Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LbbolqjyO1eWhgJXDUS4QUjHdQA.roa
File: LbbolqjyO1eWhgJXDUS4QUjHdQA.roa (raw, json)
Hash identifier: Ar3QYNhmcq4DMDqGNucTE2IDuljTF8aksvqW5vBQAzA=
Subject key identifier: 2D:B6:E8:96:A8:F2:3B:57:96:86:02:57:0D:44:B8:41:48:C7:75:00
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018F25483F943CBDFB5D12327B315B9F474F
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LbbolqjyO1eWhgJXDUS4QUjHdQA.roa
Signing time: Sun 28 Apr 2024 15:17:22 +0000
ROA not before: Sun 28 Apr 2024 15:17:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 163.5.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 18:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:25:48:3f:94:3c:bd:fb:5d:12:32:7b:31:5b:9f:47:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Apr 28 15:17:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2db6e896a8f23b57968602570d44b84148c77500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:85:ce:5a:40:06:c5:b5:85:8d:95:b3:36:bf:
d8:90:fd:9f:a3:68:e9:31:71:1c:3a:41:73:2a:b8:
58:d8:fe:ec:44:53:85:3a:3f:55:9b:3d:dd:ff:66:
37:1b:92:c2:59:4e:d2:61:92:a2:d2:04:0f:26:03:
54:73:0f:92:22:54:c6:a3:24:ef:a0:fa:eb:2b:c8:
2a:f7:3e:c4:c1:1d:a9:73:16:36:7e:84:f1:6b:ab:
21:a3:2f:4c:9a:0d:fb:90:23:7a:53:f2:86:01:e1:
5f:f7:fd:a8:c4:ef:79:f8:df:ba:25:b3:a3:7c:dd:
b2:5f:d0:d0:87:99:9f:08:25:94:4f:c3:a9:4d:ec:
aa:15:2b:13:f1:16:6b:58:c9:72:54:32:78:ee:f8:
c6:71:cb:9e:b0:fb:b0:0a:bf:17:89:39:5c:57:ba:
de:7e:36:c0:db:f4:e9:c1:19:b6:d8:15:c3:9a:b4:
df:2b:f2:91:dd:fd:45:75:d9:1c:7b:d5:72:4c:79:
48:a3:ae:48:ac:0b:ca:63:a1:f0:01:16:3a:22:90:
2c:99:58:27:69:7b:fb:57:6a:a6:7b:e3:aa:43:7f:
cf:d3:9e:91:12:28:e1:dc:e3:57:8d:2a:3f:f5:63:
40:a5:9f:db:f5:97:4e:f5:f2:d9:b5:43:e7:a7:54:
b8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B6:E8:96:A8:F2:3B:57:96:86:02:57:0D:44:B8:41:48:C7:75:00
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LbbolqjyO1eWhgJXDUS4QUjHdQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.154.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:7c:a3:a7:f0:38:e6:e4:f0:2a:ab:80:3e:1b:ae:74:fe:e8:
7b:b2:e5:a9:3a:d8:da:42:8a:f9:9a:cd:ce:1b:3a:b1:76:42:
7b:a0:59:89:84:1b:22:d5:38:2e:f0:c4:ca:c1:3a:8d:6f:8f:
32:c4:35:1d:75:d9:07:09:c1:b2:87:58:23:05:9d:f4:45:7c:
54:a6:27:14:cb:5c:12:65:9e:8c:16:85:8f:24:8c:a7:0d:f9:
3d:b6:88:f7:67:ff:da:36:91:26:27:ff:1b:45:af:cd:48:f6:
eb:d9:b5:6b:75:4e:64:d3:72:07:45:10:86:8a:37:b7:a9:33:
77:a4:3c:5c:3a:bc:f5:5c:20:d6:b5:2a:6a:b1:31:f5:99:83:
07:19:f2:97:3f:e5:a5:a8:9d:ae:d6:4e:e0:50:48:81:b1:38:
e6:49:4c:45:de:d2:7b:49:77:3a:e6:30:df:90:d8:b5:b6:ca:
f0:b0:10:e3:5b:76:9a:2a:52:c6:e9:64:ee:29:f0:69:fa:6c:
28:d4:fa:77:37:aa:2b:b9:37:3a:51:b9:e2:66:98:45:ae:aa:
62:6e:9e:4d:ab:5c:4b:14:c8:7c:ce:36:34:14:c6:2f:98:3f:
c9:db:f8:e2:fa:05:d0:67:2e:e4:f7:bb:b8:e2:bd:9f:2c:a0:
ac:59:62:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:31 2024 by rpki-client on console-ams.rpki-client.org