Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3k4FptRxRnWAbqtXWU2zHesM35w.roa
File: 3k4FptRxRnWAbqtXWU2zHesM35w.roa (raw, json)
Hash identifier: 7UYtph5P8bk/zFeW5rN6KOXU2u2tTaZYuUcdgAJdpqI=
Subject key identifier: DE:4E:05:A6:D4:71:46:75:80:6E:AB:57:59:4D:B3:1D:EB:0C:DF:9C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01857042CAA365DE953B08E71BFC805F3D09
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3k4FptRxRnWAbqtXWU2zHesM35w.roa
Signing time: Mon 02 Jan 2023 02:15:03 +0000
ROA not before: Mon 02 Jan 2023 02:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210122
IP address blocks: 163.5.181.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:ca:a3:65:de:95:3b:08:e7:1b:fc:80:5f:3d:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 02:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de4e05a6d4714675806eab57594db31deb0cdf9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d1:dc:fc:e8:fc:bc:53:2e:10:72:8a:ad:bf:
e2:42:a9:93:06:81:a0:2d:aa:74:4e:a0:5d:1b:5d:
90:11:7f:51:90:3c:59:37:f9:dc:89:80:3a:9a:45:
52:f2:cd:4e:e8:0e:e4:44:dd:d7:3d:f9:8a:06:ea:
5b:cc:79:67:c1:b7:fe:ca:86:7e:1e:71:d1:e7:68:
cf:f6:7c:c1:b2:2f:db:ec:3c:13:6c:9e:cc:36:c2:
2d:d6:77:a1:a2:b7:bb:0e:cf:a7:1c:09:b3:8f:10:
21:d9:0f:12:51:d2:13:19:c2:87:f7:d8:77:3d:12:
2a:f9:79:3a:a1:1b:45:2d:da:c6:cf:c9:3b:76:a0:
34:79:bb:3a:18:88:a8:1d:0c:21:49:84:7c:78:bf:
61:59:57:e0:9c:57:7b:a2:4a:8f:4e:2c:9d:85:0c:
b2:9f:61:b0:9c:e0:78:ff:be:43:79:a9:84:83:a1:
ca:7a:1e:5c:76:3c:07:9f:91:96:61:cd:3d:d0:89:
a7:70:33:a2:6c:14:b5:8e:ee:e9:54:20:ad:a7:eb:
aa:d8:c1:b4:dc:5a:06:c1:ba:93:33:91:39:7e:52:
3b:62:b6:07:8f:4c:be:ca:c8:94:00:2e:d0:ed:88:
c7:c6:1c:77:c0:4e:f5:a0:5a:6a:c3:3b:25:04:d3:
cd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:4E:05:A6:D4:71:46:75:80:6E:AB:57:59:4D:B3:1D:EB:0C:DF:9C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3k4FptRxRnWAbqtXWU2zHesM35w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.181.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:a6:0d:26:fc:43:d9:6a:ab:a7:39:c1:c2:51:72:6b:8e:00:
06:79:09:95:0e:73:dd:56:3e:63:ae:67:57:f4:76:69:4a:5c:
69:b0:56:65:4f:a9:64:98:a2:09:8e:5f:77:38:ac:c2:95:98:
c8:ce:ae:d7:b6:79:2c:13:fb:26:fd:83:fa:e7:4c:91:00:9b:
d1:c7:96:e1:ea:98:8c:dc:f1:4c:8a:29:c0:39:b3:7e:81:01:
0c:f7:1e:fe:65:f9:1b:5d:42:9f:2c:ed:f8:69:e7:aa:d4:24:
ea:6c:b2:5f:92:c3:fa:ef:89:a0:69:41:ba:90:4e:be:3f:27:
9d:8a:b1:a9:68:49:e7:6d:2d:2a:83:3c:cc:9e:24:e3:0f:43:
ba:d4:fd:40:9a:3e:8d:25:b7:eb:b8:e1:34:6c:5f:b7:33:84:
b7:97:bb:75:f1:4b:93:1d:72:c5:eb:82:36:32:fd:77:97:35:
f9:41:ad:dc:2d:98:1e:f5:ee:36:40:2e:7a:b4:e3:33:28:16:
b2:85:cb:ab:90:ac:4f:fa:de:63:2c:9f:bd:a7:b7:ec:14:e2:
f7:29:0e:14:8e:36:3f:4e:98:16:e5:16:cc:27:60:dc:e8:be:
8e:83:c5:a4:b2:30:71:53:6b:93:3f:b5:ea:20:dd:22:68:9d:
cd:83:31:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:18 2024 by rpki-client on console-fra.rpki-client.org