Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4YAwqToHj28Q2yiDPSulldXKlVE.roa
File: 4YAwqToHj28Q2yiDPSulldXKlVE.roa (raw, json)
Hash identifier: KW4AKfi5tV/QT5+Xza50+wkcTRjASz/JBMhn9u7LywI=
Subject key identifier: E1:80:30:A9:3A:07:8F:6F:10:DB:28:83:3D:2B:A5:95:D5:CA:95:51
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0190FDB437CD09E664CF0A80D9F86F952C07
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4YAwqToHj28Q2yiDPSulldXKlVE.roa
Signing time: Mon 29 Jul 2024 08:56:04 +0000
ROA not before: Mon 29 Jul 2024 08:56:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214766
IP address blocks: 163.5.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 15:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fd:b4:37:cd:09:e6:64:cf:0a:80:d9:f8:6f:95:2c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 29 08:56:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e18030a93a078f6f10db28833d2ba595d5ca9551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7a:01:33:28:cd:24:dc:2e:01:4b:e3:8d:6b:
2a:56:d4:be:71:fe:42:be:fd:72:08:6d:ab:0f:5d:
d9:f6:8c:2f:53:08:03:e9:f0:13:93:11:a9:74:6f:
73:ac:b8:91:b4:41:69:21:95:d9:be:e9:78:5f:fc:
33:e4:45:80:d3:4c:6e:6f:16:12:3c:c8:8f:8d:d6:
d4:81:4d:f0:0d:81:e9:5f:e4:be:1c:14:da:9c:72:
f1:f3:16:a6:08:9c:42:42:a5:23:07:61:55:fe:7b:
4d:39:37:b3:c7:97:8e:80:cc:28:5d:52:4b:59:91:
b4:6e:76:38:a1:b3:f1:b1:bd:ba:46:79:22:86:b7:
12:2c:16:4e:fb:e3:11:b8:d4:71:34:29:81:e4:ef:
95:ac:78:2b:5a:63:d3:9a:24:4c:cf:fb:bf:3b:5c:
4d:ec:9e:5a:69:20:84:ee:76:ae:3a:c2:a7:74:a3:
0c:d1:09:bf:b2:bc:a5:15:c7:49:7e:35:e2:99:32:
cc:0d:9f:d7:ab:a1:cc:16:d3:c8:27:13:02:62:7d:
3f:e3:1d:7f:18:80:78:20:5c:60:07:ab:07:81:18:
84:6b:a5:83:cb:9c:ba:b5:e7:cd:e2:ce:3d:e7:a1:
e9:0c:0c:bb:a2:4c:9c:df:e5:00:4f:08:74:8d:53:
60:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:80:30:A9:3A:07:8F:6F:10:DB:28:83:3D:2B:A5:95:D5:CA:95:51
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4YAwqToHj28Q2yiDPSulldXKlVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.54.0/24
Signature Algorithm: sha256WithRSAEncryption
48:c2:7d:27:7e:33:fe:5b:a5:b8:95:3e:59:69:05:49:61:96:
d0:6d:56:c5:2e:a7:76:e5:d9:07:2f:d5:1f:dc:d4:28:22:8a:
17:1b:b1:5e:6e:44:57:09:c0:47:c6:24:0b:28:fe:8b:d6:71:
b8:29:4b:93:60:a5:c8:0d:ef:7b:12:3d:64:b0:ca:3f:1e:17:
95:99:f2:76:94:69:55:81:38:02:3d:ff:e1:bc:f6:a0:4a:46:
b7:6f:52:86:b6:3e:53:01:9d:d6:83:52:64:dd:41:53:0f:f8:
a9:0b:53:c4:b4:44:62:7a:2f:de:39:0d:37:7e:0d:3a:3e:09:
09:e9:c9:ed:e3:0c:52:86:ce:05:28:be:da:58:f7:63:86:5e:
0c:ef:97:a6:fe:6e:09:04:33:1a:0d:28:81:cb:77:a1:76:cc:
9f:81:f0:e0:57:a9:09:ad:d2:bb:f2:56:a3:c4:d6:eb:d1:28:
0b:9b:75:96:fc:a0:b2:33:11:f3:30:9e:4b:95:7a:8b:ac:39:
2a:e2:65:07:ba:17:aa:b8:12:4c:f8:45:d1:80:81:a9:fd:bf:
d1:d0:e9:fb:9d:e7:fe:d7:d2:fd:fd:73:ac:aa:d0:7d:7b:0f:
e0:f0:50:61:f1:40:83:c1:2f:7a:d4:05:a7:7e:41:45:f0:d4:
34:fe:4e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 12 18:15:30 2024 by rpki-client on console-fra.rpki-client.org