Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IDUiksU_cMyd3s9B1UdrmnKKVUA.roa
File: IDUiksU_cMyd3s9B1UdrmnKKVUA.roa (raw, json)
Hash identifier: 3fokddk0dDVWbC7q26896EsBooUMj1H9gO4r3lOJRkg=
Subject key identifier: 20:35:22:92:C5:3F:70:CC:9D:DE:CF:41:D5:47:6B:9A:72:8A:55:40
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01895A90E2766CA8E8734E8FB71216B20DF5
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IDUiksU_cMyd3s9B1UdrmnKKVUA.roa
Signing time: Sat 15 Jul 2023 17:19:51 +0000
ROA not before: Sat 15 Jul 2023 17:19:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203446
IP address blocks: 163.5.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 17:35:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:5a:90:e2:76:6c:a8:e8:73:4e:8f:b7:12:16:b2:0d:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 15 17:19:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20352292c53f70cc9ddecf41d5476b9a728a5540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:42:db:c9:32:37:f9:50:01:80:ba:bb:02:fe:
51:51:f0:cd:1b:c3:8a:bb:22:cd:df:d4:bf:ea:37:
c5:04:90:74:8a:45:85:65:b3:cb:56:0f:25:64:e5:
36:85:86:b6:00:53:a6:d7:a2:da:e4:ff:ad:15:05:
20:7d:de:29:57:0e:cc:26:f2:aa:4c:77:6f:a7:0f:
2b:49:9e:2e:5d:ed:60:88:b6:26:d1:a0:cd:01:ef:
d0:ba:21:9f:3d:9b:63:15:95:aa:be:7c:a4:29:27:
df:72:f3:08:29:4f:0a:15:95:a9:e4:9a:c9:c4:62:
e2:0c:8d:45:8c:6b:af:61:1e:b1:06:d2:09:46:ab:
64:6f:cb:cb:4a:4e:57:d9:cc:97:9c:2b:31:4f:3b:
05:25:fa:93:29:6d:17:3c:dc:8c:c6:68:d9:e8:8e:
ce:e7:73:38:6c:b0:ca:75:f7:4b:94:e6:69:5b:49:
9c:8f:fa:2b:72:0e:6e:e4:42:c0:08:45:34:5b:14:
c0:a5:96:25:81:d8:f8:d1:c2:d4:19:9b:ce:9d:76:
10:dd:b3:1e:8b:6c:a9:5e:5d:23:82:75:42:d0:8f:
5f:65:bb:7f:30:d1:c2:fe:fb:0b:ab:e5:48:10:5e:
33:e1:7d:af:3b:89:2b:fb:99:af:4e:25:2d:a9:1f:
84:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:35:22:92:C5:3F:70:CC:9D:DE:CF:41:D5:47:6B:9A:72:8A:55:40
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IDUiksU_cMyd3s9B1UdrmnKKVUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.145.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:23:85:32:a9:7b:a8:e1:78:ba:29:63:23:70:ac:23:74:a2:
39:52:b0:c3:dc:12:18:f4:8a:0c:ed:79:47:20:c4:e4:98:c1:
3d:0d:3b:a0:b3:68:35:a0:53:12:fc:ad:3c:9d:71:68:c5:0c:
fb:b5:ec:b4:bb:90:35:a6:96:11:0c:78:db:61:ec:21:5b:71:
60:28:38:80:1b:f3:06:28:21:fb:57:6c:17:d5:a4:32:16:20:
55:db:ae:43:48:fc:c5:fc:25:a7:bd:48:98:cc:12:bf:c3:e4:
7a:4a:cc:df:a7:3d:1a:29:9e:57:ce:c1:40:49:c7:d2:39:4b:
1a:ef:de:83:0b:af:e6:dc:3d:1f:b3:66:c8:50:ee:f2:a6:4c:
cc:83:04:8d:87:c9:2d:6e:ac:50:74:ed:74:8c:0a:88:06:7c:
e9:a6:46:93:f5:c8:df:94:17:55:52:86:f6:27:2a:c5:16:da:
27:75:1b:1c:ee:33:87:05:52:19:76:d1:6f:3a:27:2b:89:76:
cc:d4:20:b9:1e:94:bc:8e:71:a1:1a:4d:62:cf:4b:e6:03:2f:
e8:a7:17:eb:3a:0d:2f:5f:16:a9:ec:d0:c5:45:35:03:1b:d2:
72:5b:39:ed:49:a7:fc:53:b8:f4:ab:69:9d:c3:74:e1:21:ab:
a6:13:08:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:30 2024 by rpki-client on console-ams.rpki-client.org