Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Mo36E-VUf6EPIXxYWiSKmjQLzrY.roa
File: Mo36E-VUf6EPIXxYWiSKmjQLzrY.roa (raw, json)
Hash identifier: P15Fqak7GkkzOOepxAFc62AZNUlQnIaYP7BXavG8SUY=
Subject key identifier: 32:8D:FA:13:E5:54:7F:A1:0F:21:7C:58:5A:24:8A:9A:34:0B:CE:B6
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018CC42551B6CEBA885509AD2C8E314CA342
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Mo36E-VUf6EPIXxYWiSKmjQLzrY.roa
Signing time: Mon 01 Jan 2024 08:30:29 +0000
ROA not before: Mon 01 Jan 2024 08:30:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 163.5.190.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Feb 2024 21:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:51:b6:ce:ba:88:55:09:ad:2c:8e:31:4c:a3:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 08:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=328dfa13e5547fa10f217c585a248a9a340bceb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:68:a5:1f:19:38:46:78:f5:92:38:12:b0:33:
e8:e1:f7:42:c3:cf:65:80:8f:75:a9:2d:fe:cb:31:
c3:3d:3d:01:df:7e:59:13:11:df:5f:32:ae:cb:b6:
d1:d5:00:67:16:f6:6d:ce:8f:2a:e0:3d:3b:b5:d4:
da:91:45:4d:ff:71:60:96:50:e4:74:d7:67:75:b5:
f2:53:60:98:42:bc:98:2e:a5:a6:4c:21:85:2b:43:
78:b5:b3:85:fc:95:00:47:32:4f:47:e0:af:ba:12:
c0:3c:23:c1:08:b7:1b:18:d3:94:0f:20:27:97:ef:
06:bd:a7:cc:44:4b:9c:81:60:ab:a1:74:f7:35:03:
b7:19:6f:cd:d1:da:2b:22:7c:d4:0a:55:e2:3f:0a:
1c:f7:0b:35:53:d4:03:83:92:16:4d:2b:ba:47:f5:
e7:e6:b0:85:3f:1f:42:37:ec:89:c0:9d:95:dd:52:
8f:4b:fe:1c:2d:c3:7a:ef:75:b7:b9:da:97:4c:66:
33:cd:58:14:3f:b8:66:89:8f:a3:b6:35:50:b5:d2:
f5:9a:e5:69:48:04:e3:e8:66:8e:8d:51:c6:f3:8f:
49:78:cc:53:5e:0d:f1:3d:22:c1:ee:c3:b7:fb:43:
19:4c:62:5a:6e:11:21:ff:25:e5:dd:dd:d5:05:05:
2b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:8D:FA:13:E5:54:7F:A1:0F:21:7C:58:5A:24:8A:9A:34:0B:CE:B6
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Mo36E-VUf6EPIXxYWiSKmjQLzrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.190.0/24
163.5.195.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:34:8d:3a:21:35:32:66:74:7e:6d:55:14:0e:62:8c:75:50:
00:ea:09:5f:36:e8:7e:b0:b8:7a:c6:46:00:88:b3:14:94:8a:
8b:35:d5:c1:f7:c8:04:35:78:ce:12:d6:8f:71:b6:87:47:c6:
0d:26:c7:80:28:b1:92:d6:54:3b:66:12:21:bf:6d:eb:91:05:
32:7c:6f:70:1d:ed:6b:0b:f0:aa:63:fd:d2:ee:ab:9c:42:c0:
be:ee:89:40:13:f5:f1:03:40:23:2e:fa:4e:d2:b1:cb:81:ff:
01:c6:5b:5c:cd:4b:2f:e1:a0:e8:a7:55:62:1a:b5:07:6d:74:
55:f9:36:87:21:e1:ea:e0:8f:43:8b:31:da:73:24:07:1c:39:
12:c3:d0:42:95:33:1b:fb:06:78:37:08:4f:1c:23:5b:de:e4:
a1:db:66:64:84:b1:5d:95:89:72:b3:61:07:8c:42:fd:b8:94:
a6:96:e9:f5:35:87:ab:b2:3f:9f:ba:be:00:bd:24:4d:bb:4e:
66:23:92:e6:0e:f3:06:67:0d:3c:d2:73:75:7b:d3:2c:d2:4e:
69:2c:33:7e:7f:fd:b8:c6:77:78:b0:8e:0b:dd:0e:ff:f4:38:
c0:1c:23:f2:31:99:d1:e2:ab:b2:94:fd:1d:b1:fa:6e:b7:e5:
85:10:3a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 22 00:46:10 2024 by rpki-client on console-ams.rpki-client.org