Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MZXME5TtGtkMZu9edfcAILsZPn0.roa
File: MZXME5TtGtkMZu9edfcAILsZPn0.roa (raw, json)
Hash identifier: 8FS5Xqtt7Qo1K91tC+z8GYlBHqauGUkD8ML18EhJTfg=
Subject key identifier: 31:95:CC:13:94:ED:1A:D9:0C:66:EF:5E:75:F7:00:20:BB:19:3E:7D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018A8A1ED29FE73C1211ADD74F7B71B31920
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MZXME5TtGtkMZu9edfcAILsZPn0.roa
Signing time: Tue 12 Sep 2023 15:59:50 +0000
ROA not before: Tue 12 Sep 2023 15:59:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 163.5.75.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8a:1e:d2:9f:e7:3c:12:11:ad:d7:4f:7b:71:b3:19:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 12 15:59:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3195cc1394ed1ad90c66ef5e75f70020bb193e7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9b:de:77:5e:ee:58:2b:65:0c:82:ac:bf:8c:
c6:97:13:f8:d5:a2:9e:47:5e:cd:26:7f:36:16:f8:
4a:4c:e5:03:5e:cc:8f:b9:fb:7a:53:0c:5e:98:10:
e6:ac:0e:82:04:79:c7:4e:8f:e1:6a:0b:f8:5b:7c:
f9:2a:31:0b:a3:b5:6c:2d:af:95:74:bb:d9:1a:06:
d8:5e:ee:c4:5a:dd:d6:69:17:36:f1:fc:27:56:e8:
52:be:23:52:64:fc:45:96:f1:06:7a:a3:44:8b:be:
03:bd:a1:9e:be:ae:9f:26:52:5f:96:36:29:a0:5b:
0e:ce:ec:44:c4:bf:40:d5:1a:00:3f:70:83:eb:e9:
f6:8b:a9:c0:25:eb:af:61:7d:b3:42:01:2c:be:dc:
7d:f9:24:ab:1d:f6:ad:2f:bf:09:7d:b9:08:85:f5:
39:28:1b:3e:12:89:00:5c:c5:45:eb:b8:b9:14:75:
d0:85:9e:ae:77:ed:55:84:16:d0:78:03:0d:b8:62:
2c:e3:97:ba:13:da:46:8d:b4:2d:69:a3:06:99:55:
f2:fc:39:ce:13:47:f0:61:ef:79:f4:91:1c:b3:d3:
f1:2a:bb:11:16:52:47:01:79:b2:f9:e3:22:47:30:
2d:bb:96:ef:25:32:2a:1d:7a:2d:3e:4c:0d:5d:d1:
5d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:95:CC:13:94:ED:1A:D9:0C:66:EF:5E:75:F7:00:20:BB:19:3E:7D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MZXME5TtGtkMZu9edfcAILsZPn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.75.0/24
Signature Algorithm: sha256WithRSAEncryption
55:a6:05:4f:b9:28:30:0e:d4:20:58:2a:e1:1b:c8:eb:f0:c1:
6d:97:62:57:29:52:80:f8:a0:e2:11:36:27:33:bc:e2:a9:a1:
0b:0b:b7:34:0f:6b:64:39:8f:2a:f0:d3:d1:76:06:77:7e:fb:
0b:b7:10:3b:21:e8:09:4f:4c:5f:a1:d5:5c:a6:75:f0:de:58:
4f:83:9f:e1:24:bf:02:b1:af:40:07:62:46:21:9e:c2:00:1f:
7f:49:c6:ab:11:c2:cf:d7:27:a2:61:24:f7:50:2d:f0:66:46:
18:22:c1:e2:bc:bf:b3:ae:95:10:96:0c:d6:ab:50:9c:73:77:
6d:1b:85:10:e2:5c:85:11:3b:40:d0:9a:fe:6e:fd:31:26:ee:
b6:34:62:69:8f:d2:5c:65:19:71:43:19:a5:97:ad:c5:7f:88:
c0:22:bf:e9:62:3c:70:c7:2e:ce:2f:4d:e0:1e:89:db:e1:e0:
c8:61:91:5d:fc:ec:61:83:bd:14:f5:fb:4f:62:d6:48:86:7e:
ed:3a:e7:ef:7b:70:ff:d8:5d:f3:34:e3:b4:34:03:ee:2b:05:
b5:75:1a:45:4a:8b:4e:09:79:10:29:22:cd:b9:bb:90:a4:06:
cc:0e:e5:a6:6b:cb:8b:96:0d:a1:9e:b3:dd:b1:65:4d:ef:49:
c2:ec:cd:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 9 14:06:51 2023 by rpki-client on console-ams.rpki-client.org