Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IDLqPoZv6VeKBNQc2p7IG8mjj3g.roa
File: IDLqPoZv6VeKBNQc2p7IG8mjj3g.roa (raw, json)
Hash identifier: OJ0YLZO4cQR1ge6aFMdE/DSNooLzbwBdqrmF+r4ZIcI=
Subject key identifier: 20:32:EA:3E:86:6F:E9:57:8A:04:D4:1C:DA:9E:C8:1B:C9:A3:8F:78
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0188DF3FC0A1445BF8ACAAA741D444505182
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IDLqPoZv6VeKBNQc2p7IG8mjj3g.roa
Signing time: Wed 21 Jun 2023 18:37:57 +0000
ROA not before: Wed 21 Jun 2023 18:37:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 163.5.194.0/24 maxlen: 24
163.5.207.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:df:3f:c0:a1:44:5b:f8:ac:aa:a7:41:d4:44:50:51:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 21 18:37:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2032ea3e866fe9578a04d41cda9ec81bc9a38f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3d:cf:64:7a:6e:2f:6b:9d:8a:71:6f:85:8b:
ac:46:b6:fb:82:63:4e:90:29:35:d1:6d:2e:b6:6e:
81:c1:1a:1d:3a:10:fa:b0:fe:93:e9:3f:8d:61:eb:
5e:1b:e2:65:20:f8:e9:0a:9a:d6:1b:65:fc:24:96:
38:67:c0:47:cb:73:11:cb:f9:95:04:37:9f:b1:fe:
6f:27:23:b0:42:07:98:43:7f:2d:ca:f3:03:24:ff:
14:a9:20:06:6d:ca:a4:2f:f0:4c:3c:d0:af:db:8c:
bd:43:f8:42:45:92:d1:44:5e:e1:19:24:3e:b8:eb:
21:0e:be:d0:d9:9e:a3:fd:34:c0:54:10:e4:25:2e:
8c:88:02:4f:37:41:73:d7:b1:af:c5:06:89:25:90:
d9:19:37:c8:42:c5:85:d1:d5:d2:a2:6f:2c:c5:ce:
bb:39:ce:1e:a1:2f:11:bd:fe:96:5a:68:dc:83:96:
59:7c:29:42:cf:87:62:1f:95:7c:7e:da:1d:a8:a5:
af:f1:04:d2:b4:f1:6c:2c:c1:7b:12:fe:01:9d:f1:
0c:01:c8:7b:fd:33:51:b8:07:ba:f2:7e:a2:74:cc:
ca:e1:77:41:06:48:eb:b1:9e:bc:4e:a5:44:a7:4c:
97:2d:dd:09:d1:f8:ed:2f:21:69:29:e4:98:29:5a:
33:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:32:EA:3E:86:6F:E9:57:8A:04:D4:1C:DA:9E:C8:1B:C9:A3:8F:78
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IDLqPoZv6VeKBNQc2p7IG8mjj3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.129.0/24
163.5.194.0/24
163.5.207.0/24
Signature Algorithm: sha256WithRSAEncryption
20:96:d0:0b:ba:e9:97:19:2a:cf:31:a1:cf:5c:6c:98:30:35:
1e:5d:9c:c9:f4:27:3b:cb:7f:f3:c7:77:7b:71:0e:2e:a9:31:
59:70:5e:f2:e0:60:9f:b2:bd:65:95:5d:00:5d:6e:d3:89:79:
9a:fd:3b:c4:90:2c:af:8b:b7:63:31:f1:c7:04:40:c4:4c:4a:
1b:6d:2c:dc:50:dc:4d:e4:39:79:9d:a0:20:31:67:3c:e5:dc:
52:3f:d2:4d:49:b0:96:af:9b:5d:a2:e4:c0:87:b5:d8:fb:6a:
d7:46:14:c5:5b:80:48:76:6b:d3:1f:04:12:be:99:ce:cb:77:
1a:4f:42:72:05:7c:c0:02:58:af:3b:40:58:c6:a0:7e:16:9b:
c6:29:99:66:60:50:87:2d:b8:cb:50:b0:25:53:92:4a:73:f9:
16:5c:82:16:48:2a:57:22:e1:ec:5f:04:1c:87:52:c2:ec:a7:
88:2b:34:04:2a:a8:75:de:85:b2:a7:fc:95:9b:aa:ce:dd:4a:
a2:06:2c:47:38:41:56:c3:b8:6b:39:67:3c:21:87:66:3e:f2:
00:59:b2:23:3e:7f:02:35:66:50:9d:c1:9b:cf:52:66:71:43:
eb:50:33:60:60:07:b0:a4:55:e5:da:97:96:96:e8:15:76:62:
b6:8e:23:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 10 12:59:43 2023 by rpki-client on console-fra.rpki-client.org