Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/CrgQ0PscjagjyG5c18vQG2GO2lY.roa
File: CrgQ0PscjagjyG5c18vQG2GO2lY.roa (raw, json)
Hash identifier: MRk6g6vc8MlU2rutOBR2P1cAn79P3DEF9ZUskeesRTY=
Subject key identifier: 0A:B8:10:D0:FB:1C:8D:A8:23:C8:6E:5C:D7:CB:D0:1B:61:8E:DA:56
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01870B3C36787A5D6B732D764C03A8183565
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/CrgQ0PscjagjyG5c18vQG2GO2lY.roa
Signing time: Wed 22 Mar 2023 21:31:48 +0000
ROA not before: Wed 22 Mar 2023 21:31:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29837
IP address blocks: 163.5.237.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0b:3c:36:78:7a:5d:6b:73:2d:76:4c:03:a8:18:35:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Mar 22 21:31:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ab810d0fb1c8da823c86e5cd7cbd01b618eda56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:30:7f:b8:d6:6d:a5:67:0a:61:2c:19:88:96:
b8:76:e1:11:7e:d4:cf:4c:7c:40:84:3a:de:3b:24:
c3:b1:90:40:bd:2e:33:4a:53:de:03:1e:93:54:c2:
94:aa:01:0d:08:30:5a:64:0c:60:a2:cd:3d:c1:0d:
45:ce:6f:fd:8f:6e:2b:3a:fc:29:aa:7a:f8:33:9d:
4a:ed:f4:b3:e4:97:a8:12:b4:c9:93:8f:83:e6:07:
79:96:1b:7a:23:d0:83:a4:b9:cd:7d:e1:1f:a2:6a:
13:77:22:20:85:7d:d4:d0:fa:2c:c5:f4:a0:84:04:
ff:81:a6:7b:07:7e:74:70:12:f1:54:72:b6:ec:9e:
db:df:91:b6:d8:ec:b2:40:2f:b4:54:06:90:98:d5:
7a:41:02:b3:85:9c:a6:39:d0:58:ba:d9:a6:bc:a8:
72:3f:89:87:f0:69:aa:7e:d2:ba:ee:5b:63:75:65:
b2:91:02:8d:64:98:a8:80:e5:06:d3:5b:c0:c3:1a:
d4:b5:41:79:2c:a9:b8:f0:63:73:c2:1c:c4:0f:a1:
5c:49:19:ea:f8:b1:f1:f4:fb:0f:ae:1e:b8:54:aa:
af:ba:93:80:e9:dd:fd:d0:e6:54:2b:ac:99:8f:5c:
37:30:8f:c6:55:15:23:85:76:bf:52:aa:42:e5:10:
64:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B8:10:D0:FB:1C:8D:A8:23:C8:6E:5C:D7:CB:D0:1B:61:8E:DA:56
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/CrgQ0PscjagjyG5c18vQG2GO2lY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.237.0/24
Signature Algorithm: sha256WithRSAEncryption
05:3d:db:cb:69:eb:ff:79:73:7b:9a:4e:68:49:74:b2:a8:ed:
78:90:a5:52:69:e3:66:35:a1:b4:31:25:11:72:af:42:55:45:
22:ec:66:3e:f9:67:50:c3:2a:27:b5:98:2a:53:57:4d:af:81:
c1:fd:03:e6:26:8a:50:48:12:8c:44:06:09:e6:55:ba:e1:b8:
31:1f:2c:bf:f0:bf:56:c0:d2:19:bf:eb:1f:3a:65:c4:f0:55:
dd:e7:65:c4:97:d5:ac:ef:a5:3c:49:33:90:51:15:e6:67:04:
53:76:d9:c3:3b:2a:d4:de:ab:e5:f7:19:74:6b:c2:0d:69:83:
a7:a6:d7:49:74:ad:c2:55:bd:63:a6:ff:6a:a6:74:7c:87:17:
64:ca:83:9b:4f:bc:f5:ed:60:c8:96:0d:70:3d:f1:fb:36:36:
b6:11:39:8b:f7:0c:fc:cc:68:ed:09:0b:13:5a:5c:38:61:6e:
93:56:28:fb:75:b4:01:d3:33:1d:a4:9e:e6:cf:9c:3d:49:db:
87:98:0c:f6:e8:ae:cf:3f:e5:91:3a:b2:65:59:39:6e:fd:03:
2b:b9:89:b1:a9:58:78:56:25:63:37:78:a5:f0:53:8b:c6:d4:
60:f0:c5:91:d4:e2:9e:51:18:72:21:47:95:40:34:09:50:3a:
b0:47:bd:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 24 21:15:16 2023 by rpki-client on console-fra.rpki-client.org