Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/NN3LLMVvVhVTZ9N7btEmlyDCXzk.roa
File: NN3LLMVvVhVTZ9N7btEmlyDCXzk.roa (raw, json)
Hash identifier: ZIDnLgh8KXvyNk+iGbRU9KXCbRS2ZabJlyK59aPB8aY=
Subject key identifier: 34:DD:CB:2C:C5:6F:56:15:53:67:D3:7B:6E:D1:26:97:20:C2:5F:39
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0188AEC60326D761709AB06DEDAA151D9E9E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/NN3LLMVvVhVTZ9N7btEmlyDCXzk.roa
Signing time: Mon 12 Jun 2023 08:43:12 +0000
ROA not before: Mon 12 Jun 2023 08:43:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 163.5.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jul 2023 11:07:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ae:c6:03:26:d7:61:70:9a:b0:6d:ed:aa:15:1d:9e:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 12 08:43:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34ddcb2cc56f56155367d37b6ed1269720c25f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5b:06:1a:8a:ed:28:1e:78:13:bc:43:91:a5:
1c:f1:c8:b0:bd:31:d0:48:c1:d4:45:d6:17:67:d0:
bb:dc:9a:50:de:5a:66:ae:9a:bb:ef:41:67:17:6f:
ec:11:db:58:66:62:a0:8f:2e:d6:ff:83:a9:57:38:
ba:84:8f:78:c8:8d:a1:53:e2:8e:1c:ef:97:28:d4:
7f:b2:2f:e1:0f:33:ca:27:c4:7b:49:f3:62:da:3e:
0c:7c:f8:e6:ed:aa:ed:d0:78:57:9c:15:23:31:bb:
22:72:cc:a2:13:34:37:9f:11:6d:f9:c5:82:27:94:
63:66:bf:f0:8e:04:fc:6c:5c:51:91:c2:81:a2:db:
b7:d9:7f:34:e3:70:0c:1e:ce:fc:f4:ba:a3:64:79:
a8:1a:df:1e:c7:d4:db:46:dd:b1:51:3f:b1:54:fa:
78:3c:61:b1:3a:9a:d5:6f:9a:00:d7:9f:ea:fa:5d:
89:91:e5:c1:b7:b4:c5:e2:b0:49:54:d3:ae:86:5e:
f0:9d:29:fc:ea:b8:df:43:c7:b1:29:6c:e4:70:5d:
ee:e3:41:1e:ab:4c:28:ef:01:41:65:0c:6b:66:4b:
d8:0c:dd:86:7a:d8:59:f2:80:80:6f:88:fa:55:29:
6e:10:f9:80:2b:30:2e:65:a0:0b:2b:44:ee:c5:97:
fd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:DD:CB:2C:C5:6F:56:15:53:67:D3:7B:6E:D1:26:97:20:C2:5F:39
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/NN3LLMVvVhVTZ9N7btEmlyDCXzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.166.0/24
Signature Algorithm: sha256WithRSAEncryption
29:10:29:08:6e:bd:ec:a8:fa:9d:85:18:eb:df:b8:55:6b:19:
e6:fb:68:30:cc:aa:92:b8:3f:d2:3f:33:7c:61:ce:83:60:da:
f5:92:aa:87:57:a5:a2:75:7d:da:99:6e:e4:3c:bd:f0:ca:e9:
02:bb:99:d0:3a:e0:eb:9a:01:1c:ce:82:76:b0:3d:86:74:01:
c9:63:ee:a4:9d:94:d6:f3:3f:b3:c3:f0:5f:94:e6:12:f7:61:
49:d8:eb:ba:eb:47:d3:82:54:42:a3:b1:d6:b7:0f:e4:59:ce:
68:42:50:1b:35:59:65:2e:b2:86:04:1a:11:50:b8:92:96:60:
6a:c9:62:c4:ee:0c:8c:f0:60:bc:c2:f4:ac:39:94:1a:36:be:
93:ff:44:da:12:80:8a:bf:2d:b5:27:e5:8e:4f:75:d8:36:76:
75:20:be:00:ca:64:15:08:2b:e5:c5:9e:de:c0:b2:c7:be:a8:
ad:54:b9:b1:0c:6c:53:d6:58:62:8e:eb:c0:51:1a:11:7a:a5:
88:ae:da:ab:0c:62:b3:4c:2c:8f:5d:5f:f1:d8:a8:f7:d5:6a:
07:ac:7d:0b:a1:18:db:d8:0c:67:c9:b2:8a:12:70:59:6e:df:
4f:1b:2b:85:e5:80:d3:71:2c:14:4d:3a:5e:ba:5a:c7:52:d1:
fc:f2:f2:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:05 2024 by rpki-client on console-fra.rpki-client.org