Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6NVg3n8kQ7hif00vaC7MCpGGInQ.roa
File: 6NVg3n8kQ7hif00vaC7MCpGGInQ.roa (raw, json)
Hash identifier: cPyT/5QdpgB4gfS9TdsC1U2FDjO39yDU2GCbHu9z4rE=
Subject key identifier: E8:D5:60:DE:7F:24:43:B8:62:7F:4D:2F:68:2E:CC:0A:91:86:22:74
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018653BFA2C1DD61D3B10185069E3986A489
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6NVg3n8kQ7hif00vaC7MCpGGInQ.roa
Signing time: Wed 15 Feb 2023 06:25:13 +0000
ROA not before: Wed 15 Feb 2023 06:25:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 163.5.105.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.115.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.229.0/24 maxlen: 24
163.5.242.0/24 maxlen: 24
163.5.32.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.215.0/24 maxlen: 24
163.5.220.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.153.0/24 maxlen: 24
163.5.159.0/24 maxlen: 24
163.5.168.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:53:bf:a2:c1:dd:61:d3:b1:01:85:06:9e:39:86:a4:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 15 06:25:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8d560de7f2443b8627f4d2f682ecc0a91862274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e2:15:41:36:de:1e:87:22:01:2d:a5:b9:aa:
f3:87:b8:76:8a:ae:ff:64:89:14:7c:3e:ed:f0:74:
50:aa:db:d0:08:5c:7c:3e:c0:15:91:30:01:7e:c1:
0b:df:c0:0f:e8:67:48:b2:0c:81:6b:33:06:ee:2d:
89:70:ca:5e:3a:87:c9:89:1e:83:53:19:17:65:d7:
a3:db:17:b8:5b:34:63:96:66:4f:a5:3e:85:55:85:
80:83:fd:77:d0:3b:bf:b6:74:ed:ce:62:92:59:c4:
97:82:68:76:5d:a8:d2:f0:77:69:a8:d9:01:49:5f:
55:a1:d5:95:a9:d2:58:2e:26:4f:4d:ea:9e:76:72:
7d:ee:cd:d5:8a:f0:66:1a:99:c5:c5:68:20:8a:e2:
07:68:2c:d1:c2:d1:fe:aa:5b:35:5d:0a:50:6b:34:
70:4b:15:f6:3e:73:08:90:34:95:40:e2:5c:c0:d5:
ee:97:c6:a3:56:76:a2:5e:91:7d:93:b9:1e:48:d4:
c3:50:8c:a5:66:37:3e:0c:f0:b6:41:a4:6d:ca:47:
46:1b:65:41:ef:1c:b3:65:e8:0a:83:07:9b:1b:3a:
0e:c8:44:9f:f9:0a:0e:76:62:4a:d0:b7:14:9b:2e:
71:1e:64:67:0f:57:45:c3:09:7b:af:68:06:e4:4d:
94:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D5:60:DE:7F:24:43:B8:62:7F:4D:2F:68:2E:CC:0A:91:86:22:74
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6NVg3n8kQ7hif00vaC7MCpGGInQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.32.0/24
163.5.105.0-163.5.106.255
163.5.115.0/24
163.5.118.0/23
163.5.121.0/24
163.5.153.0/24
163.5.159.0/24
163.5.168.0/24
163.5.212.0/24
163.5.215.0/24
163.5.220.0/24
163.5.225.0/24
163.5.229.0/24
163.5.242.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:b7:0d:ec:3a:02:e5:ad:dc:9b:03:42:2c:15:f0:ce:d7:81:
92:8a:21:b3:38:14:ee:09:40:39:3f:80:aa:d1:11:88:0a:88:
c2:39:d3:fe:12:ae:0f:c4:c7:4e:db:d5:b2:4b:14:41:18:cf:
4a:8f:25:60:fd:0b:d6:2f:6a:8c:f9:2c:94:1f:d2:b2:06:7d:
6d:a6:28:ac:6a:43:66:86:c0:a4:42:44:2e:b3:41:d5:e3:12:
7c:87:4b:0d:2b:9e:f8:e4:c4:36:98:98:44:47:fe:a2:78:6d:
bf:74:1d:00:2a:72:27:a9:a2:ba:93:3b:76:56:e6:5b:5c:e4:
cb:5a:93:f1:81:a7:0d:26:1c:09:81:7c:82:ff:2a:27:b1:fc:
94:f0:b0:bb:82:e1:3e:e6:10:0b:bb:9a:7d:4e:ba:fa:64:d5:
d8:0d:13:94:7f:da:4d:6c:57:81:a1:32:c8:ab:08:3e:15:04:
32:96:31:44:51:c4:91:eb:8d:2a:ca:ea:07:9b:3f:a8:57:f7:
06:f6:f9:4e:d3:81:62:f2:ea:58:18:2a:62:9e:a6:8d:79:f7:
51:05:e3:4c:b4:81:2c:70:54:a2:d2:5f:b0:5a:1c:5c:73:0b:
d7:15:4b:e1:68:53:8d:18:8d:ed:96:09:bd:6f:bf:ac:47:2c:
52:48:0c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:08 2023 by rpki-client on console-ams.rpki-client.org