Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6HKYtr1cjOl-ZGROq6U8ET2Qm-U.roa
File: 6HKYtr1cjOl-ZGROq6U8ET2Qm-U.roa (raw, json)
Hash identifier: b98qkqJwWw0wViwua66lO2zR3Xd8Z46MbxwVabAurIg=
Subject key identifier: E8:72:98:B6:BD:5C:8C:E9:7E:64:64:4E:AB:A5:3C:11:3D:90:9B:E5
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018609D5CE3DB113713AFF3176DA673518ED
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6HKYtr1cjOl-ZGROq6U8ET2Qm-U.roa
Signing time: Tue 31 Jan 2023 21:57:32 +0000
ROA not before: Tue 31 Jan 2023 21:57:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200181
IP address blocks: 163.5.196.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:09:d5:ce:3d:b1:13:71:3a:ff:31:76:da:67:35:18:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 31 21:57:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e87298b6bd5c8ce97e64644eaba53c113d909be5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:62:03:2b:0f:73:3c:95:20:82:53:42:4d:f3:
42:b5:1f:d5:21:47:6e:6a:b2:ee:b6:47:2d:c2:48:
9b:f4:4d:6b:9d:ad:c1:75:e6:64:ff:a2:63:b1:de:
51:fe:8c:d1:41:8e:0a:50:0f:b3:22:0d:cc:94:e8:
c7:e5:06:42:51:53:57:76:76:2f:eb:bd:fe:0d:a2:
60:01:ad:3c:37:6d:d5:ae:20:b1:65:55:14:49:60:
b4:22:c7:fd:51:a1:cc:93:37:35:8f:fa:04:e0:6d:
fc:ba:7e:38:10:16:30:62:c3:37:f3:b9:fb:e3:4a:
ff:01:1e:b8:f0:1a:f3:d7:63:75:20:a4:c9:84:82:
ae:26:62:f0:11:52:ae:d3:9e:d7:aa:ba:2d:64:68:
1d:77:1c:f4:a0:a3:23:ba:98:69:17:c9:1d:4c:a8:
ea:c9:50:ad:a9:8d:c6:db:a7:ca:9f:25:ac:29:a9:
52:a3:33:81:3f:3b:8e:04:70:ba:00:2b:37:dc:09:
7e:53:a3:db:f0:5f:f3:c7:3a:bf:70:ec:58:80:48:
78:0f:09:70:19:a1:cf:c1:b4:46:47:61:96:98:2b:
c5:0e:74:8c:81:fd:88:65:1d:71:ab:a8:dd:30:99:
7c:10:93:99:93:92:28:9e:0e:ae:98:08:9d:d6:b7:
38:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:72:98:B6:BD:5C:8C:E9:7E:64:64:4E:AB:A5:3C:11:3D:90:9B:E5
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6HKYtr1cjOl-ZGROq6U8ET2Qm-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.196.0/24
Signature Algorithm: sha256WithRSAEncryption
67:05:17:34:6f:5a:b4:1e:c2:cb:ae:ae:49:07:ba:e8:07:4e:
af:81:3f:69:b6:a5:5d:fe:03:de:3d:b2:6a:c7:79:4a:ca:a7:
f9:69:8f:2e:3a:5f:cb:d6:e7:55:4d:74:23:9d:19:4b:52:c2:
5d:c9:4a:cc:ad:78:85:93:ae:14:65:fd:83:1f:b2:30:6e:fb:
49:8d:7a:39:2c:da:bf:45:d3:f9:a2:d0:33:7c:ed:7b:fe:ca:
d2:ed:50:ca:43:15:0b:d7:9c:9f:b5:28:6e:dd:93:e0:52:bf:
a4:37:cd:d9:a3:09:b3:fd:55:3a:16:b2:f0:3c:2a:ba:63:54:
87:4d:c8:ee:a4:fc:4e:87:f5:7d:68:fa:cb:51:31:26:38:91:
08:87:45:56:e0:56:f1:a4:a1:07:5a:82:c0:43:7f:c4:51:5f:
97:85:71:ac:eb:b7:92:30:bd:2d:a8:d0:48:1c:9a:cf:37:47:
fa:ad:d0:59:c2:8e:d9:38:93:8f:c7:82:71:6d:ae:a1:d0:40:
5b:85:b3:99:57:7d:78:4c:21:36:81:b2:7a:60:6f:3b:2a:08:
22:ec:d5:d5:c8:c1:1c:29:48:f8:dc:c9:fe:d5:bd:3f:51:81:
83:b9:ca:ea:88:3b:21:67:65:ea:2e:2e:bf:a3:fb:80:9f:17:
e5:6a:d7:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:18 2024 by rpki-client on console-fra.rpki-client.org