Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MX1mucDDMuihHdrdtgtKGMAJtEc.roa
File: MX1mucDDMuihHdrdtgtKGMAJtEc.roa (raw, json)
Hash identifier: Uk5AXt3JwuOWNVQEC0tWAIrfuqLbFaD8AmDnuaK0f60=
Subject key identifier: 31:7D:66:B9:C0:C3:32:E8:A1:1D:DA:DD:B6:0B:4A:18:C0:09:B4:47
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0188AEC6ECCB4B6F9453F74A5B78D70AF7BC
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MX1mucDDMuihHdrdtgtKGMAJtEc.roa
Signing time: Mon 12 Jun 2023 08:44:12 +0000
ROA not before: Mon 12 Jun 2023 08:44:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 163.5.32.0/24 maxlen: 24
163.5.159.0/24 maxlen: 24
163.5.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Jun 2023 15:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ae:c6:ec:cb:4b:6f:94:53:f7:4a:5b:78:d7:0a:f7:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 12 08:44:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=317d66b9c0c332e8a11ddaddb60b4a18c009b447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:12:ab:c8:86:dd:cb:59:04:ea:51:3b:b3:6c:
b9:6a:15:1d:d7:7b:36:c8:d1:5e:3d:50:e3:34:f8:
1d:9c:ef:84:df:5a:63:b9:c0:5a:cb:bf:dc:9f:8e:
e6:e1:55:3e:a4:97:ab:97:4a:42:57:01:1e:1c:63:
f7:86:e1:f7:8b:b4:48:38:67:30:85:59:1e:21:dc:
ad:cc:8c:8a:bf:28:2a:5d:b0:75:26:2c:83:6a:41:
d1:6c:29:28:2d:30:62:43:48:f0:63:c4:ac:a6:bb:
fd:89:0f:07:61:94:0b:96:22:46:52:88:a9:5a:b8:
e1:69:50:ca:23:c0:1e:7c:47:6e:d6:7a:51:a0:91:
43:09:97:78:26:32:ea:61:53:37:49:da:08:d1:79:
c0:57:ca:19:ed:44:dc:e1:9a:40:81:bf:bd:e9:7b:
bb:93:24:42:bd:a9:89:88:f3:81:73:1a:79:90:c2:
c8:76:db:6a:8d:01:34:b7:5f:23:dc:c7:f8:7b:e2:
c4:1f:9f:92:9f:c6:c0:4b:9a:97:f2:93:c9:c7:c2:
f4:da:8d:fd:ba:60:d1:90:56:da:a4:e2:11:28:7e:
22:c3:ed:9f:ff:40:84:db:35:17:15:30:63:63:8d:
ea:0b:b2:f2:99:4c:ee:a6:30:87:24:cc:70:6a:34:
2d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:7D:66:B9:C0:C3:32:E8:A1:1D:DA:DD:B6:0B:4A:18:C0:09:B4:47
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MX1mucDDMuihHdrdtgtKGMAJtEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.32.0/24
163.5.159.0/24
163.5.168.0/24
Signature Algorithm: sha256WithRSAEncryption
49:dd:4e:09:4c:de:94:02:04:38:32:0c:a9:a3:bc:46:ac:ae:
a2:1c:3c:17:50:eb:3c:d4:ba:6f:2d:7e:dd:e6:bc:b1:78:a7:
5d:08:72:11:c3:a8:af:d6:d6:71:9d:a9:78:ca:8e:4b:a6:ec:
af:2d:f9:12:bb:af:62:20:40:6c:1f:27:15:20:85:56:3b:fd:
ee:b0:d2:3a:3b:47:2e:9d:c1:b0:3f:ae:d4:a7:d2:6c:ef:f0:
11:86:a9:9f:76:88:04:1e:c3:54:48:27:f2:db:b7:a9:df:7f:
4c:4f:63:7c:9b:50:fd:aa:58:da:54:0b:f5:70:a6:53:db:97:
16:c8:b7:41:5e:ab:06:0e:64:8d:ee:f4:ad:81:9f:d4:f6:71:
73:99:74:d0:22:72:f6:32:a7:d4:8c:d5:85:ab:ae:2c:12:61:
c2:5e:4f:0b:54:28:a1:bf:25:45:8c:56:2c:c5:9f:4c:18:64:
f7:72:f1:1e:8e:77:1f:23:4a:81:f9:d1:6c:b3:ea:b9:b2:2c:
81:90:83:e1:b0:49:cf:59:bf:bd:bc:86:ab:b2:d0:ef:b4:98:
b5:76:4b:06:94:4f:f8:77:f5:64:a6:77:13:b3:52:62:24:8d:
32:de:85:61:8d:9a:9a:3a:08:c0:2b:b3:65:29:de:bc:cc:73:
1c:42:86:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:31 2024 by rpki-client on console-ams.rpki-client.org