Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/9IVxjIljFfrDFOMntQVVUPGwhlc.roa
File: 9IVxjIljFfrDFOMntQVVUPGwhlc.roa (raw, json)
Hash identifier: 5qBvmOJWWU5D9wbHJdjTJRCxTlvULxcox8w4Zo7ridw=
Subject key identifier: F4:85:71:8C:89:63:15:FA:C3:14:E3:27:B5:05:55:50:F1:B0:86:57
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0191E1EB70B558475630C650498792D759B0
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/9IVxjIljFfrDFOMntQVVUPGwhlc.roa
Signing time: Wed 11 Sep 2024 16:29:48 +0000
ROA not before: Wed 11 Sep 2024 16:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 163.5.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 14:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e1:eb:70:b5:58:47:56:30:c6:50:49:87:92:d7:59:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 11 16:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f485718c896315fac314e327b5055550f1b08657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b7:0d:45:bf:8c:c5:60:58:b7:d4:09:80:6f:
6f:dd:df:a8:d0:b4:4c:bb:1c:83:58:11:ea:46:aa:
4e:4a:ac:19:96:d3:11:60:9e:e2:6b:0b:eb:0e:8f:
3e:38:cc:2b:2f:db:ae:81:81:ab:09:09:d4:0f:82:
92:35:46:56:ee:a9:bb:b5:95:14:90:6f:eb:b9:39:
f1:ef:aa:5d:1c:b0:b6:31:2d:0e:13:31:66:e5:57:
70:c8:6c:de:f5:e1:51:17:c7:5b:bb:78:12:bd:c6:
ec:2d:50:0c:2c:d9:ce:84:cc:13:74:ad:37:fb:14:
76:51:a1:4e:b3:9c:c3:88:41:2b:c8:16:12:eb:04:
47:bb:58:28:f8:b6:9b:9c:ab:08:05:1e:3b:e9:8e:
83:d9:28:c3:22:c0:9e:01:7b:df:62:49:30:b5:59:
bc:db:bd:1e:2a:9c:be:bb:d6:af:6a:fe:78:f1:fc:
cd:7a:44:45:69:2a:4f:05:1a:97:82:ce:78:2b:24:
0b:f3:e5:b4:40:c0:42:00:f5:72:af:e7:10:59:f7:
79:82:9d:03:84:4b:3c:9a:17:8d:2a:07:f5:f9:2b:
b1:04:3e:ea:c3:9c:95:85:cb:ba:e9:48:fc:bc:fd:
96:9c:77:88:9c:42:4f:ce:d9:aa:af:22:0b:0f:55:
77:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:85:71:8C:89:63:15:FA:C3:14:E3:27:B5:05:55:50:F1:B0:86:57
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/9IVxjIljFfrDFOMntQVVUPGwhlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.58.0/24
Signature Algorithm: sha256WithRSAEncryption
98:dd:e2:f6:13:b2:4d:28:7a:eb:8e:29:50:36:ed:9c:94:7a:
6a:3c:20:29:8b:49:41:ba:11:c6:6e:05:3d:de:14:ed:ba:c2:
ec:9d:ac:f5:28:33:3b:a7:e5:29:19:6c:5f:0c:38:a0:4c:00:
48:e9:7e:95:4f:bf:de:a2:14:cc:c7:a7:78:56:86:60:87:20:
79:1c:c1:7b:1a:6f:f9:e2:a6:89:4c:7f:9b:7c:8d:33:1f:8b:
ba:4f:11:b7:5e:35:a9:96:b9:fd:0a:5d:a8:f1:43:ef:0a:4d:
7e:5f:c9:63:59:02:13:13:fd:4b:ba:1a:d2:6a:c3:ab:b5:b4:
01:47:da:7c:e8:fa:c7:2a:64:9d:15:86:6c:59:49:56:ee:fb:
a4:03:ea:d7:2d:b6:98:6a:79:d9:9d:28:3c:4b:f5:69:26:35:
ad:c4:7e:03:d1:b9:70:a7:88:51:e8:7c:25:12:c0:77:07:f6:
95:75:1c:63:fc:a7:b0:36:f8:87:81:e2:a6:b5:ca:99:14:4c:
fe:62:30:67:14:98:b0:4d:7a:f8:87:f3:01:7e:6d:3b:f3:47:
17:5d:24:52:1b:69:8f:5b:17:2e:05:31:65:e6:84:25:26:2a:
d7:b6:53:b1:6c:b9:c9:1d:f1:b9:93:40:d9:b9:7b:aa:f6:8c:
2b:02:68:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 20:31:47 2024 by rpki-client on console-ams.rpki-client.org