Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LOtNaRXZCuqZdzXOtms5g8zx-ZE.roa
File: LOtNaRXZCuqZdzXOtms5g8zx-ZE.roa (raw, json)
Hash identifier: DIG7prNOyFxRUGykoD+mKFGcDVJCnT7rFQ9qzvk0c/U=
Subject key identifier: 2C:EB:4D:69:15:D9:0A:EA:99:77:35:CE:B6:6B:39:83:CC:F1:F9:91
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01863AAF8B1EC2AFEB2A9551288EDE93AC28
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LOtNaRXZCuqZdzXOtms5g8zx-ZE.roa
Signing time: Fri 10 Feb 2023 09:37:08 +0000
ROA not before: Fri 10 Feb 2023 09:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 163.5.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Apr 2023 16:58:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3a:af:8b:1e:c2:af:eb:2a:95:51:28:8e:de:93:ac:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 10 09:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ceb4d6915d90aea997735ceb66b3983ccf1f991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:63:8d:29:9a:cb:dd:a1:f2:4f:be:4b:8a:46:
61:92:ba:99:0c:b3:1b:2b:4c:bb:85:ff:04:a5:30:
2d:ce:2d:92:91:cf:83:25:b4:15:ff:81:46:76:16:
92:cc:60:bf:1c:93:91:8f:5f:ed:13:a7:a3:64:c0:
59:94:3d:4e:c4:82:1c:cb:9a:13:5d:4a:e4:18:ea:
b6:53:e2:5d:40:df:29:46:6f:30:c3:37:7e:66:26:
7c:07:87:e2:e5:7d:78:fb:33:ab:74:17:58:c6:2d:
2b:12:db:9e:a0:9e:75:5d:67:42:44:fc:d7:60:a1:
f6:ef:c0:ed:ec:fc:fb:36:c6:b4:19:41:c7:70:7c:
f0:06:7d:35:fe:a0:24:5b:76:a0:5a:fa:0b:45:b6:
51:11:02:8d:b8:8a:82:6b:d2:62:07:ef:c0:2f:68:
2f:78:a0:7f:60:ed:31:6e:c7:3e:46:83:a4:b2:3c:
ec:02:fe:9b:c6:11:85:31:6b:55:13:4f:2d:dc:79:
3e:3e:33:a2:87:51:cd:c0:3f:69:90:07:08:01:c7:
a4:2b:71:d8:6d:9a:73:2e:ba:60:9b:b9:a7:dd:a6:
81:0b:32:ee:91:d9:ef:02:67:50:3a:94:22:05:ba:
f8:0f:37:d4:a4:03:b4:ca:46:d5:62:57:96:53:4b:
37:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:EB:4D:69:15:D9:0A:EA:99:77:35:CE:B6:6B:39:83:CC:F1:F9:91
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LOtNaRXZCuqZdzXOtms5g8zx-ZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.60.0/24
Signature Algorithm: sha256WithRSAEncryption
43:3c:29:26:72:db:06:f8:6a:a0:08:9d:57:e7:11:3f:f8:72:
2f:f0:62:70:92:0f:d7:b2:f1:b0:6c:2d:42:d3:06:d6:0a:05:
9e:46:01:25:de:1d:81:3b:a9:6f:2a:6d:6d:2a:6f:f5:4d:cd:
66:68:d0:21:55:1c:d9:62:65:af:59:7e:da:15:76:d8:2d:68:
dd:72:69:8a:b0:bd:0f:a1:dd:27:3e:3a:e8:33:2a:71:69:eb:
96:a7:45:04:28:63:bd:f0:57:2f:26:74:61:0a:ba:ee:fc:4c:
37:39:ab:52:d9:7a:53:51:14:08:32:eb:16:7b:58:db:59:f8:
ee:09:12:fe:42:65:62:45:07:f4:a0:8c:f7:71:ab:f7:1e:ad:
14:d1:97:cb:b2:0a:3b:e2:46:af:7b:19:e4:ce:85:08:24:12:
e5:6c:1a:20:f4:73:45:fb:d3:47:6b:e2:66:f4:9b:79:b3:af:
d7:e4:45:47:b3:30:c4:a4:99:82:7b:50:2b:ec:de:76:23:55:
b7:e1:c2:aa:0a:89:2d:40:11:a9:36:89:e6:2d:9f:f6:1a:df:
26:28:d4:c2:bc:b2:a7:a2:7a:50:d4:a6:ac:63:da:11:45:a9:
5a:fe:d6:0b:84:05:67:ab:1b:1d:1a:23:4e:96:ba:4a:5d:ff:
7a:f4:69:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:31 2024 by rpki-client on console-ams.rpki-client.org