Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MmngEDxul9iWuB8X30vPiBfqYv8.roa
File: MmngEDxul9iWuB8X30vPiBfqYv8.roa (raw, json)
Hash identifier: Vh9qwzqLDAXgo+h79ANKUAsSiaaSh1CBgmIDmRh0xMk=
Subject key identifier: 32:69:E0:10:3C:6E:97:D8:96:B8:1F:17:DF:4B:CF:88:17:EA:62:FF
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0191623EB75CC1C4900C76D03B2AB628DA21
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MmngEDxul9iWuB8X30vPiBfqYv8.roa
Signing time: Sat 17 Aug 2024 21:29:22 +0000
ROA not before: Sat 17 Aug 2024 21:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 163.5.187.0/24 maxlen: 24
163.5.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 16:57:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:62:3e:b7:5c:c1:c4:90:0c:76:d0:3b:2a:b6:28:da:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 17 21:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3269e0103c6e97d896b81f17df4bcf8817ea62ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ca:08:2e:b7:dd:ca:1e:78:dd:5f:1b:79:2a:
3c:5d:f9:58:d5:ce:cd:86:70:46:bf:db:4f:2e:3f:
bc:2c:75:86:ba:63:23:a4:17:a7:ea:69:d7:f1:f5:
ba:7b:be:d2:22:05:ce:66:ed:d4:88:f9:20:4c:23:
b6:cb:c6:98:96:55:83:17:a9:60:c9:21:bb:61:a3:
73:35:1f:f1:1b:69:dc:54:b9:db:0b:48:5d:7d:ab:
a1:82:3a:8d:20:cd:88:6e:03:eb:3c:de:d0:3a:25:
60:41:b6:fd:fa:f3:1e:15:7c:ab:76:6c:dd:5e:ee:
ba:19:9b:1d:40:e6:ce:a7:0b:bf:84:76:46:14:d0:
77:f8:33:ef:82:0d:07:fe:7f:6c:c4:8e:e1:70:3a:
60:11:5c:83:e8:62:36:d7:14:e5:bf:5c:04:6a:8b:
b7:f6:76:68:ad:00:a2:b3:8b:5b:1d:f8:53:18:2d:
8b:50:e8:f9:49:65:9b:97:f7:0c:4a:cc:8a:19:44:
04:91:db:cb:41:09:6f:75:5d:19:99:0b:19:61:29:
85:aa:31:bd:88:1f:9e:e0:1e:2d:8c:dc:ef:e1:96:
02:8f:65:37:5a:4f:f0:fc:f4:c3:db:4f:aa:4d:b3:
27:87:ca:82:4f:dc:36:31:de:50:c5:80:1b:31:8c:
e1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:69:E0:10:3C:6E:97:D8:96:B8:1F:17:DF:4B:CF:88:17:EA:62:FF
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MmngEDxul9iWuB8X30vPiBfqYv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.187.0/24
163.5.230.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:97:cb:ef:a1:65:35:ea:45:73:6d:e6:ed:bc:9b:09:c3:ec:
d5:60:1f:e2:fe:68:17:10:d5:ec:63:74:7a:e9:fe:10:3f:61:
e6:af:bb:d5:44:54:ef:2a:77:d7:16:d1:6d:eb:07:f0:15:7d:
3f:13:44:69:f0:34:65:62:b2:5d:db:d7:d1:f6:07:dc:86:31:
fc:32:9d:97:6e:60:85:54:a4:f6:37:c2:10:4f:dd:69:7f:d7:
8a:2e:32:f3:0e:d9:3c:8e:ce:d2:a0:37:1d:ba:c0:f9:16:30:
f3:f9:a2:92:5a:5d:c5:a8:68:52:65:ad:dd:44:28:6f:03:f1:
31:58:06:60:a7:cc:30:8f:fc:a2:99:40:2b:17:12:bf:ca:12:
52:83:11:a1:82:db:47:c4:87:fc:2e:ba:e6:5e:0e:74:08:ba:
36:62:90:82:01:40:b8:75:4b:b5:c1:6e:1f:33:f8:68:be:1a:
3f:6c:92:08:a2:72:70:d8:a7:69:7b:15:0d:cc:14:e3:2e:a2:
18:b2:f0:9f:8c:f2:13:0e:f5:fa:25:e1:28:16:11:ff:08:d4:
5c:aa:ae:c9:fe:8e:62:40:f6:31:58:06:2e:9d:9d:b3:bc:da:
3a:0b:83:bf:d2:d7:ba:98:9b:2b:5a:ad:52:6c:83:eb:38:38:
1d:87:c9:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 5 18:38:46 2024 by rpki-client on console-ams.rpki-client.org