Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LVR7D5P0hubJt3IrQNCFgHspgwQ.roa
File: LVR7D5P0hubJt3IrQNCFgHspgwQ.roa (raw, json)
Hash identifier: wcI9nROcvcifCs0TNVKYWvBXkzjqKyPrT66NRqj4hJU=
Subject key identifier: 2D:54:7B:0F:93:F4:86:E6:C9:B7:72:2B:40:D0:85:80:7B:29:83:04
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0186F9B9795CD35C2280679752576D0200FF
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LVR7D5P0hubJt3IrQNCFgHspgwQ.roa
Signing time: Sun 19 Mar 2023 11:55:27 +0000
ROA not before: Sun 19 Mar 2023 11:55:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62068
IP address blocks: 163.5.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f9:b9:79:5c:d3:5c:22:80:67:97:52:57:6d:02:00:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Mar 19 11:55:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d547b0f93f486e6c9b7722b40d085807b298304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:95:e5:84:2a:28:cd:1c:cf:41:7e:19:6b:cf:
f6:1b:88:90:4a:a4:ab:f6:17:c8:b3:a9:52:71:81:
2b:7e:d4:12:09:d4:22:14:76:4a:07:ad:74:d2:64:
1c:43:4b:8a:b2:d4:86:32:37:e6:51:a4:23:74:96:
b4:b4:58:a8:d8:47:e1:ef:81:c4:0a:26:dc:8d:66:
f3:04:7c:10:fb:6f:4d:3d:e1:5c:ab:c9:bb:5d:29:
a5:67:cc:68:0c:0a:cd:f7:4b:4a:c8:33:5e:7d:e1:
f0:1b:71:22:79:e0:e6:66:ae:9f:8b:19:53:c2:93:
2a:4a:02:f5:9f:b6:0e:cf:70:d5:85:cd:dc:88:1c:
40:3e:c9:17:04:28:2c:f9:01:77:fe:ba:5b:f3:d1:
f3:b1:87:9e:e0:1b:85:ef:7b:93:f0:e8:75:d8:33:
d5:e1:ee:72:6b:40:95:f1:45:45:35:fc:ef:0b:d5:
69:d7:01:ea:a2:6e:0b:54:4c:2b:2e:a4:24:6a:bd:
ba:48:f5:a5:e5:32:0b:2b:91:3a:5f:9f:80:ec:46:
da:2b:1b:5d:4f:90:15:a1:fd:b1:c0:cc:68:96:97:
a6:f5:15:59:86:fb:14:76:df:6c:57:f3:07:1d:87:
85:c4:07:20:3c:01:62:bb:0a:54:5f:ec:ac:13:44:
8b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:54:7B:0F:93:F4:86:E6:C9:B7:72:2B:40:D0:85:80:7B:29:83:04
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LVR7D5P0hubJt3IrQNCFgHspgwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.170.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:e0:2d:a3:40:25:8d:33:98:f9:b8:3b:b8:5e:bf:71:97:ca:
33:ec:e1:70:7c:77:ab:a3:68:11:ba:70:e9:25:2a:85:a0:67:
37:63:1f:62:49:19:99:18:d1:25:89:b2:b2:2b:12:62:fa:04:
87:50:78:60:9c:d2:58:a7:d5:c8:4d:cb:c5:cd:08:6b:0d:7f:
96:ed:03:78:aa:bc:5b:e1:05:e2:02:1e:e6:02:e4:4c:b2:60:
20:b4:df:bf:84:e8:b3:4d:b5:4e:10:91:3c:e9:dd:9c:5d:85:
38:38:e8:f4:dd:9a:07:67:a4:ca:6d:f7:37:c4:fa:d7:53:83:
5d:3d:d0:97:db:be:59:8c:20:30:0d:8c:dc:60:37:51:08:b4:
ed:cd:0e:81:5c:12:4f:63:5e:fb:9d:88:8a:af:83:a5:2e:1d:
c9:f6:4a:7a:29:33:23:94:38:6b:6d:b4:90:0d:3a:fd:2f:24:
94:65:d8:6c:4a:95:5b:8e:db:93:c6:dc:c1:e6:4f:13:03:cc:
d8:ce:6c:95:1e:e3:0d:05:f8:a6:1e:82:90:46:af:2a:88:cb:
3d:4b:c6:23:60:87:4b:49:2e:b2:2f:cb:ac:e7:d7:cd:8d:ae:
91:ab:a2:87:01:40:4e:84:49:f6:a4:71:26:c1:f8:e9:b7:97:
c0:25:89:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:09 2023 by rpki-client on console-ams.rpki-client.org