Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/F3f6QS9UYXlf4i67GFwbJjJXWyU.roa
File: F3f6QS9UYXlf4i67GFwbJjJXWyU.roa (raw, json)
Hash identifier: bBVwehwtGw08DG+F4ZI1rVvA6hdDWqNtts+NM9qhl2g=
Subject key identifier: 17:77:FA:41:2F:54:61:79:5F:E2:2E:BB:18:5C:1B:26:32:57:5B:25
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0190F8B27B585BE7FDF431747C3D6C97DD0C
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/F3f6QS9UYXlf4i67GFwbJjJXWyU.roa
Signing time: Sun 28 Jul 2024 09:36:04 +0000
ROA not before: Sun 28 Jul 2024 09:36:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199912
IP address blocks: 163.5.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 27 Oct 2024 08:29:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f8:b2:7b:58:5b:e7:fd:f4:31:74:7c:3d:6c:97:dd:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 28 09:36:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1777fa412f5461795fe22ebb185c1b2632575b25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d4:ab:65:8c:67:a7:b2:e6:39:4a:c1:65:c9:
11:86:27:e1:45:b5:25:21:80:07:05:42:76:bc:1d:
63:83:01:d2:4e:5f:46:ad:d5:45:4a:19:11:d4:8c:
1b:40:bc:37:e2:39:f6:a7:02:e3:8b:58:37:f4:ee:
f1:4c:64:55:18:1b:23:0c:e1:08:89:26:86:69:b3:
0f:83:d6:e1:8c:e7:05:14:32:e9:3c:09:70:22:74:
dc:eb:1e:a4:cf:70:5e:ec:54:a3:f4:63:45:c1:39:
81:86:28:6a:98:72:9b:1d:9e:c7:16:c4:84:bd:29:
21:95:65:b5:30:8a:2d:53:59:2d:38:53:d5:c9:7d:
73:4d:68:10:cf:f2:5f:9d:73:57:a3:0c:2e:0e:68:
ca:8b:0b:15:34:7b:21:1c:20:ee:94:14:3e:f7:27:
a6:55:4c:33:c9:ab:b9:f5:c5:14:7e:37:bb:0f:29:
8d:43:ae:c8:8f:ae:26:c2:ec:2c:f9:13:a3:dc:99:
6a:28:b1:00:2d:66:e8:7a:dc:1f:c6:d4:6e:22:aa:
ee:51:2d:4e:5b:24:5e:95:8e:c3:a0:ae:91:49:a5:
c1:7b:2c:30:b0:e3:e0:21:04:ee:bf:cb:27:da:32:
4e:a5:9f:42:02:23:b0:47:b6:e4:61:93:36:07:7f:
f5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:77:FA:41:2F:54:61:79:5F:E2:2E:BB:18:5C:1B:26:32:57:5B:25
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/F3f6QS9UYXlf4i67GFwbJjJXWyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.215.0/24
Signature Algorithm: sha256WithRSAEncryption
37:38:c0:fd:a4:6a:ca:d2:f2:99:7a:f0:03:0f:58:86:5e:53:
e9:a7:ab:16:67:99:dc:13:62:99:0c:b6:c2:56:ae:ce:64:f5:
df:8b:9d:92:8e:48:8d:24:9a:ea:4f:23:8d:d9:af:18:a1:cd:
5f:71:fc:6b:21:8f:78:2e:71:a4:59:42:18:47:39:1b:1f:63:
df:ba:85:0d:13:19:4f:ce:7b:2b:cb:32:83:35:34:2b:f4:1a:
46:6a:4b:ef:de:78:1e:c9:fc:77:59:b2:dc:a3:56:69:21:25:
a1:95:7e:9f:0d:4f:f7:c5:ea:f0:a3:3f:61:d2:40:04:83:9d:
23:69:33:72:57:b1:fa:8b:7b:c9:51:91:a0:19:72:2e:37:48:
3a:df:fc:10:61:ab:c7:01:64:10:26:4c:04:1e:b7:81:91:78:
16:cf:69:5b:73:25:65:20:a0:10:0c:51:41:f0:ab:63:7b:cf:
39:25:e8:99:45:ae:90:0d:34:1e:1c:ee:f8:b1:d2:d5:c5:ae:
c1:8e:a8:e5:ce:5c:f4:5d:7e:9a:68:26:08:47:a7:87:54:cf:
75:71:c7:41:a7:93:b7:cf:36:46:41:40:d5:a1:be:44:3c:b8:
61:81:fc:8d:d5:a2:11:bf:17:2c:fc:a5:76:87:ac:1b:14:b8:
ff:00:49:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 27 10:29:18 2024 by rpki-client on console-ams.rpki-client.org