Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Wzt4WZxGc9qJV3u_nHSyyoSoe6c.roa
File: Wzt4WZxGc9qJV3u_nHSyyoSoe6c.roa (raw, json)
Hash identifier: 7G7GmHpPhJYmVlRRvFLj/YhvUL4qWvEJdjfnAMY9o/8=
Subject key identifier: 5B:3B:78:59:9C:46:73:DA:89:57:7B:BF:9C:74:B2:CA:84:A8:7B:A7
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0189D4EDC50DF6A26DB5113903ED92FB259B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Wzt4WZxGc9qJV3u_nHSyyoSoe6c.roa
Signing time: Tue 08 Aug 2023 11:34:59 +0000
ROA not before: Tue 08 Aug 2023 11:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397563
IP address blocks: 163.5.137.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:ed:c5:0d:f6:a2:6d:b5:11:39:03:ed:92:fb:25:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 8 11:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b3b78599c4673da89577bbf9c74b2ca84a87ba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ee:70:24:74:ef:80:98:20:d1:3c:c1:ea:d9:
76:06:d4:75:86:06:57:9a:17:77:a0:c7:4b:17:bb:
3e:38:d5:bb:de:6f:c1:7a:aa:20:b3:86:6a:2a:cc:
2e:07:a2:82:79:93:81:5b:d6:c6:c5:ed:07:80:46:
4e:e2:bb:35:4a:10:16:69:32:a0:85:a2:e1:28:54:
bb:06:db:5b:57:65:38:14:d0:22:0c:b0:d1:b4:1f:
62:47:8c:6b:90:26:c0:d2:31:0f:92:58:3a:b2:c7:
06:7a:e2:03:0a:89:5b:64:6d:84:33:fc:ef:80:54:
cf:1f:1b:87:0a:2c:03:70:5b:9b:ea:33:5f:72:be:
63:b1:7e:c2:a2:0e:b0:01:fe:b8:a1:c6:ed:1a:93:
55:18:c3:d2:20:40:13:85:9f:97:6f:31:92:ab:35:
7b:d9:f1:de:cf:2b:9b:9c:20:93:83:f4:e8:bc:26:
7c:3b:b9:d6:1c:03:86:02:ed:5e:f2:a5:21:e5:7b:
4e:2d:78:eb:fd:a4:7e:e4:ba:f3:9d:ee:e2:08:2d:
b2:dc:99:7d:ba:a4:58:ad:87:4e:89:dd:ec:19:a3:
b7:3a:63:a4:f8:fa:93:c1:31:f8:0b:d8:87:68:7e:
6d:32:16:e6:ca:43:29:6b:57:d5:3c:e0:60:d8:9e:
d2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:3B:78:59:9C:46:73:DA:89:57:7B:BF:9C:74:B2:CA:84:A8:7B:A7
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Wzt4WZxGc9qJV3u_nHSyyoSoe6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.137.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a0:85:bb:ee:03:f4:e1:7e:1b:1f:ac:67:0d:04:cf:1b:d7:
6a:7f:32:0e:81:d2:9d:58:fe:f0:cb:56:a7:08:4d:10:01:69:
b2:7d:9e:01:f1:bc:ad:ad:56:10:f9:b3:24:ad:4c:fa:88:a2:
25:b2:9a:60:c9:cc:a0:b0:f8:76:7d:86:a1:e1:49:7d:4f:59:
73:cb:1d:12:53:71:ee:52:4b:9e:13:57:ad:bf:f9:0e:bf:f7:
ee:e4:f3:4d:ed:12:93:24:e6:54:ed:c5:e3:29:7e:b7:d6:1c:
a0:8b:6a:b4:b9:5d:e5:41:68:98:b9:90:9b:76:18:f1:aa:50:
d9:43:88:f1:72:f3:3f:e5:20:4c:43:1d:ba:47:7f:b0:55:85:
07:cc:08:b8:4a:84:e1:d0:67:ec:e9:13:e0:65:e3:2e:19:1d:
81:20:94:71:e1:fa:87:3c:be:f0:a1:69:c3:4e:f6:52:24:b2:
dd:81:c1:fb:31:fc:54:13:20:2a:42:cf:a0:10:63:2a:b3:39:
fd:db:de:c0:16:14:7c:ae:18:53:93:f8:e6:b9:f9:14:cf:26:
76:68:04:a4:80:83:d7:43:2b:0c:df:1c:6c:ab:7b:db:b3:4a:
65:9b:c4:ab:0a:2c:e3:1f:12:d8:fd:bb:18:32:42:c2:c8:34:
b0:13:0e:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 12 22:05:51 2023 by rpki-client on console-fra.rpki-client.org