Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3ctcfZwi4Wt0RLhSdMFSB3JCQB8.roa
File: 3ctcfZwi4Wt0RLhSdMFSB3JCQB8.roa (raw, json)
Hash identifier: IxuAn8vBKuE+O+xcya/TYx7e5ly6YB2msSFDSHnR8lk=
Subject key identifier: DD:CB:5C:7D:9C:22:E1:6B:74:44:B8:52:74:C1:52:07:72:42:40:1F
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0189EBAB9A4FF0057F9A14E3B018514A471B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3ctcfZwi4Wt0RLhSdMFSB3JCQB8.roa
Signing time: Sat 12 Aug 2023 21:33:59 +0000
ROA not before: Sat 12 Aug 2023 21:33:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 163.5.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Sep 2023 11:15:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:eb:ab:9a:4f:f0:05:7f:9a:14:e3:b0:18:51:4a:47:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 12 21:33:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddcb5c7d9c22e16b7444b85274c152077242401f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ef:75:60:1a:13:d9:fb:2d:c9:fd:9f:d2:42:
fd:ab:9f:62:6d:c0:c4:72:05:b2:60:65:46:25:48:
65:e2:af:e8:48:36:39:ff:83:18:03:c2:eb:66:20:
51:90:a0:61:bc:eb:e6:2b:36:c0:d5:aa:50:87:c4:
20:91:d8:c5:2b:99:b1:8f:93:1a:a0:fa:09:e7:04:
22:c9:24:c0:c4:97:4a:64:20:fd:ce:16:1c:4e:4f:
b3:3a:8a:fe:cf:df:6d:ab:7d:72:e7:3d:c5:b8:08:
d8:2d:2a:2a:dc:67:18:17:53:17:ea:ae:aa:df:84:
a8:f9:9c:c2:f8:c5:a6:64:69:07:5a:35:6b:fb:84:
2c:e0:74:de:d9:8c:5c:9e:51:f2:b0:bf:8e:95:60:
08:18:df:53:21:35:18:e8:f5:c6:09:32:c2:9f:01:
a6:c1:1d:9b:2b:b7:48:16:0c:5c:37:f3:13:8c:2c:
4a:12:e1:8f:56:42:4c:18:b9:4a:74:28:11:74:59:
58:3c:0b:19:e1:4d:b9:87:e7:84:54:aa:75:dc:76:
a7:a1:b8:b3:6a:5a:e9:da:63:68:dc:25:bd:9b:be:
12:cc:4b:c3:5e:db:13:1b:9a:48:78:c1:17:e3:9a:
7c:5f:53:60:38:80:77:50:15:fb:13:16:17:78:36:
18:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:CB:5C:7D:9C:22:E1:6B:74:44:B8:52:74:C1:52:07:72:42:40:1F
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3ctcfZwi4Wt0RLhSdMFSB3JCQB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.34.0/24
Signature Algorithm: sha256WithRSAEncryption
76:c6:e6:de:9a:8a:f4:3c:96:78:dc:28:9a:a5:87:36:40:5b:
44:92:5e:ae:50:77:74:da:f5:69:bc:49:b4:63:1e:c1:85:81:
d9:dd:1a:a4:eb:28:d4:37:ae:4c:8b:a9:98:44:c3:14:0b:36:
f9:ee:1b:2f:f5:08:d7:6e:6c:df:98:b0:68:7c:a8:e3:80:fd:
93:d3:41:a7:6b:37:94:8a:23:0d:54:e9:1b:76:15:05:22:38:
df:1c:0d:72:f2:1b:60:27:b8:35:22:aa:00:63:9c:f5:8a:cb:
b3:47:e9:34:4c:19:56:e6:b6:1d:fb:82:9b:03:d4:b1:bd:6f:
13:87:01:b4:35:9b:6a:cc:20:de:54:ba:17:d1:be:95:bd:45:
e8:03:1b:cd:ad:46:ef:07:36:6c:24:28:e2:02:49:45:06:fc:
30:ad:42:35:18:92:48:e3:6c:9b:aa:4a:49:ce:4b:b0:bd:18:
6d:03:09:81:85:76:54:4d:5d:c3:f8:28:41:06:8d:8e:37:8a:
31:c5:31:dd:51:18:30:77:ea:ae:0a:78:51:c2:17:81:3a:80:
06:f7:f8:03:e8:31:06:27:ce:ce:f1:9c:11:07:83:91:bf:28:
4b:ac:09:14:71:d9:28:92:5c:e8:6c:8a:1e:18:14:06:e2:4c:
08:37:ae:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:03 2024 by rpki-client on console-fra.rpki-client.org