Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/JtOAaci1jHBO1k74iKSVfr18z8k.roa
File: JtOAaci1jHBO1k74iKSVfr18z8k.roa (raw, json)
Hash identifier: EsUKm2LPp56pchh404Sg6PXGHOc6Mv4QkPlMoTwGEmU=
Subject key identifier: 26:D3:80:69:C8:B5:8C:70:4E:D6:4E:F8:88:A4:95:7E:BD:7C:CF:C9
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0189EBAB9AFB599331A8EEFB165F38693C56
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/JtOAaci1jHBO1k74iKSVfr18z8k.roa
Signing time: Sat 12 Aug 2023 21:33:59 +0000
ROA not before: Sat 12 Aug 2023 21:33:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 163.5.34.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:eb:ab:9a:fb:59:93:31:a8:ee:fb:16:5f:38:69:3c:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 12 21:33:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26d38069c8b58c704ed64ef888a4957ebd7ccfc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:07:ab:94:00:79:99:e6:ab:65:46:6c:0b:48:
6e:ea:70:92:da:b5:43:77:c3:70:eb:9e:16:15:46:
16:f1:90:91:cc:4f:a8:77:3e:d5:73:9f:08:c8:55:
25:eb:9d:68:77:ec:76:9c:44:ef:c3:07:a5:dc:96:
21:22:6f:bf:a9:45:41:bd:0d:fa:c0:28:0a:03:e3:
9c:0f:4d:4f:74:0d:67:d2:8e:b7:fa:d3:cf:2f:b5:
2b:26:9f:ab:22:3e:d9:bd:d6:91:e9:25:d1:4c:9e:
d4:04:ce:cf:b1:95:c6:eb:f2:a1:65:57:31:37:a1:
fa:71:b9:0a:e0:ed:96:c8:e9:cc:89:ae:bb:ef:67:
ed:ac:2f:90:3b:cb:ea:80:79:53:58:56:6f:c5:41:
fb:e9:24:9e:13:7f:18:f1:1f:5e:43:99:67:f8:1c:
54:30:b0:4c:95:c4:41:d2:50:8b:94:3c:a8:85:18:
60:54:7b:c1:1e:32:de:42:ce:b8:c2:42:de:9a:13:
3f:e5:d5:7a:1f:ec:e0:94:90:0d:67:b6:1c:a6:14:
97:f0:4e:cc:d8:c1:90:2b:9b:ad:e1:c6:5d:c3:08:
b4:ab:24:c8:c2:53:53:78:cb:59:e6:8d:c0:9d:df:
a3:9f:5b:ed:26:a6:10:bb:bf:8d:49:b0:77:58:eb:
6d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:D3:80:69:C8:B5:8C:70:4E:D6:4E:F8:88:A4:95:7E:BD:7C:CF:C9
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/JtOAaci1jHBO1k74iKSVfr18z8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.34.0/24
Signature Algorithm: sha256WithRSAEncryption
16:68:45:2d:ec:de:5e:30:4c:a0:56:36:cc:41:5e:74:d6:e9:
5e:a9:e1:da:e5:2e:d5:71:9c:e7:c2:34:5e:77:5c:fd:f8:08:
3b:3e:6d:18:83:eb:e0:0f:2b:40:71:02:92:a6:e2:f2:96:eb:
5b:ea:1e:4f:a3:a1:ea:53:42:5c:50:2a:91:f5:15:5c:18:92:
68:c0:46:9b:86:ec:c2:31:1d:a2:20:10:b7:b1:8a:ec:f7:52:
5b:2b:ea:71:01:76:a0:a0:e6:94:55:c8:5c:da:f2:84:d6:67:
01:99:8f:32:a6:6f:9d:da:4a:e6:2f:1a:7f:93:6d:b2:c3:0f:
52:52:db:6f:c8:38:00:12:12:6f:bb:8a:35:a9:ee:04:97:50:
74:de:4e:0f:27:64:6b:1b:27:52:6b:d6:0f:55:8a:d9:1a:ce:
70:8f:25:10:d4:31:01:30:d5:eb:ec:be:18:f9:b0:40:38:24:
af:ba:7f:4b:8a:1f:a2:79:ee:fe:e1:a1:54:44:c8:20:0b:90:
51:65:cb:70:35:3a:9e:98:93:13:5e:10:57:7a:df:6b:be:4c:
1c:dd:3e:16:e2:00:49:20:0f:65:0c:8e:de:f3:6e:5f:20:0d:
38:0c:f8:ab:17:11:23:9c:90:fd:ae:e9:de:d7:23:8e:a8:f6:
bb:d6:f2:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 18 12:05:22 2023 by rpki-client on console-ams.rpki-client.org