Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/U5I0ViSQqiwJ33ThSkV-91URJpA.roa
File: U5I0ViSQqiwJ33ThSkV-91URJpA.roa (raw, json)
Hash identifier: 76TO+zGbvvk1qgQV8SbDmRp4E0qsn3WwQlpnigVD4DM=
Subject key identifier: 53:92:34:56:24:90:AA:2C:09:DF:74:E1:4A:45:7E:F7:55:11:26:90
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018DEB2CF421BCBA73D7785E6FA6E4E38AFC
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/U5I0ViSQqiwJ33ThSkV-91URJpA.roa
Signing time: Tue 27 Feb 2024 15:26:48 +0000
ROA not before: Tue 27 Feb 2024 15:26:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40676
IP address blocks: 163.5.99.0/24 maxlen: 24
163.5.127.0/24 maxlen: 24
163.5.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Mar 2024 15:18:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:eb:2c:f4:21:bc:ba:73:d7:78:5e:6f:a6:e4:e3:8a:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 27 15:26:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=539234562490aa2c09df74e14a457ef755112690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:92:70:40:ba:1e:2e:0f:8a:6f:ac:85:d5:59:
81:5f:27:23:2c:26:6d:e4:7f:ae:e8:7a:c4:71:30:
b0:70:2d:2a:2c:69:fa:d2:39:1b:32:ab:fe:52:74:
cf:60:69:41:92:72:e7:b6:c2:84:74:4c:9c:fc:97:
19:69:2d:78:4a:50:95:ca:a4:62:47:45:16:41:13:
28:43:a1:9d:0f:bd:f0:fd:1e:68:d1:52:3f:ad:60:
9b:7d:86:73:11:cb:51:67:38:fd:f5:46:22:c6:33:
a5:51:a6:cb:c8:48:3d:01:79:5f:97:58:c3:66:be:
86:7f:e6:cc:07:24:00:d1:17:4c:ab:45:27:87:3c:
36:67:87:ae:bf:4a:83:20:46:8a:fa:a6:79:e7:7d:
7e:3f:cf:9c:0d:1b:0c:e6:65:3b:26:3b:8c:fc:06:
d3:0d:e4:1d:a9:ff:ec:17:de:c5:87:7a:d1:db:98:
a3:12:bd:74:e5:e5:8c:24:24:94:61:34:4d:c6:1e:
9d:1b:7d:4f:82:7b:d7:a5:78:c6:87:66:65:9a:ae:
78:67:19:3f:71:09:15:d0:a8:12:6f:6d:e1:e7:22:
88:29:56:df:ec:92:bd:ad:d0:7a:9b:26:ca:43:62:
93:5e:d9:4e:21:03:68:5c:32:90:80:f8:c1:09:95:
77:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:92:34:56:24:90:AA:2C:09:DF:74:E1:4A:45:7E:F7:55:11:26:90
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/U5I0ViSQqiwJ33ThSkV-91URJpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.99.0/24
163.5.127.0/24
163.5.202.0/24
Signature Algorithm: sha256WithRSAEncryption
35:c7:91:c0:e6:37:c4:02:07:88:22:01:de:d0:5c:c3:39:57:
64:f0:ea:5d:ff:39:ba:df:e8:01:8d:e4:c1:f0:b8:92:b0:9e:
10:1f:2a:43:07:6e:c4:37:29:58:9a:fc:00:11:c8:f2:a8:2e:
fb:8d:62:89:97:38:6d:eb:d4:24:06:f4:b8:75:f6:e3:ca:1c:
84:75:c0:43:b1:33:23:77:97:42:d4:f8:68:33:a4:08:d3:69:
7d:c1:23:a5:c2:f5:b4:03:eb:01:1b:38:ec:43:b2:f3:78:31:
ba:48:c1:09:9c:42:61:dd:f5:12:2f:f8:8f:47:6f:6e:e4:36:
6f:20:02:46:b1:dd:11:0b:b7:66:27:f9:e2:64:9e:69:e6:16:
05:ff:ca:0f:48:79:35:9b:3f:4a:1d:7a:89:c2:2d:5a:a5:3a:
29:e3:41:13:54:61:2d:51:e1:c9:23:19:a8:5a:b7:53:0a:33:
12:d4:01:28:46:76:f2:5e:1f:83:75:90:f4:67:d6:40:19:94:
73:c9:65:a3:03:73:cb:06:80:3f:69:13:fe:75:89:b7:4e:03:
f0:51:c4:88:80:a6:6a:fa:da:78:d6:cc:d6:f2:18:de:74:4f:
22:d6:a8:c2:7e:2d:e1:d2:ca:bf:6a:36:92:6c:bb:dc:bf:50:
0d:de:90:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 17 16:10:44 2024 by rpki-client on console-fra.rpki-client.org