Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Pkkg2g7YYeSAWehLATlt_a8LfE0.roa
File: Pkkg2g7YYeSAWehLATlt_a8LfE0.roa (raw, json)
Hash identifier: Pgv62Grhl9gm48X0x2C5jE3uWtjbdwIMiGLT74wj/mw=
Subject key identifier: 3E:49:20:DA:0E:D8:61:E4:80:59:E8:4B:01:39:6D:FD:AF:0B:7C:4D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018AF5867444E7D270096BFB04AD10A99F43
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Pkkg2g7YYeSAWehLATlt_a8LfE0.roa
Signing time: Tue 03 Oct 2023 12:32:23 +0000
ROA not before: Tue 03 Oct 2023 12:32:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30058
IP address blocks: 163.5.175.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f5:86:74:44:e7:d2:70:09:6b:fb:04:ad:10:a9:9f:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 3 12:32:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e4920da0ed861e48059e84b01396dfdaf0b7c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:09:2b:8d:85:aa:5d:ad:d0:91:d8:1a:e0:e6:
8e:e4:5b:26:00:08:20:4c:6e:f8:d3:bc:8e:c5:37:
95:a4:32:ca:31:80:68:59:a1:e9:ab:de:8a:f2:b4:
b7:e2:85:2f:1f:eb:08:13:c1:1a:2a:c8:2f:63:d4:
46:58:4e:f0:14:dd:4a:10:3b:6b:36:ef:7a:92:c8:
3e:6b:a7:2d:12:29:6d:06:31:65:69:e1:7d:8f:37:
58:45:7a:0d:c2:1a:ff:f7:17:7b:af:7c:01:43:86:
45:13:71:98:a1:1a:9f:29:5f:17:98:d6:61:50:11:
bd:0a:9c:46:ae:12:c8:1e:1a:c9:b5:1e:9a:ac:5a:
b2:ac:37:44:5b:2e:4c:04:6c:f1:10:c5:4e:2b:98:
34:37:3e:69:57:8c:cd:43:93:64:1d:d2:e0:e6:46:
78:81:46:90:10:15:c8:6f:ec:ac:ba:bd:fc:66:cf:
cc:45:32:a3:c9:0a:c2:30:c6:18:5b:67:44:e9:fb:
da:61:3b:f2:00:47:e3:b1:96:e1:92:d8:cc:b5:6c:
92:40:6e:96:3b:60:5d:cf:74:81:b9:b7:68:85:be:
2f:56:e6:14:46:2f:62:76:ae:a1:2a:fd:c0:c3:d3:
40:a0:5d:1b:cc:fa:9a:61:fb:6b:ca:9f:ee:f0:6a:
b6:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:49:20:DA:0E:D8:61:E4:80:59:E8:4B:01:39:6D:FD:AF:0B:7C:4D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Pkkg2g7YYeSAWehLATlt_a8LfE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.175.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:fd:2a:9d:67:3c:2f:0e:f8:77:af:26:a3:86:f7:66:1f:d7:
d9:1e:67:a6:87:c4:ab:91:10:2c:ea:ba:09:68:8b:fa:3d:5d:
bd:9a:6d:e5:bd:03:4c:6c:f4:48:4e:a6:62:e7:93:5b:9e:60:
58:ba:68:ba:7c:d1:90:86:1f:4a:d3:6f:5e:f9:45:66:be:78:
08:7e:65:6a:04:f7:12:fe:2f:53:e5:ad:46:8c:19:b2:42:eb:
3e:44:28:2b:5a:48:cb:eb:80:ad:5a:51:39:5d:a9:58:19:d9:
11:00:f7:4c:44:e8:dc:33:fd:2d:22:06:f3:ff:6c:d9:66:f8:
cb:c9:52:46:bb:fa:a4:41:35:bb:ce:de:f8:bd:06:13:2d:aa:
3f:4f:3a:69:9a:9b:0e:18:e5:30:b4:9a:a6:d8:ba:ab:9c:bd:
30:a6:6c:68:c0:d4:68:b3:50:b3:86:08:a5:62:a2:f4:ed:c1:
a8:f1:5c:7f:ff:62:f1:cf:e8:bd:db:f0:0a:a2:19:cf:b9:08:
9e:d9:a5:07:06:a5:e3:a4:93:56:47:80:57:bc:ca:db:92:56:
ee:30:56:61:d1:01:f7:59:a1:64:94:f5:a5:a6:3e:85:f2:27:
65:b7:56:2e:55:06:c0:6e:de:ca:c4:d2:3c:5c:a3:59:3e:20:
a3:5c:d2:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:19 2024 by rpki-client on console-fra.rpki-client.org