Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/R5crH9_gkQjtiyIHCcZWC0okHvM.roa
File: R5crH9_gkQjtiyIHCcZWC0okHvM.roa (raw, json)
Hash identifier: spinUMgvqvwbpSt5H4Q1xhaG1A+qUhfdHIc1pUDfpuE=
Subject key identifier: 47:97:2B:1F:DF:E0:91:08:ED:8B:22:07:09:C6:56:0B:4A:24:1E:F3
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0186CCF3C853F473685DCEE50851DCB4AB6D
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/R5crH9_gkQjtiyIHCcZWC0okHvM.roa
Signing time: Fri 10 Mar 2023 19:16:13 +0000
ROA not before: Fri 10 Mar 2023 19:16:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 163.5.236.0/24 maxlen: 24
163.5.234.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cc:f3:c8:53:f4:73:68:5d:ce:e5:08:51:dc:b4:ab:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Mar 10 19:16:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47972b1fdfe09108ed8b220709c6560b4a241ef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:42:75:df:d3:33:4c:ac:ae:01:43:79:14:ae:
4a:48:e0:14:e6:70:bd:12:58:34:c8:c9:3d:a2:4e:
11:38:8b:cb:c7:84:dc:5e:48:bf:db:91:4b:d7:c6:
39:0a:66:4d:a8:f0:a4:ce:0e:4a:ae:1c:2d:fb:9d:
0f:34:a3:b3:e2:a6:40:bd:b9:2e:e1:11:92:11:66:
10:85:7e:99:0f:25:ca:bb:91:73:6d:b5:a3:61:b2:
ae:26:7a:2e:07:05:dc:04:62:e4:4c:08:71:e1:db:
1f:15:27:5f:51:21:43:48:7d:05:b7:c6:2b:2c:54:
a9:3f:f4:19:b9:90:95:ff:1f:e6:22:da:90:2e:47:
5f:5c:6e:78:a6:c9:bb:f1:4f:3d:4e:03:bb:6e:ad:
3f:1e:4e:6e:57:3b:09:06:cf:34:e1:a5:b8:a0:e6:
2c:5e:f8:e1:4d:c9:cf:85:2a:b1:08:24:3c:09:c6:
bd:03:48:e1:7c:85:0f:b5:aa:a7:a9:04:aa:c2:f8:
ec:88:6b:65:1b:6d:f0:68:b3:a6:a8:e1:ca:a6:01:
0c:35:e7:26:85:b4:15:9d:db:e0:12:91:ed:88:9e:
be:80:89:07:ad:b1:03:c1:73:02:17:1c:91:71:a8:
3f:3c:fe:56:fc:51:4e:15:ef:fd:c6:e9:c6:1d:9c:
c9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:97:2B:1F:DF:E0:91:08:ED:8B:22:07:09:C6:56:0B:4A:24:1E:F3
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/R5crH9_gkQjtiyIHCcZWC0okHvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.234.0/24
163.5.236.0/24
Signature Algorithm: sha256WithRSAEncryption
72:9d:59:0e:63:3a:cc:24:3f:2a:17:6e:60:16:10:5b:94:41:
8e:a1:3a:56:a7:26:0a:1b:36:97:3e:0e:c6:64:f9:ba:91:9c:
8f:92:26:17:8e:6d:16:b7:13:77:d5:6e:03:c9:e3:92:88:60:
48:14:56:41:c7:44:8b:95:8b:af:9e:25:93:98:4e:81:3f:8f:
f5:bc:84:e9:c5:ff:34:c3:10:9d:d8:28:38:50:9a:5f:24:ee:
e0:a4:c1:33:d7:70:3e:48:4b:e4:cf:61:14:13:57:ed:d5:16:
56:ba:7c:85:9d:74:f8:cd:e3:57:f6:39:58:54:d9:d7:76:48:
d2:95:b7:1e:9b:ff:81:71:0d:0f:e4:fa:20:56:1d:42:81:13:
0f:c6:97:77:b1:e6:df:02:ae:84:c1:7c:e5:a6:42:c9:56:3b:
e1:94:2b:90:04:cc:41:7a:81:b5:fb:86:a2:c1:37:89:31:96:
ac:80:25:26:2f:8f:69:b8:47:90:3c:f9:11:d3:19:66:19:30:
12:ea:0f:c8:91:e7:27:cb:3b:47:27:bf:63:10:b1:fd:3a:28:
d3:97:80:ba:18:92:54:8d:39:f9:64:0a:f4:93:d5:66:32:a4:
a2:ac:e8:5e:eb:aa:aa:06:90:2c:b3:05:f2:14:53:a8:29:27:
3b:6c:db:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:09 2023 by rpki-client on console-ams.rpki-client.org