Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/B_dIAqlMjE3208A19XH6SKCASOo.roa
File: B_dIAqlMjE3208A19XH6SKCASOo.roa (raw, json)
Hash identifier: 5A0MEPyVogxU5juDnJ0Fu8Ba6zRVpaanYrKm4LRSzhk=
Subject key identifier: 07:F7:48:02:A9:4C:8C:4D:F6:D3:C0:35:F5:71:FA:48:A0:80:48:EA
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018AD306695F116590698B3590D8E981009A
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/B_dIAqlMjE3208A19XH6SKCASOo.roa
Signing time: Tue 26 Sep 2023 19:45:27 +0000
ROA not before: Tue 26 Sep 2023 19:45:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211376
IP address blocks: 163.5.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 05:59:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d3:06:69:5f:11:65:90:69:8b:35:90:d8:e9:81:00:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 26 19:45:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07f74802a94c8c4df6d3c035f571fa48a08048ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:65:89:a9:85:f2:7b:26:dc:d2:16:a6:a2:94:
05:78:92:ba:72:ce:1f:14:b5:bf:54:17:7c:cc:8e:
cc:1c:f2:6e:67:af:db:f9:2d:ec:69:19:00:24:15:
a4:ea:44:38:a8:82:36:16:cb:ec:b3:47:91:79:d1:
4c:e8:c9:0d:cc:78:d9:e0:23:f4:27:d2:de:81:da:
74:60:62:c5:3c:c3:5d:21:ca:dd:26:4e:01:90:21:
65:e4:7f:f7:fb:40:90:6e:c0:fd:0f:64:3b:13:3c:
e7:ac:61:91:ea:9f:ea:22:c0:b9:52:3e:e9:76:9d:
8c:7b:d7:80:88:75:12:4c:f4:02:e9:d7:57:09:07:
c6:e1:02:7a:04:b3:46:27:bd:64:cb:75:f6:2f:f7:
6c:43:9e:ae:86:7e:32:fe:f4:08:d2:4e:68:e8:0b:
be:77:c6:76:25:c2:e1:93:dd:be:af:14:17:a2:b2:
0c:9d:8a:ac:ad:17:11:e8:09:21:eb:e2:14:ad:b4:
4f:5b:13:76:c6:40:01:61:95:3d:52:52:a8:8d:fe:
0a:48:f9:6f:84:cc:3e:fe:e9:02:a5:80:9a:80:82:
b9:b8:d6:ad:e4:4c:af:53:82:1f:61:fc:cc:7b:b0:
61:33:46:56:f1:54:d8:6f:64:b6:40:cd:7e:85:e4:
c0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:F7:48:02:A9:4C:8C:4D:F6:D3:C0:35:F5:71:FA:48:A0:80:48:EA
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/B_dIAqlMjE3208A19XH6SKCASOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.208.0/24
Signature Algorithm: sha256WithRSAEncryption
48:ad:48:33:d1:90:bd:7d:8d:54:6f:22:95:a5:bc:40:50:6a:
59:66:94:d8:2c:6d:14:d1:03:4f:04:ed:72:59:a3:e5:ea:3b:
09:f6:5b:a1:94:64:87:59:ec:03:c9:b7:0b:b9:ee:04:c4:c7:
7b:c6:af:a7:04:12:44:cd:87:00:0b:5e:a7:37:02:9e:67:eb:
16:e7:a0:52:24:64:42:30:6a:40:62:4a:b6:38:33:21:14:33:
d3:41:dc:17:03:56:72:22:d0:fa:9b:79:eb:12:08:ac:e2:c3:
77:84:b8:25:4a:72:8e:2e:68:7e:53:52:7a:3a:2c:dd:11:22:
11:62:45:dd:8e:c4:29:43:45:a8:d0:60:93:a5:7b:24:19:d4:
1b:4a:7b:d4:e2:d9:dd:b0:a5:14:36:ac:ab:bf:dd:2c:77:b2:
b8:1e:9b:69:e5:6b:07:24:01:25:47:bf:e6:98:8c:ee:6e:51:
1f:fe:d3:8a:ee:4c:df:48:39:a4:df:18:cf:86:af:92:b0:a4:
83:8d:cb:0a:63:e6:41:73:b0:d9:43:66:da:67:e0:be:93:82:
2e:7b:3b:ab:d6:47:3b:53:8d:80:93:d5:19:23:63:f8:1a:3b:
54:90:a9:d8:69:78:26:83:29:83:bc:af:45:74:91:67:48:5d:
b2:2b:f1:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:04 2024 by rpki-client on console-fra.rpki-client.org