Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1tLAFRRSfst4ck0EtSEoz3u3txk.roa
File: 1tLAFRRSfst4ck0EtSEoz3u3txk.roa (raw, json)
Hash identifier: asdMi9ZwXIw6GYAp8htzxm5y/6oqyKwVqAcUpnfkxRc=
Subject key identifier: D6:D2:C0:15:14:52:7E:CB:78:72:4D:04:B5:21:28:CF:7B:B7:B7:19
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01857042BDB45B39D1309740473BD98F68A7
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1tLAFRRSfst4ck0EtSEoz3u3txk.roa
Signing time: Mon 02 Jan 2023 02:15:00 +0000
ROA not before: Mon 02 Jan 2023 02:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51741
IP address blocks: 163.5.198.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:bd:b4:5b:39:d1:30:97:40:47:3b:d9:8f:68:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 02:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6d2c01514527ecb78724d04b52128cf7bb7b719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:aa:9f:cc:5c:19:d2:80:07:4e:75:27:f4:a6:
f9:03:0b:27:b8:12:89:87:e3:28:e7:5c:27:4a:a9:
db:0c:7a:11:05:0c:cd:1b:7d:ce:55:e6:52:0f:72:
16:0a:92:2d:e9:2b:9f:03:bd:de:26:27:25:4a:14:
06:2a:0e:b5:a7:d4:c8:24:4c:ce:91:5b:65:c0:85:
58:9b:57:9d:f6:8f:1e:3b:9b:bc:5d:11:10:ff:56:
f8:2f:17:82:7a:02:23:88:c6:52:4b:6d:a8:2a:96:
58:32:ea:30:8f:67:66:0c:b7:9a:32:12:c7:23:4a:
18:64:86:d6:7f:00:93:bf:f9:ec:65:9e:96:5e:e2:
6b:98:0d:37:aa:13:7f:8f:12:74:1f:39:27:5f:15:
36:73:13:77:5a:fb:25:97:15:5c:d4:cd:7f:ea:5b:
2f:b8:6b:a4:fa:af:a2:70:41:b8:df:55:2e:0f:4d:
ac:e4:be:65:5e:88:46:59:57:bf:cd:cc:83:f7:d1:
5c:49:25:bf:fd:11:25:6b:ac:f3:32:d1:fb:81:2f:
ac:f0:11:88:66:f1:9a:4b:9d:38:ac:f3:99:62:20:
25:9f:8f:d7:7c:ee:b0:0c:00:b4:21:7f:a8:b9:90:
2a:8f:2a:86:29:0c:7a:87:a7:2c:b6:90:e0:99:98:
48:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D2:C0:15:14:52:7E:CB:78:72:4D:04:B5:21:28:CF:7B:B7:B7:19
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1tLAFRRSfst4ck0EtSEoz3u3txk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.198.0/24
Signature Algorithm: sha256WithRSAEncryption
79:73:28:29:50:2e:21:e2:d2:c0:b6:68:61:de:cb:86:0b:4d:
af:9c:f1:0c:82:b3:ee:55:64:e2:27:42:5b:fe:f1:40:22:4a:
0b:a1:66:d1:a6:74:9f:e7:34:6b:c7:2a:ec:45:5b:9a:1b:c0:
31:42:03:1f:52:a4:97:7f:e9:df:6b:c5:54:99:26:76:48:b1:
75:16:e9:45:9c:f9:a1:dc:b2:64:81:0b:f3:60:3b:87:9e:b2:
9a:1e:a3:e2:ff:5b:a2:5a:db:cf:66:7f:c2:63:70:46:33:af:
0f:2b:b7:0a:e7:47:72:57:94:8a:a8:ac:f8:1b:3f:db:42:8a:
2b:53:dd:84:7e:96:b0:d1:06:5d:a9:63:70:e7:05:23:d1:11:
ae:e5:ff:36:2e:da:8e:5d:a6:ce:3b:2f:90:0d:b9:86:84:d3:
8b:a3:8c:4a:af:7f:ff:4b:0b:77:74:40:56:9a:97:e3:eb:26:
03:17:74:06:94:19:30:dc:5e:1f:38:99:98:32:54:7e:6b:b3:
3d:a6:8e:e3:c9:5d:50:bb:25:55:5a:8b:5a:a5:52:64:9e:2e:
10:ac:cf:c5:64:59:a6:26:7f:57:1d:b3:b3:00:09:87:f7:52:
aa:83:65:bc:ce:ae:d3:11:65:42:06:db:ed:b0:99:15:82:e0:
5d:18:7a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:19 2023 by rpki-client on console-fra.rpki-client.org