Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/57WQzLYCxpUrR6omAPYSzzW1Gaw.roa
File: 57WQzLYCxpUrR6omAPYSzzW1Gaw.roa (raw, json)
Hash identifier: VIElLaYQ3M/IRxxLCy+jvR40+sW5FZMFGuT1/nj+djM=
Subject key identifier: E7:B5:90:CC:B6:02:C6:95:2B:47:AA:26:00:F6:12:CF:35:B5:19:AC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01857042D26AC6367C9C7B4A524C57E2EA21
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/57WQzLYCxpUrR6omAPYSzzW1Gaw.roa
Signing time: Mon 02 Jan 2023 02:15:05 +0000
ROA not before: Mon 02 Jan 2023 02:15:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 163.5.105.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Jan 2023 10:09:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:d2:6a:c6:36:7c:9c:7b:4a:52:4c:57:e2:ea:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 02:15:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7b590ccb602c6952b47aa2600f612cf35b519ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:3d:ef:9e:83:f6:c0:47:9c:56:b8:ba:b6:33:
3f:16:e9:58:5c:89:61:cc:0c:40:6b:b9:5c:2a:ab:
6b:db:6c:24:eb:54:9e:55:ef:f6:c8:f1:05:b2:d3:
32:01:c4:4d:95:48:5e:99:be:8d:47:e1:bc:8b:4a:
26:3d:6a:f6:c5:be:6f:49:04:97:4e:3f:53:60:98:
3d:ec:cf:f1:44:a6:4b:55:6b:e5:b8:23:09:13:07:
88:52:2e:08:1c:9b:4c:26:d5:d7:49:9c:d6:bd:60:
db:44:12:5b:5b:22:7b:d7:22:2a:0f:4f:ca:f5:bd:
fe:5c:52:42:e7:8a:cf:00:f8:1a:37:07:86:81:73:
44:38:0b:da:35:d1:a0:be:a4:e1:6a:35:11:6c:7f:
eb:99:bc:60:e3:f7:87:4e:4e:b0:28:d7:2a:f2:a8:
ca:ed:b0:24:9a:1c:fe:af:4a:19:22:71:70:b7:4d:
75:f6:cf:60:a6:fc:06:0b:c6:af:67:9b:76:4e:a6:
7b:f5:eb:ce:9a:22:09:35:a1:86:1a:6f:91:23:69:
eb:b0:80:4f:c7:b4:db:88:47:57:19:e1:d0:a2:a5:
2e:79:7e:d9:15:22:dd:18:22:45:e3:78:1b:8a:28:
7d:40:3b:82:ce:fd:24:cc:4f:63:a2:1c:e0:ac:d0:
29:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:B5:90:CC:B6:02:C6:95:2B:47:AA:26:00:F6:12:CF:35:B5:19:AC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/57WQzLYCxpUrR6omAPYSzzW1Gaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.102.0/24
163.5.105.0/24
163.5.242.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:d4:3c:30:55:de:66:1d:9b:37:92:7e:b1:24:4f:b2:4a:7b:
d7:f4:18:0f:d7:c5:c6:29:aa:9d:10:44:f4:e2:5b:db:1f:35:
3d:cd:4a:fb:67:9c:75:68:d2:17:54:6c:62:05:98:0d:8a:98:
ca:35:7b:dd:eb:3a:c9:a8:1e:02:30:a6:e8:6a:cc:02:f2:7b:
c3:a8:48:f7:87:26:e7:be:db:76:a9:d1:a2:4e:83:44:80:da:
02:91:ed:cd:17:30:24:77:9b:ee:91:3e:1b:1d:0c:7b:9b:54:
07:8c:3f:d7:bb:70:13:82:a0:fa:a0:d3:9c:a1:f1:13:bc:af:
f9:5f:c5:e6:36:e6:d7:00:62:40:32:23:99:11:ba:bc:5a:68:
33:03:14:78:2f:7a:f6:75:46:7c:52:e9:3d:7f:81:31:be:51:
a2:93:7a:b4:bc:9b:2b:db:0e:62:37:f2:dc:b7:4d:88:3b:eb:
aa:8b:1d:4c:ca:1c:34:7c:9a:1c:83:56:29:5b:3a:40:2e:c0:
6a:cb:d1:bb:96:09:0c:b7:25:e0:0d:b5:d0:da:4c:e1:28:04:
d8:21:93:fd:b7:7a:62:b8:58:17:2e:64:b0:d5:b5:87:1e:54:
37:15:c0:5c:9a:71:1e:70:22:37:42:f7:8f:d4:b8:61:4d:83:
4d:a3:8a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:28 2024 by rpki-client on console-ams.rpki-client.org