Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/5OxwAIS7-CnqUpdUAUdnAfBPysI.roa
File: 5OxwAIS7-CnqUpdUAUdnAfBPysI.roa (raw, json)
Hash identifier: 0spu7K3ncLJcAFjTW1RYtLjy8eAA/IETvtZ1BTTUl5Q=
Subject key identifier: E4:EC:70:00:84:BB:F8:29:EA:52:97:54:01:47:67:01:F0:4F:CA:C2
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019054FE6EFC6CE832DEFC432A82DE83D351
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/5OxwAIS7-CnqUpdUAUdnAfBPysI.roa
Signing time: Wed 26 Jun 2024 14:41:18 +0000
ROA not before: Wed 26 Jun 2024 14:41:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 163.5.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jul 2024 10:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:54:fe:6e:fc:6c:e8:32:de:fc:43:2a:82:de:83:d3:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 26 14:41:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4ec700084bbf829ea52975401476701f04fcac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:99:c3:59:32:e8:02:4b:ba:bb:20:1c:28:a5:
59:26:e5:cb:1e:54:7a:42:b0:90:10:af:0e:cf:09:
f8:0a:ec:ec:b7:bd:85:98:8b:4e:20:31:97:03:09:
b3:a5:73:4b:74:82:ed:d7:6b:ad:12:81:54:2f:7d:
1b:b1:0c:12:c5:ee:5c:07:25:c5:07:ea:b7:bc:07:
e3:62:4f:d7:86:78:4b:ec:7d:52:8e:3c:1f:6a:28:
b8:02:3c:4f:67:76:02:55:28:ac:33:45:a4:d4:b1:
be:7a:1d:3f:3a:87:7b:81:be:66:ec:1e:ad:69:65:
7d:c9:11:1e:fa:ef:c1:5a:0e:6a:6e:27:a1:a4:0a:
67:65:2c:24:06:ba:00:b6:da:f2:7f:90:ee:28:0b:
53:a9:74:4b:b3:76:c8:99:1b:ea:1f:fe:e9:f3:63:
6d:8b:72:1d:4d:1c:97:b4:8e:7f:b8:60:55:02:31:
e7:72:c7:e9:b3:f2:fa:f6:d2:53:d9:75:23:e3:9b:
2f:a5:2b:a5:c3:bb:99:68:5f:5a:1d:bb:6d:3e:f1:
ac:21:3f:0f:06:0b:3c:25:da:e0:19:e0:9e:3e:3c:
cb:55:d6:88:03:47:25:16:2c:03:f7:7a:95:1e:cf:
dc:e8:5a:c2:d7:b6:52:30:e8:07:15:5f:22:6f:b1:
49:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:EC:70:00:84:BB:F8:29:EA:52:97:54:01:47:67:01:F0:4F:CA:C2
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/5OxwAIS7-CnqUpdUAUdnAfBPysI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.199.0/24
Signature Algorithm: sha256WithRSAEncryption
27:72:45:f6:f6:ea:65:1e:42:6e:3c:7f:49:83:6e:4a:bf:c0:
08:3d:f3:ee:37:46:4e:fb:1d:c0:e6:ff:0b:e2:c7:18:3d:05:
65:2a:3d:47:b7:58:f5:cf:4e:63:86:af:7e:1d:09:ac:46:2f:
e4:97:4a:69:38:90:cd:00:48:65:0b:3d:ba:ce:86:1b:58:4f:
f5:52:7a:3f:29:18:3f:04:10:2e:e8:9a:cf:a2:d5:ce:78:0c:
2a:97:39:e6:c3:2a:8c:2d:3e:cb:fd:ab:77:de:34:38:fe:06:
a2:c3:52:b4:e5:d9:42:ea:35:0d:74:70:38:52:a3:dd:6c:bd:
24:70:be:b8:70:9b:d3:1b:1e:df:41:7f:e0:cb:e4:b2:24:55:
1a:91:c0:d3:a1:29:91:aa:18:05:ef:d4:d3:59:f3:09:06:f2:
52:4d:8c:bd:00:ac:de:69:af:ac:7a:7b:70:f6:2f:02:3e:dc:
25:0f:2c:5b:c6:41:46:f5:5c:5f:31:16:01:d7:b8:45:1e:84:
a7:19:4d:b2:f6:af:a9:d8:71:5d:28:9e:ca:fd:dc:d9:98:f1:
40:5a:25:8a:aa:3f:9a:43:92:a4:2a:a1:32:48:0a:07:e2:2a:
3a:f8:64:0f:cd:b9:4b:ed:3c:df:67:d6:38:53:f8:9b:08:68:
53:c7:1d:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 12:45:48 2024 by rpki-client on console-ams.rpki-client.org