Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/85Tcl4nQwcozl9vL6wyzLAcnfhY.roa
File: 85Tcl4nQwcozl9vL6wyzLAcnfhY.roa (raw, json)
Hash identifier: O92Wwbotu8Y4HHXEV9YKq8vMVb09Tsm+YL3WUZMyclw=
Subject key identifier: F3:94:DC:97:89:D0:C1:CA:33:97:DB:CB:EB:0C:B3:2C:07:27:7E:16
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B47C57C91ED0D44961C1A739F99DD2E0D
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/85Tcl4nQwcozl9vL6wyzLAcnfhY.roa
Signing time: Thu 19 Oct 2023 11:50:06 +0000
ROA not before: Thu 19 Oct 2023 11:50:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54252
IP address blocks: 163.5.216.0/24 maxlen: 24
163.5.123.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:c5:7c:91:ed:0d:44:96:1c:1a:73:9f:99:dd:2e:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 19 11:50:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f394dc9789d0c1ca3397dbcbeb0cb32c07277e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b6:28:da:55:c2:f8:42:0f:ea:01:c2:1d:81:
4f:4f:32:82:76:44:3a:d2:15:15:e8:ec:ba:b6:2b:
c7:78:33:ea:19:87:ff:f7:5c:dc:0e:78:d2:2b:80:
df:f6:77:2f:cc:94:46:08:e5:b8:36:e7:9c:4c:7b:
da:05:24:30:90:4c:af:85:0b:38:64:88:35:d7:72:
03:ed:00:bd:1c:ff:34:ea:ef:30:be:3b:5e:57:cc:
8c:fa:8d:be:9a:f9:a2:7c:a5:50:23:49:7b:8b:ed:
f5:ec:29:e5:2f:96:d9:22:60:7e:eb:58:dc:d0:4a:
e9:2b:40:b4:93:60:a1:f1:c3:ae:9b:c6:a2:35:58:
7e:15:e4:57:8b:c7:67:bd:c8:6d:bf:f8:44:7f:4a:
d5:d2:92:01:a8:f8:7e:c5:ab:ff:2c:5b:36:48:92:
85:9f:17:00:8d:7f:a9:00:3c:76:9a:68:63:ea:cd:
c3:ad:8b:53:29:93:ae:ea:1c:50:4c:0a:fb:6c:c8:
27:c9:33:7e:8e:9a:88:c4:f3:5f:cc:e8:d8:2a:7a:
fa:bf:f3:98:20:b8:33:a4:96:14:85:0b:b1:20:d8:
79:a6:c9:b6:69:1c:ca:cc:fd:7f:1c:34:76:7c:4c:
0d:5a:fd:e7:ff:4f:59:23:1d:8b:43:cf:14:db:11:
cb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:94:DC:97:89:D0:C1:CA:33:97:DB:CB:EB:0C:B3:2C:07:27:7E:16
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/85Tcl4nQwcozl9vL6wyzLAcnfhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.123.0/24
163.5.216.0/24
Signature Algorithm: sha256WithRSAEncryption
67:11:5b:07:82:18:70:c0:25:5c:2b:61:69:3f:62:b5:c1:45:
7d:0c:51:54:3a:68:ff:30:65:fb:85:b7:5f:3c:79:2d:ed:b4:
9f:f5:ef:8d:89:75:24:4e:7a:c9:97:f6:bb:36:68:6a:e3:8f:
86:f5:79:08:cc:22:0b:78:ac:79:a2:05:b1:77:8a:48:90:2b:
ec:2c:df:88:64:59:1e:5a:f5:32:90:b8:4c:e4:b4:89:76:61:
3e:a5:96:61:4e:c8:b7:9a:fb:6f:24:c5:58:18:54:c2:5f:c5:
ef:dc:21:9f:ba:43:61:1c:cf:32:5a:ed:4e:21:94:52:ae:b1:
69:56:f2:03:d2:9c:60:33:b8:12:f2:3b:d8:59:13:d1:34:de:
84:9b:5b:58:c4:31:80:71:f4:b8:4a:b9:59:7f:34:9e:f4:81:
79:f0:12:f6:19:74:13:e6:69:69:4d:98:42:62:fc:ec:ce:1a:
6b:40:38:0c:ca:8a:66:df:16:36:3c:b8:75:29:7e:a5:fc:51:
68:59:00:dc:6f:7e:29:8e:44:13:87:10:f8:98:bd:cd:11:bf:
6c:11:24:b6:6c:52:36:25:73:80:b2:d4:62:20:e9:1b:d7:8a:
b3:54:21:df:1b:93:a5:b5:0b:fa:88:ac:c5:01:fd:5b:2b:95:
6f:c5:8c:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:19 2024 by rpki-client on console-fra.rpki-client.org