Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/42aMlVJEl9gadzG9ZBypDkABSBg.roa
File: 42aMlVJEl9gadzG9ZBypDkABSBg.roa (raw, json)
Hash identifier: BS6O76T4/sbZKcOf7FnuOj1xFNko2f0fc4yFtmAb5Ek=
Subject key identifier: E3:66:8C:95:52:44:97:D8:1A:77:31:BD:64:1C:A9:0E:40:01:48:18
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018A6730D4B209E51FBF700AEC35649F5ECB
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/42aMlVJEl9gadzG9ZBypDkABSBg.roa
Signing time: Tue 05 Sep 2023 21:12:47 +0000
ROA not before: Tue 05 Sep 2023 21:12:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 163.5.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:67:30:d4:b2:09:e5:1f:bf:70:0a:ec:35:64:9f:5e:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 5 21:12:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3668c95524497d81a7731bd641ca90e40014818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a7:ab:18:8a:80:f7:91:70:2b:36:a3:5a:50:
bf:b0:97:b5:bc:58:3a:f5:1d:8f:47:8d:72:63:00:
71:5b:bc:bb:8a:c4:71:2c:06:01:a7:80:55:c4:48:
f3:99:3b:4a:28:01:2d:01:19:20:fc:31:e0:16:d1:
ed:66:a0:0f:76:4a:e1:e3:54:73:67:e0:66:cf:bd:
da:ce:8f:6a:b5:32:d2:90:0f:82:13:24:5b:03:05:
06:df:7d:c7:7c:7c:82:bb:80:d3:4c:f1:f6:b4:76:
be:07:9b:ec:c4:ca:fc:43:08:5a:b0:aa:c4:df:57:
c3:b9:1e:29:ab:97:d3:0c:73:12:ad:ee:52:c3:86:
30:88:99:32:60:e2:b5:c3:1e:e2:91:ca:7d:56:da:
6b:9e:22:a5:e8:3e:33:58:84:f3:c9:cd:26:88:95:
02:90:b9:f5:26:04:77:bc:7e:79:bb:8e:b0:e7:e0:
33:64:4b:e3:cf:18:48:b3:b1:f8:c6:72:6a:61:f6:
69:66:9d:da:da:4b:d2:68:23:40:a5:f2:d6:4e:f3:
f1:38:ff:0a:ba:e3:0e:e5:4e:79:45:2e:1e:a1:44:
0f:16:0b:3e:08:00:05:0b:ea:fd:99:00:ac:fb:b8:
33:bf:fa:f8:54:7b:8e:06:53:4c:ea:49:26:ff:66:
d3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:66:8C:95:52:44:97:D8:1A:77:31:BD:64:1C:A9:0E:40:01:48:18
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/42aMlVJEl9gadzG9ZBypDkABSBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.91.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:0d:dc:6b:d8:c9:3d:2f:88:35:fa:16:ad:91:01:18:b7:ac:
13:4a:67:03:5f:ad:63:29:74:fa:d0:02:35:05:c2:f1:ed:ec:
e2:32:1a:d4:43:b2:34:c8:3b:73:65:7a:31:16:ab:f4:e8:51:
e9:57:a6:7f:db:9c:62:c6:a6:7c:20:bb:ce:83:4b:2a:5c:fd:
28:29:2c:99:95:58:e3:cc:31:1a:d5:0a:ca:ce:64:b1:4a:76:
b0:ce:b9:9a:fd:bf:ad:99:ea:41:f1:d8:c3:c2:ca:47:aa:46:
27:d4:45:f9:51:2a:8b:b6:f5:c7:62:25:6b:bc:90:a0:cb:10:
91:2a:8a:13:a8:23:d0:07:a5:dc:13:d5:fd:50:d4:34:75:70:
49:b2:98:3d:7e:4d:17:be:99:7f:13:f5:5f:55:b5:67:a5:5f:
ea:87:21:9e:82:0a:4f:85:bb:c9:1a:36:32:b5:73:9b:8f:2c:
22:fa:8e:55:78:91:52:18:08:7c:c2:bd:6b:cd:3f:46:4a:27:
c7:55:07:59:70:79:98:b8:62:1b:8d:a9:09:18:d5:c6:22:28:
80:a8:e2:e4:bd:1b:09:a8:f4:7c:20:44:1b:1f:7d:49:0f:74:
c8:58:b3:34:7d:3c:46:fb:99:38:3b:eb:b0:38:b8:ae:fc:5f:
74:0a:42:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:18 2024 by rpki-client on console-fra.rpki-client.org