Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/JS0Z8hEn-tkVD83MA2BAH6Gv4ew.roa
File: JS0Z8hEn-tkVD83MA2BAH6Gv4ew.roa (raw, json)
Hash identifier: segTLelnDx44D8wKXeDmuDjlyVqhE6I9ijMyXoQKIYI=
Subject key identifier: 25:2D:19:F2:11:27:FA:D9:15:0F:CD:CC:03:60:40:1F:A1:AF:E1:EC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0189B7838B2CB2515DC2BA979D974FBE6BC6
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/JS0Z8hEn-tkVD83MA2BAH6Gv4ew.roa
Signing time: Wed 02 Aug 2023 18:29:58 +0000
ROA not before: Wed 02 Aug 2023 18:29:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203511
IP address blocks: 163.5.157.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b7:83:8b:2c:b2:51:5d:c2:ba:97:9d:97:4f:be:6b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 2 18:29:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=252d19f21127fad9150fcdcc0360401fa1afe1ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:64:5f:1c:bf:d4:3c:43:a9:0c:fa:a2:62:0d:
b2:8e:5f:30:b9:d4:1b:cb:50:9a:1c:71:b3:c6:b8:
4d:a8:26:3a:86:cf:a9:de:a1:9b:04:c7:86:43:c2:
e1:a2:98:22:80:52:d9:a5:9c:76:6b:a1:e0:f6:7d:
6a:15:d3:10:20:d6:e8:26:44:46:73:74:d2:9b:04:
09:70:2e:9a:8d:84:d7:41:54:08:4d:f0:3e:22:09:
37:ff:ee:68:f3:e7:14:1b:0f:2a:26:73:e1:ca:df:
1f:78:e1:a3:56:58:8c:7c:34:d7:4c:65:78:65:3d:
0d:0c:a7:4d:6e:85:39:85:f4:33:ab:23:b4:c9:3b:
0e:3b:b0:50:f4:56:36:eb:59:61:70:1a:69:ea:b7:
10:4e:01:07:47:6c:4e:c6:7f:91:1a:cc:97:ed:6d:
4d:3b:02:a7:fc:44:1d:87:05:51:01:53:61:1a:94:
f8:d2:09:d7:74:0c:6f:34:bb:8d:04:56:07:78:c2:
a2:00:c9:09:8e:64:34:e0:46:ee:87:aa:e4:69:72:
fa:cf:d8:00:4b:c3:d6:26:35:de:12:bf:be:e1:f1:
b5:79:1d:e4:57:2d:54:ce:91:f8:70:d3:98:5e:4c:
b4:0c:fb:aa:d2:98:0e:aa:0e:28:1e:99:b4:df:bd:
9f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:2D:19:F2:11:27:FA:D9:15:0F:CD:CC:03:60:40:1F:A1:AF:E1:EC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/JS0Z8hEn-tkVD83MA2BAH6Gv4ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.157.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:4b:73:a5:0b:68:85:af:dd:01:d7:c4:14:58:5c:e2:d0:ed:
66:3a:bd:0d:dd:b6:36:9e:d6:e2:da:7e:c8:e7:c8:01:e8:6d:
e6:52:72:a8:ae:0a:0b:e2:3c:29:55:f2:30:d9:91:d2:87:d0:
ef:60:8e:37:3e:54:73:36:0f:62:c3:af:d4:1d:b3:a7:6a:10:
0e:d6:d1:9a:27:09:2c:bb:3b:fe:b2:cc:15:13:02:3a:68:ad:
10:48:7f:2b:b0:58:61:1b:25:77:8a:9f:42:51:d0:d8:10:98:
bb:08:c0:d7:83:b7:7c:5b:f3:da:49:e0:53:69:df:7d:f2:99:
65:65:5b:23:f7:93:e2:cb:c1:b9:d3:08:12:12:91:d0:cc:e7:
37:a7:4f:15:4d:cd:16:22:72:c4:29:fc:a1:66:4b:10:74:a5:
5a:8c:81:8b:31:79:2c:71:c9:98:e3:31:a1:95:8c:13:e0:28:
10:6f:a2:a4:04:3f:49:6b:27:a5:f8:c5:b6:08:75:6c:da:d9:
0c:97:05:95:5a:70:4a:cb:d0:22:b7:86:a4:5d:c3:5b:a9:e4:
59:49:d9:28:8e:2e:2d:31:b1:96:1c:51:ce:7f:db:0f:a1:77:
01:90:c2:94:a8:6d:e0:ca:4d:10:d6:2c:88:2a:8a:50:ad:35:
4c:c1:a8:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 5 20:08:54 2023 by rpki-client on console-fra.rpki-client.org