Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PD8AIw7r-Upw1ik4x0b7z5DIDZw.roa
File: PD8AIw7r-Upw1ik4x0b7z5DIDZw.roa (raw, json)
Hash identifier: UP476caw2vim0xvR7rARanWR41QS+NzSBsP+vj0gY8c=
Subject key identifier: 3C:3F:00:23:0E:EB:F9:4A:70:D6:29:38:C7:46:FB:CF:90:C8:0D:9C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0185DB5372880A77B8D4DA08AB07E3F988ED
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PD8AIw7r-Upw1ik4x0b7z5DIDZw.roa
Signing time: Sun 22 Jan 2023 21:12:37 +0000
ROA not before: Sun 22 Jan 2023 21:12:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211703
IP address blocks: 163.5.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Feb 2023 14:41:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:db:53:72:88:0a:77:b8:d4:da:08:ab:07:e3:f9:88:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 22 21:12:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c3f00230eebf94a70d62938c746fbcf90c80d9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e7:16:f4:e4:b9:e8:b8:4b:bd:4a:89:04:10:
17:79:c5:0d:5d:53:94:5a:33:9b:72:a8:30:46:90:
8a:05:ec:aa:e2:04:29:23:4a:55:25:09:e4:13:b0:
1a:49:17:8c:be:2d:c5:4a:c9:46:a4:2e:3e:8a:ea:
1e:02:6a:ae:e6:f8:12:89:db:e4:c8:5a:6d:65:d6:
72:ac:50:5c:e0:c3:5b:5f:08:68:2a:96:ad:87:d2:
6e:78:9f:4d:a9:6c:6c:22:49:c5:3e:eb:d0:fb:34:
3f:08:8b:e3:d6:d3:2b:d6:57:7c:22:ee:e2:1a:85:
f7:79:f9:f6:26:40:f1:99:b9:54:e0:fa:d3:c6:e9:
a5:a6:1c:3f:7b:3c:bd:9a:63:23:20:79:3e:e2:8f:
56:d2:5a:42:e2:73:63:51:df:0c:3e:4d:a2:eb:e6:
ad:b2:ae:50:bc:80:e8:e4:04:da:ba:d6:f1:1e:2b:
fe:37:8d:52:bd:56:af:91:16:87:8d:5a:24:4b:ff:
f0:b7:03:52:56:bd:f8:88:e4:67:e7:35:9d:81:f7:
36:fc:a7:3d:64:1f:a6:c2:34:0c:83:81:93:a6:f9:
12:c4:b8:31:07:a0:56:86:ba:83:29:0d:e1:1a:e8:
f4:2a:77:b0:bf:98:18:55:7c:4b:9e:e8:4e:f4:c5:
6f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:3F:00:23:0E:EB:F9:4A:70:D6:29:38:C7:46:FB:CF:90:C8:0D:9C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PD8AIw7r-Upw1ik4x0b7z5DIDZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.39.0/24
Signature Algorithm: sha256WithRSAEncryption
70:84:be:93:01:58:73:0c:91:e2:a7:c5:c1:52:1c:03:6c:b1:
d8:3a:41:80:d1:1a:1c:0b:ae:c4:84:bb:31:35:bb:07:b2:37:
f0:e9:fc:fe:e5:1e:f5:9c:ea:69:8b:69:4c:b1:4c:7b:83:91:
d5:93:b7:c4:e2:61:2a:ac:e0:e4:de:cd:d7:f1:2e:ca:65:e9:
b4:97:6b:21:73:e8:30:ec:73:58:84:74:10:35:45:c3:01:09:
0c:62:53:46:0c:e5:9e:f9:5d:73:7d:e8:5f:84:7b:73:eb:a2:
90:10:0f:bc:5d:48:3e:71:95:86:1c:30:65:5f:15:6a:08:04:
de:44:a5:a5:d0:32:bb:26:d7:1b:6b:f9:e8:bc:db:c8:e6:3e:
77:d5:fc:83:bd:27:b4:a1:c1:bb:c9:6f:0b:dd:03:b4:35:50:
69:0c:59:5c:66:32:d8:c4:f6:00:9a:db:5e:9b:6a:f6:3f:e6:
70:41:8c:dc:b5:13:1d:77:9b:03:af:d7:2e:7d:e7:1d:ac:95:
22:22:4b:ba:00:3c:1d:31:c3:9a:32:37:56:ac:96:40:ce:a7:
f3:1f:cd:7f:f2:96:e2:e9:c9:a0:ae:0b:02:75:14:8c:b0:0a:
17:c4:7f:08:fb:fc:19:d7:2a:6a:73:0b:41:75:f6:7f:6e:2e:
8a:72:14:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:31 2024 by rpki-client on console-ams.rpki-client.org