Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/60D39MwaQ7H5HHxrQ5fD3Wacllk.roa
File: 60D39MwaQ7H5HHxrQ5fD3Wacllk.roa (raw, json)
Hash identifier: JMhiO4lsDLRrdIGv9J7pa8a1RJLVuRgsCo92q3a6NvY=
Subject key identifier: EB:40:F7:F4:CC:1A:43:B1:F9:1C:7C:6B:43:97:C3:DD:66:9C:96:59
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018E2365607CBCAAC7F117B293D67B32BA4D
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/60D39MwaQ7H5HHxrQ5fD3Wacllk.roa
Signing time: Sat 09 Mar 2024 13:27:10 +0000
ROA not before: Sat 09 Mar 2024 13:27:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 163.5.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Apr 2024 16:35:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:23:65:60:7c:bc:aa:c7:f1:17:b2:93:d6:7b:32:ba:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Mar 9 13:27:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb40f7f4cc1a43b1f91c7c6b4397c3dd669c9659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b9:96:06:0d:66:c4:3f:f8:a3:10:23:3c:6f:
9b:e3:9d:ee:8b:d5:79:5a:57:2f:09:25:3d:eb:16:
23:4a:34:97:d1:71:03:7e:b0:99:ae:4e:b2:fc:ff:
75:ec:ab:d1:27:13:64:e8:d3:8b:a8:32:70:06:c8:
d9:4e:90:73:1d:b2:53:25:33:45:59:ea:d9:b9:93:
a8:73:90:f1:84:2c:b7:01:f1:a5:9e:d5:5e:a8:84:
3a:99:11:27:a4:9a:ab:1f:77:8c:4b:3b:52:37:a6:
de:78:34:71:65:80:c0:cd:48:c6:fb:2c:fa:3f:fd:
8f:66:82:ee:8c:6c:55:82:c9:4a:8a:40:26:fb:90:
7c:64:f5:1e:26:22:be:45:4a:05:78:93:0d:83:26:
5b:92:ba:5a:6a:88:1f:bf:1b:67:b0:5d:2a:52:73:
a6:29:90:93:44:22:b2:36:c7:8c:8e:29:4b:6b:2d:
9a:5a:e2:ce:49:9d:b3:73:4e:ee:f7:48:f1:52:06:
d5:97:f9:83:2d:41:66:08:56:42:b1:db:1d:1e:c7:
6c:c2:ea:49:50:49:50:5d:5d:4c:3a:ef:c4:a5:fa:
d0:da:75:1f:f0:44:c4:58:d0:9b:b7:43:69:68:3f:
74:c3:2a:70:3e:58:1c:b5:e7:e7:32:91:59:7c:c9:
50:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:40:F7:F4:CC:1A:43:B1:F9:1C:7C:6B:43:97:C3:DD:66:9C:96:59
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/60D39MwaQ7H5HHxrQ5fD3Wacllk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.242.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:1b:cb:f5:64:d0:ba:b7:84:19:0c:9f:bf:e4:41:9b:f8:89:
e0:90:9e:a5:dd:b0:72:1d:47:62:c4:af:79:97:91:83:c9:48:
98:1c:2a:90:30:46:02:97:ba:ce:31:0d:67:f9:83:5d:b2:18:
cd:52:86:a1:5d:47:37:39:80:a2:6e:2e:37:ac:b5:50:e4:38:
16:ab:9a:a2:10:d0:8c:9c:13:c2:c4:56:f6:3c:a2:3d:ca:5f:
13:f4:85:f9:be:16:d6:b0:0c:2b:a5:31:ff:99:87:8d:d5:40:
eb:f2:36:37:0c:7f:69:30:83:34:df:78:00:2c:c2:e6:4d:fb:
fc:a1:63:7f:27:53:7e:7c:cd:34:7c:ed:9a:d2:6a:25:3e:70:
2d:79:fa:d9:7f:20:7e:28:f3:28:55:94:3d:86:93:40:cb:20:
89:3b:90:e7:e6:93:03:e1:f6:9b:a1:1b:1f:d5:ac:21:20:a1:
6f:4f:6e:02:d6:cd:15:9f:78:8b:b6:2b:e7:85:d1:2a:f0:69:
9d:b4:d4:5a:e0:45:42:12:79:48:21:12:9a:e3:7b:44:b9:f4:
68:e5:00:01:15:0a:a4:12:06:6c:0f:b8:fd:fb:b1:b5:6d:47:
9e:36:cd:74:c0:97:4a:36:6b:14:de:84:d7:6b:bb:29:05:59:
27:4f:30:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 7 17:47:25 2024 by rpki-client on console-fra.rpki-client.org