Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IGcrzBMW8XPcOyHijtWYoLaB8Ek.roa
File: IGcrzBMW8XPcOyHijtWYoLaB8Ek.roa (raw, json)
Hash identifier: LQQq2OrkWOJaG2sLWwmwq5ab9onyupc8vQC8s59E+HQ=
Subject key identifier: 20:67:2B:CC:13:16:F1:73:DC:3B:21:E2:8E:D5:98:A0:B6:81:F0:49
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018CC42564014A1A7F2E830D9550E7F57BC2
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IGcrzBMW8XPcOyHijtWYoLaB8Ek.roa
Signing time: Mon 01 Jan 2024 08:30:33 +0000
ROA not before: Mon 01 Jan 2024 08:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205663
IP address blocks: 163.5.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 17:20:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:64:01:4a:1a:7f:2e:83:0d:95:50:e7:f5:7b:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 08:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=20672bcc1316f173dc3b21e28ed598a0b681f049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6f:b9:f9:d9:67:76:7a:d4:36:b1:aa:54:59:
39:49:cd:af:1b:34:7d:30:91:5f:ad:d1:4f:5c:e7:
0b:da:04:29:5d:0a:98:05:46:f6:57:d1:80:4b:bb:
04:d7:98:cc:31:a6:6c:85:88:cb:e6:ff:d1:61:4a:
6b:f2:57:a7:be:90:2a:32:1a:b7:25:57:1f:5b:2b:
37:2c:3d:51:ed:f3:85:64:65:43:7a:18:64:f7:7a:
af:bf:5e:d7:1d:08:78:cc:70:38:7c:f3:ff:10:ef:
0e:27:f1:04:09:b9:a3:7b:51:44:f2:e7:cd:91:3c:
3f:79:cd:45:05:6a:04:00:dd:99:6e:5f:69:b4:95:
6d:c0:e7:61:c1:fa:c9:a9:b1:2c:46:db:98:8f:78:
15:df:5c:30:0d:53:3d:92:7a:76:70:9a:ef:30:84:
60:1d:c3:d7:6f:02:cd:19:1e:31:8e:17:8a:b7:05:
a1:b2:4c:26:73:3f:51:ee:a9:9f:a9:1f:94:b9:73:
d8:d2:89:48:73:9c:19:27:67:24:66:43:10:62:ea:
6f:e7:b7:b4:e2:d6:47:24:06:dc:10:12:da:58:92:
53:25:a9:11:39:98:07:e4:f2:cd:c1:03:ad:f4:f7:
4d:ad:ac:00:88:af:80:a9:57:02:84:d0:67:82:7c:
4a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:67:2B:CC:13:16:F1:73:DC:3B:21:E2:8E:D5:98:A0:B6:81:F0:49
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IGcrzBMW8XPcOyHijtWYoLaB8Ek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.176.0/24
Signature Algorithm: sha256WithRSAEncryption
48:4f:dd:36:78:7b:8a:32:3a:aa:6c:65:88:35:d5:49:89:e1:
d0:8f:e7:94:be:d8:74:4d:52:00:1f:90:4a:9c:c2:de:67:9f:
6a:b5:23:d8:88:a6:2a:f2:93:a5:f1:c6:14:af:88:f9:80:4b:
19:e0:37:8a:16:5d:8b:92:6a:8e:db:f8:c0:89:10:b8:f2:33:
b2:da:82:c9:c5:32:a8:4a:17:e9:7e:52:85:17:eb:8b:e6:95:
5a:fd:d8:84:41:a3:8f:35:57:c2:f0:01:d6:46:f3:40:26:01:
65:33:09:d6:3b:0c:bf:9e:1c:ce:07:46:a9:56:2b:4e:d7:ee:
22:19:5f:08:3e:8d:c4:27:09:a9:d2:98:ad:a8:d2:b3:64:fd:
cb:32:13:14:9a:05:70:84:ac:34:ed:2b:81:55:be:3e:98:af:
24:03:9e:e6:41:40:52:75:4a:f8:59:9c:53:72:0f:7c:8b:8e:
17:7f:89:09:bf:06:3d:ab:b8:84:46:83:5a:ae:fb:ed:a5:9f:
4c:92:df:b8:de:1a:b9:3e:39:9f:28:db:ca:4f:98:e3:25:c7:
3b:e2:be:30:49:be:43:7c:bc:17:1d:3e:16:8f:5a:22:c4:10:
a8:90:2d:1a:3f:99:24:66:af:60:0a:2a:c5:af:68:41:1d:02:
f1:df:28:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 10 21:58:40 2024 by rpki-client on console-fra.rpki-client.org