Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QbqyK4wjAgeoXiGPVc3gHwpAIyQ.roa
File: QbqyK4wjAgeoXiGPVc3gHwpAIyQ.roa (raw, json)
Hash identifier: F8jb//zlnA9YWQlNcJB4QeTEC8wpHpFN/unJ20yvKQo=
Subject key identifier: 41:BA:B2:2B:8C:23:02:07:A8:5E:21:8F:55:CD:E0:1F:0A:40:23:24
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01857042C12B6B487A3C603107E2CAB894A7
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QbqyK4wjAgeoXiGPVc3gHwpAIyQ.roa
Signing time: Mon 02 Jan 2023 02:15:01 +0000
ROA not before: Mon 02 Jan 2023 02:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 163.5.117.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:c1:2b:6b:48:7a:3c:60:31:07:e2:ca:b8:94:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 02:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41bab22b8c230207a85e218f55cde01f0a402324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:46:4d:f6:ef:14:17:47:e5:50:79:ac:55:73:
67:60:93:d5:e9:79:97:6b:35:1d:e3:44:e2:d3:41:
41:54:50:e9:0e:52:2e:d0:72:90:b0:7d:63:f2:a1:
c7:8b:a5:d0:e0:f2:5e:07:4b:e3:c5:a4:d0:bc:74:
77:6b:73:99:4a:d7:bc:f3:ca:b3:56:7a:34:75:a7:
fb:d9:39:e8:bb:64:56:33:fd:56:e4:42:5a:8f:8e:
36:1c:a8:c2:73:89:fc:69:33:e5:54:db:8d:4a:99:
eb:e7:bf:76:36:aa:c7:2f:79:63:3e:19:23:33:31:
a2:26:78:d9:7c:21:af:d3:f5:05:47:b2:89:3d:5c:
ce:0f:58:df:c2:c2:74:d8:7d:9c:4d:e7:50:ec:38:
25:9d:f8:de:11:ea:34:85:02:31:54:15:43:28:85:
d1:6a:9d:e4:02:96:29:77:20:dd:08:c4:25:b3:7d:
51:58:78:d4:4b:11:59:80:fd:cd:75:e1:3e:a6:8a:
44:40:3e:ca:b3:b3:54:db:98:2e:fa:0b:10:7f:b4:
86:f9:18:b3:13:fa:b1:fd:5f:35:09:76:fb:52:5f:
75:5d:23:c7:f2:11:34:16:39:b7:fe:62:e6:a6:3f:
60:35:5b:97:3a:76:ed:0b:41:2a:3f:28:fc:91:b9:
3e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:BA:B2:2B:8C:23:02:07:A8:5E:21:8F:55:CD:E0:1F:0A:40:23:24
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QbqyK4wjAgeoXiGPVc3gHwpAIyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.117.0/24
Signature Algorithm: sha256WithRSAEncryption
62:ca:8c:9c:44:6e:34:8d:bd:a9:76:59:0c:4a:63:44:1d:cc:
29:29:17:6c:35:26:c0:ee:6a:41:64:e1:27:97:f7:de:54:84:
25:ae:46:3a:e5:84:5a:16:c0:44:85:b9:5f:1d:a6:a2:91:fb:
78:9d:30:91:8b:4b:32:65:60:63:6d:e2:cd:51:6e:c2:b5:f5:
ed:c7:a5:24:05:40:e0:c9:40:2f:fa:c1:18:bb:c5:6c:76:62:
d1:c6:d1:ac:47:d7:ac:fe:b4:f5:93:3a:5d:5f:34:f1:47:00:
1c:a8:e2:7c:25:c1:e9:dd:db:d5:cc:2a:c0:7f:f8:7e:29:72:
e3:bf:d2:35:88:32:f2:09:cc:41:ff:b7:1d:3c:9e:64:11:19:
72:b8:a7:f0:69:19:6a:01:06:ff:b3:2b:81:81:1c:50:31:27:
c9:9f:cc:70:de:83:b1:f0:04:5c:d1:39:55:52:bb:24:d4:37:
90:79:da:7f:40:71:a6:5f:74:75:2f:bc:ac:ea:fe:83:20:4e:
7e:99:7c:33:65:c9:05:b6:56:62:33:e4:02:cb:f5:bf:3f:cc:
b1:b3:ea:7c:35:ca:47:64:ce:f3:a0:35:fe:91:f5:02:56:f9:
43:bd:68:6a:83:d2:60:3e:0c:e6:a2:74:55:f7:c7:64:8b:d0:
83:64:9f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:21 2023 by rpki-client on console-fra.rpki-client.org