Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Q7ZRp2S-bUQBc4q-EOSgllsVrLo.roa
File: Q7ZRp2S-bUQBc4q-EOSgllsVrLo.roa (raw, json)
Hash identifier: i0xJRcrfm1vxC8hNhnehNV6pd6KHSLyNl5l2qc8a+zA=
Subject key identifier: 43:B6:51:A7:64:BE:6D:44:01:73:8A:BE:10:E4:A0:96:5B:15:AC:BA
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018CC4255CB21A4F4B514116E5FB6A91F313
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Q7ZRp2S-bUQBc4q-EOSgllsVrLo.roa
Signing time: Mon 01 Jan 2024 08:30:31 +0000
ROA not before: Mon 01 Jan 2024 08:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64267
IP address blocks: 163.5.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:5c:b2:1a:4f:4b:51:41:16:e5:fb:6a:91:f3:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 08:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43b651a764be6d4401738abe10e4a0965b15acba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:06:9a:ad:a5:cc:4b:ea:af:9e:b0:95:35:14:
72:d3:8f:9b:84:fe:62:57:d2:9a:4e:ac:4d:03:5b:
ae:b3:3d:82:b7:bd:d5:ee:0f:f4:d1:4b:de:a4:1a:
13:02:de:82:40:79:f9:17:7a:9a:51:6a:9a:da:8e:
b6:4e:27:e1:86:47:1a:63:5f:30:17:fc:94:96:7a:
75:ee:ab:be:3d:f3:84:1d:72:74:b9:52:a0:42:88:
91:c0:cd:6a:6b:58:95:67:48:ca:97:cb:a7:c4:16:
63:56:72:c2:1f:ec:9d:31:0f:de:38:5d:8a:37:ac:
01:08:a4:25:c5:f5:bf:55:2e:e6:76:19:00:dc:6f:
19:b0:0a:b4:0f:6d:91:cc:74:7b:78:a8:53:72:96:
76:2d:24:0e:69:e8:91:8e:71:54:99:aa:e1:83:f9:
1f:42:d3:c9:63:ad:d4:4b:5a:4e:ac:c9:48:8a:7e:
e2:55:b9:7b:65:49:cb:a5:4a:72:b9:01:a3:2b:e9:
cc:74:bd:02:7a:a0:b7:ff:08:c9:62:08:4a:63:c4:
ed:27:bb:50:21:4c:9a:f0:4f:76:78:e8:44:cd:d1:
f9:b8:a1:df:9e:2e:9e:33:54:50:62:6a:22:aa:ae:
90:a8:d4:ec:ef:66:69:2f:4a:73:8f:ff:e1:f9:68:
4f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B6:51:A7:64:BE:6D:44:01:73:8A:BE:10:E4:A0:96:5B:15:AC:BA
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Q7ZRp2S-bUQBc4q-EOSgllsVrLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.91.0/24
Signature Algorithm: sha256WithRSAEncryption
25:ac:55:b3:d8:d7:3c:ea:cd:46:b8:18:67:9f:aa:53:87:d8:
40:42:0f:92:8e:48:99:06:3d:0f:b1:78:78:17:6b:12:98:b2:
66:90:24:6e:dd:79:10:57:75:e5:9f:8e:03:9a:3b:61:08:03:
2f:4b:cf:55:f5:42:eb:53:84:bc:47:9a:67:6e:cc:31:7e:f7:
ac:f4:0c:4b:bc:83:a1:8c:fc:f0:11:bf:b1:89:a9:b1:57:f1:
76:7b:7f:71:66:a4:03:b0:3f:be:85:94:d5:1b:50:85:93:e4:
14:e3:ad:b6:32:a7:1d:68:6a:a7:ad:34:68:83:67:be:a5:28:
61:7a:02:5f:b8:31:70:a4:5c:70:8f:0a:c4:d5:ff:c4:12:9d:
97:53:94:93:66:71:83:a4:2f:ca:c2:27:50:10:aa:ea:42:55:
7f:04:6f:5d:b0:1f:a7:f6:d0:9d:4c:3e:da:b9:d5:fb:e2:5b:
3b:6e:42:17:ca:be:71:f2:3f:a1:19:0b:a6:8d:aa:2f:67:53:
a5:bb:78:3b:77:34:e1:2c:3a:6b:d0:87:c5:a7:83:f4:a7:6b:
56:e9:77:e0:ac:e7:6f:cb:f5:93:dc:31:17:03:7f:7f:6a:7c:
87:a8:3e:4a:1c:96:76:3f:8f:97:67:38:af:db:3d:ae:5c:cd:
5a:7b:d8:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 4 07:41:26 2024 by rpki-client on console-fra.rpki-client.org