4:5d:81:e8:09:b4:4b:a7:4d:43:
9f:3b:0f:66:c4:3a:25:12:14:44:72:61:0f:9f:ab:
51:ee:93:a2:0f:d6:d0:32:54:63:0d:67:33:e0:94:
e9:33:4d:f6:c8:eb:56:3b:b4:08:45:ec:4c:4c:58:
59:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:AD:8A:70:40:7C:8F:32:C6:60:96:77:87:97:EA:67:49:76:F3:74
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0a2KcEB8jzLGYJZ3h5fqZ0l283Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.76.0/24
163.5.89.0/24
Signature Algorithm: sha256WithRSAEncryption
43:b3:6d:c7:60:95:79:8a:73:2c:dc:fb:48:1a:4a:8e:a3:73:
31:a9:b9:1e:f5:0e:34:ce:34:7c:71:99:f2:f9:4e:70:13:06:
70:79:00:4a:fb:96:0b:d7:ed:3b:3c:25:2c:38:6e:92:89:fa:
ba:56:ac:ec:0a:8a:53:01:3e:55:48:7e:9f:7f:d2:26:05:af:
94:cd:7b:79:fb:a3:a6:52:d8:3c:e8:a6:f7:23:89:0b:66:ae:
d8:9b:1d:5f:d3:0b:b9:36:b3:06:ec:a6:f2:1a:55:9f:18:52:
7a:63:38:15:4d:9d:38:93:27:65:a5:39:32:08:60:70:fb:be:
b3:de:7c:e8:a7:d3:7f:05:6b:da:6e:66:18:51:3a:02:a4:ae:
1e:17:e7:94:ff:17:31:8f:47:c9:54:d9:fc:5a:ae:b7:4f:a5:
0a:01:eb:2a:4e:10:8a:56:c8:7e:f3:54:c4:47:7f:f1:82:2b:
5c:89:b2:c0:ed:25:34:a1:6a:7e:fe:e0:6f:c4:74:a0:0b:4c:
72:38:87:01:05:e1:3f:74:11:18:ab:ef:af:eb:96:80:9f:ff:
8b:0d:80:97:3b:bd:4f:ec:00:0d:45:ba:7e:f4:b2:aa:db:b1:
c3:e8:2d:35:8d:cc:18:2f:85:9c:77:b0:64:04:40:fe:24:2e:
a1:70:f8:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 16 11:27:34 2023 by rpki-client on console-fra.rpki-client.org