Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1VgCBIRTM5T43tqyjONFofe8U0g.roa
File: 1VgCBIRTM5T43tqyjONFofe8U0g.roa (raw, json)
Hash identifier: 3+KvHYHmIcUEM8hTSO2rnB77iR37z9x1Jw3gC7SKPgs=
Subject key identifier: D5:58:02:04:84:53:33:94:F8:DE:DA:B2:8C:E3:45:A1:F7:BC:53:48
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018FC066A2BAAB2F8AE707CB5AEA33180350
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1VgCBIRTM5T43tqyjONFofe8U0g.roa
Signing time: Tue 28 May 2024 18:11:42 +0000
ROA not before: Tue 28 May 2024 18:11:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 163.5.34.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.153.0/24 maxlen: 24
163.5.177.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Jul 2024 16:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c0:66:a2:ba:ab:2f:8a:e7:07:cb:5a:ea:33:18:03:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 28 18:11:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d558020484533394f8dedab28ce345a1f7bc5348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:91:5c:fd:cd:cb:9d:80:b9:4d:2c:8b:50:78:
61:2c:93:42:18:d2:12:47:7b:82:e4:07:0b:7f:42:
ad:82:95:23:fc:53:69:5e:48:31:d2:ad:32:83:41:
5c:c8:9d:72:d7:d0:e6:54:1a:02:cb:7e:96:20:a8:
91:32:b6:3f:f7:54:34:ff:94:b1:86:a5:a0:17:79:
b7:00:bb:2a:94:90:16:56:8c:21:cb:f8:67:89:9d:
ed:7c:8e:03:48:ad:85:a8:dd:fd:ea:9d:5a:3f:20:
bd:56:2d:47:f9:be:6b:ba:5d:20:49:3a:c7:32:75:
48:dd:9b:75:7a:bc:cd:5b:b4:67:c6:0b:bf:73:06:
cf:ec:94:83:1b:06:33:36:b1:4b:99:aa:aa:92:a7:
cc:d6:c9:19:34:3b:d9:a6:1f:a5:be:1f:ea:3a:8a:
12:b7:b1:e1:4d:6f:05:b0:a4:31:be:00:c7:61:aa:
d6:ee:ba:ac:5e:88:bd:95:d3:83:dd:84:56:73:72:
b4:1e:89:97:55:5e:9d:f0:f9:d3:1b:68:c5:55:c4:
46:45:22:03:34:60:7c:2d:4b:b2:0e:97:36:70:3d:
29:ec:bf:69:38:1c:07:cc:a2:d9:4d:cf:4b:b5:8d:
4b:e8:fc:c7:c3:7c:d2:fa:7a:54:80:df:a6:66:40:
c6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:58:02:04:84:53:33:94:F8:DE:DA:B2:8C:E3:45:A1:F7:BC:53:48
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1VgCBIRTM5T43tqyjONFofe8U0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.34.0/24
163.5.118.0/24
163.5.153.0/24
163.5.177.0/24
163.5.252.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:8e:80:66:29:6e:80:d9:61:a8:1f:03:ea:44:89:32:d6:34:
7b:c4:ff:35:56:6e:11:94:c5:eb:7d:91:cd:db:98:c0:b4:5e:
93:c7:63:b7:fb:09:b1:80:5e:f1:04:bf:7a:10:62:61:41:0e:
1c:50:d9:62:f7:30:f2:ae:f9:61:f1:e0:d5:9a:e9:33:8c:f4:
16:bd:f9:53:55:f5:8a:fb:dd:01:da:fe:19:27:3b:e6:1d:36:
ac:51:9c:be:bf:28:6f:4a:e4:19:58:74:c5:f4:5b:3e:cb:a1:
83:a0:b1:c6:e8:11:a1:87:b6:88:8c:70:b0:ed:c2:41:f8:3a:
b5:d3:2a:a5:93:4a:bc:40:42:3e:21:ee:89:71:03:e9:ce:fa:
aa:6e:0d:2f:11:45:73:57:f3:a5:ce:28:37:47:c4:8e:cc:d5:
4c:68:64:62:f7:3b:e3:3a:8b:be:1b:72:c7:22:55:98:19:53:
5f:7c:04:fa:0b:a5:99:e1:a4:eb:13:84:bf:1f:6b:02:85:86:
0d:d6:b3:8b:a4:0e:98:18:b5:e8:85:c8:2a:ad:fd:36:23:08:
7e:2f:1b:d1:0c:04:62:72:5a:ef:dc:03:1e:eb:1b:96:35:e7:
88:44:b3:19:e7:a5:f1:0c:92:c2:0a:28:8e:c4:7d:bd:2e:c7:
77:a7:1a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 18:41:39 2024 by rpki-client on console-fra.rpki-client.org