Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IHQvuaZU0t8nybWv332frQyW7bg.roa
File: IHQvuaZU0t8nybWv332frQyW7bg.roa (raw, json)
Hash identifier: YxRvBmJq4c1woAgb9dSPs1rEOfiqSAzdN3n9Xgg5u8c=
Subject key identifier: 20:74:2F:B9:A6:54:D2:DF:27:C9:B5:AF:DF:7D:9F:AD:0C:96:ED:B8
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B2527040911C6EFC35A54615322659CB5
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IHQvuaZU0t8nybWv332frQyW7bg.roa
Signing time: Thu 12 Oct 2023 18:29:55 +0000
ROA not before: Thu 12 Oct 2023 18:29:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22781
IP address blocks: 163.5.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Dec 2023 02:58:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:25:27:04:09:11:c6:ef:c3:5a:54:61:53:22:65:9c:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 12 18:29:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20742fb9a654d2df27c9b5afdf7d9fad0c96edb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0f:5c:41:ef:3a:17:c3:98:cd:8d:43:6d:03:
cf:47:e3:54:4b:20:16:df:dd:a3:f9:e1:38:9a:6f:
28:da:be:4d:ea:6f:d1:35:2e:92:e2:fe:b9:d1:67:
06:d8:79:a1:2f:22:4b:6c:ef:98:4f:7c:7e:37:10:
06:05:a1:e6:c7:b2:f3:96:0a:9b:e1:24:7a:ac:d7:
a5:2a:1b:eb:08:89:93:63:46:c0:0a:f9:ea:bc:1b:
1a:f6:f5:c4:84:2f:61:87:0d:a3:40:7b:2d:cf:e1:
a8:5b:14:de:e5:65:ad:38:5d:52:ca:30:26:b9:cc:
2b:55:37:76:6a:69:3f:d6:e7:25:07:0b:1a:af:70:
3e:dc:82:ed:74:1f:05:fe:92:d6:d4:36:44:41:a6:
d1:16:5c:c6:f5:8b:fb:ac:a1:bf:18:3c:4a:2c:d8:
68:f6:df:be:d1:e5:49:25:ba:f1:44:5e:84:c4:d6:
42:4d:ce:5b:92:f7:f0:64:e5:fd:3b:8a:70:d2:5b:
51:e3:d4:c7:e8:d5:c0:e3:3d:5c:09:8e:a4:60:d4:
41:62:bc:37:98:41:52:29:c7:35:6e:0d:ec:7b:2b:
c4:08:11:7c:0f:53:32:65:92:86:68:99:06:2c:bc:
2c:2e:b7:a4:77:fb:7d:65:2e:5d:25:ff:6d:fc:c8:
15:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:74:2F:B9:A6:54:D2:DF:27:C9:B5:AF:DF:7D:9F:AD:0C:96:ED:B8
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IHQvuaZU0t8nybWv332frQyW7bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.58.0/24
Signature Algorithm: sha256WithRSAEncryption
51:bd:04:8d:e2:c8:f7:99:94:a8:e0:a4:cf:73:ca:0a:90:9f:
7b:47:83:c0:a0:39:77:79:84:87:c7:0e:f1:83:89:ba:7b:c7:
79:8e:e3:0b:ee:1b:6b:03:29:d3:41:b1:41:09:ed:d4:b1:fb:
c7:02:fb:b9:a3:17:22:22:19:43:06:9b:47:cd:5f:f2:e4:c1:
e5:ad:e2:8b:a9:d3:c8:b4:1c:6b:46:d8:db:51:18:91:a7:d3:
74:26:b9:b8:a0:01:47:0b:55:2b:8b:c5:b0:ff:2c:ba:f7:75:
63:ee:b3:d4:d5:25:e7:4d:fa:ca:11:6d:31:97:8b:5e:90:3b:
aa:15:e8:4b:8e:f2:d4:f1:8e:96:90:e6:86:e4:0b:a9:be:c5:
d9:77:63:92:6d:7b:3f:fe:13:f5:e1:02:27:dc:0f:3f:a1:a2:
8a:bd:bd:e8:4d:2c:d9:14:cf:69:92:05:e6:d7:81:2a:0a:f5:
91:3c:c8:b9:da:30:8a:38:b9:c4:3c:67:4d:6d:b3:f2:9e:4d:
a9:d7:c2:9c:3a:5c:11:82:87:10:41:4c:49:f9:c5:e1:af:9f:
bc:0e:18:64:d5:69:b9:66:94:59:d4:be:aa:29:cb:e8:cc:04:
4f:1c:25:e0:f8:61:27:c0:b2:50:f5:39:2a:b3:48:4f:84:bf:
4d:3e:ce:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:04 2024 by rpki-client on console-fra.rpki-client.org