Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RMYLQ1mBCnsvTMeBpArFYXDqcxE.roa
File: RMYLQ1mBCnsvTMeBpArFYXDqcxE.roa (raw, json)
Hash identifier: 2kp4INFBhaSDTRniLKVWlmNxXha9HKpXrkkM9R1joFs=
Subject key identifier: 44:C6:0B:43:59:81:0A:7B:2F:4C:C7:81:A4:0A:C5:61:70:EA:73:11
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018CC425652128B7BE770D79A66B303579AC
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RMYLQ1mBCnsvTMeBpArFYXDqcxE.roa
Signing time: Mon 01 Jan 2024 08:30:34 +0000
ROA not before: Mon 01 Jan 2024 08:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206505
IP address blocks: 163.5.125.0/24 maxlen: 24
163.5.124.0/24 maxlen: 24
163.5.140.0/24 maxlen: 24
163.5.166.0/24 maxlen: 24
163.5.164.0/24 maxlen: 24
163.5.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 07:55:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:65:21:28:b7:be:77:0d:79:a6:6b:30:35:79:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 08:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44c60b4359810a7b2f4cc781a40ac56170ea7311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:5e:84:7f:6e:08:77:51:63:01:fe:69:ed:3c:
5b:82:96:de:de:9a:9b:cb:31:4c:b9:ea:f7:2e:56:
06:ea:f4:b5:b7:b7:e6:95:f9:ec:58:b8:bd:e3:52:
e3:40:ed:18:3e:ed:9f:80:aa:a9:12:be:ff:a6:11:
57:09:41:67:35:85:e0:90:c9:b2:4d:fa:3e:37:13:
ea:e4:17:c2:72:71:4a:3b:51:b1:29:ac:96:61:28:
fb:71:c8:43:7f:39:3a:7c:15:59:92:a4:db:6a:84:
3d:e9:53:fa:32:77:58:4b:db:3a:29:06:30:1f:5b:
75:16:b4:fa:ec:97:01:09:ec:05:87:4c:b0:98:70:
96:88:bf:14:fd:f9:45:32:f7:b8:78:cb:25:e9:82:
a0:76:6e:98:13:9f:98:40:97:71:85:83:9f:18:6a:
31:2f:3f:f5:f8:1e:32:c7:7f:07:30:d0:62:0a:d8:
e7:ef:77:7f:ea:de:c4:d6:f1:22:26:d8:38:e0:1f:
19:03:19:93:95:4b:3e:8d:53:f1:4d:5b:c3:18:43:
6c:96:5a:87:8b:93:22:1a:7b:e8:66:ae:e8:75:28:
b6:f7:3f:4a:19:b3:7a:b4:97:aa:69:b7:82:9b:41:
47:b1:2e:3c:ee:8b:fd:63:01:83:37:0a:d5:72:b8:
52:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C6:0B:43:59:81:0A:7B:2F:4C:C7:81:A4:0A:C5:61:70:EA:73:11
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RMYLQ1mBCnsvTMeBpArFYXDqcxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.124.0/23
163.5.140.0/24
163.5.163.0-163.5.164.255
163.5.166.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:b2:f4:21:38:0d:49:d4:39:c8:6b:8c:b5:d1:8d:6d:9b:42:
8f:7c:85:96:48:14:3a:6c:bb:9d:1e:ec:d2:eb:28:dc:4a:d0:
8a:b9:6a:53:81:36:d0:9d:4d:21:75:85:cf:14:1a:f9:ea:53:
34:39:d0:40:bb:88:52:c5:15:40:95:17:15:2c:f3:ea:2e:9f:
d6:12:78:fe:22:b6:64:c3:dc:b6:04:1c:65:c0:1c:e2:69:74:
3c:d2:9e:6f:4f:40:ef:7f:d1:55:43:2b:12:fb:73:c7:f4:cf:
cc:4f:9b:5b:d7:ae:bb:5d:fb:51:7f:ea:b3:b0:c7:e2:53:b6:
25:ed:88:02:93:7c:75:51:01:ca:7a:3c:48:a6:96:47:3c:ca:
20:28:27:92:3c:1b:ae:aa:16:ea:ff:c4:e8:ef:04:00:84:bb:
bd:3d:c0:7e:90:4c:77:16:f1:12:2a:69:2e:ab:9b:47:8b:05:
e9:cd:e8:b4:e6:f8:59:d6:13:14:32:77:86:81:ef:30:77:5e:
f4:18:cc:a0:79:ec:ac:da:1d:3d:8a:df:e5:91:d3:a3:58:44:
d8:02:c9:1c:d4:27:7d:a6:c3:5a:e9:0a:6c:14:37:da:b6:7a:
5a:2b:d2:f6:4e:9d:b4:07:c1:92:55:36:34:ae:ce:af:9f:73:
16:0b:ba:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 2 11:41:24 2024 by rpki-client on console-fra.rpki-client.org