Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/X1OEhJztNdV3Ueggf4711XmMWdQ.roa
File: X1OEhJztNdV3Ueggf4711XmMWdQ.roa (raw, json)
Hash identifier: /TEDkNtUkfcGNcKe3KWQKIsfJm3xibauf5E4dRJHlvU=
Subject key identifier: 5F:53:84:84:9C:ED:35:D5:77:51:E8:20:7F:8E:F5:D5:79:8C:59:D4
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018857A36115873E4BCE7D567E24816480B9
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/X1OEhJztNdV3Ueggf4711XmMWdQ.roa
Signing time: Fri 26 May 2023 10:38:25 +0000
ROA not before: Fri 26 May 2023 10:38:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 163.5.209.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:57:a3:61:15:87:3e:4b:ce:7d:56:7e:24:81:64:80:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 26 10:38:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f5384849ced35d57751e8207f8ef5d5798c59d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e6:13:01:f9:65:91:50:1b:20:5d:58:e4:97:
58:d9:1b:c2:e6:f3:e4:0b:31:04:59:fe:63:8b:e1:
30:40:e4:e6:90:e4:52:eb:fc:c8:4b:ed:bb:1d:ba:
3b:08:55:61:7e:e5:4c:20:12:ce:0d:df:ba:7e:aa:
fe:31:7e:98:dd:ce:35:8f:02:d1:bd:37:aa:22:b6:
fe:6c:50:5f:4e:11:92:ba:96:b8:4c:fe:17:f8:27:
d4:7b:35:64:68:15:db:32:a2:4b:9c:f9:a2:75:77:
59:82:9c:84:15:49:eb:f0:93:a7:71:af:b6:9b:e8:
63:38:ea:fe:3c:a1:8e:ef:de:83:9e:a6:20:3b:55:
13:1c:bb:ec:06:e5:43:75:89:9b:ce:1a:44:06:04:
ac:91:2e:27:30:2a:4b:36:14:1a:6e:ac:67:18:cb:
13:10:fb:04:e5:35:95:b2:6e:bd:8e:cb:da:12:b5:
b1:13:fd:20:c9:80:bb:7d:df:ad:b9:f9:07:06:a0:
b9:71:09:18:a4:af:66:84:7b:71:26:21:e7:3e:a0:
fc:2e:31:ae:9e:9a:d6:26:2c:f1:9c:a5:f8:3b:2c:
62:be:f6:28:c2:a1:d8:2b:b4:9e:c4:fa:5f:27:24:
84:09:d6:98:7d:03:66:63:1e:46:08:70:db:cd:42:
ae:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:53:84:84:9C:ED:35:D5:77:51:E8:20:7F:8E:F5:D5:79:8C:59:D4
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/X1OEhJztNdV3Ueggf4711XmMWdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.209.0/24
Signature Algorithm: sha256WithRSAEncryption
74:30:69:c3:22:47:76:d7:1b:0e:6d:24:5e:18:ce:61:14:35:
ef:c0:00:5d:e5:36:0b:75:e0:8e:2d:97:2b:14:4b:26:55:80:
62:d6:6c:2d:1c:7d:a0:3a:f5:0c:91:93:f5:0d:2a:c8:da:7d:
05:88:c6:d8:dd:11:c2:35:42:03:6a:da:89:86:75:e7:77:67:
ed:1a:2d:72:84:fb:5d:5b:94:9b:d9:76:0c:1a:d3:45:28:f3:
08:b7:ad:af:71:e2:58:ee:f8:23:bd:48:18:05:ca:5d:ab:11:
bc:30:3a:94:05:ec:f8:cd:ac:e6:1b:2f:95:ee:6c:fc:78:60:
e0:b2:3c:37:64:ff:c0:d0:09:c0:3f:3d:ff:63:04:a7:52:4c:
95:cb:ff:2b:56:30:10:6d:36:6f:81:78:4a:57:5b:88:96:63:
02:66:55:6e:31:9a:94:ca:57:9c:1f:f7:29:8d:66:9a:f7:74:
e0:54:8e:b8:73:5f:ac:6b:65:5c:74:16:75:fe:37:91:b0:10:
24:ea:0c:4e:2f:e5:53:96:8d:ec:36:49:59:39:16:0b:3d:9d:
f8:f3:4a:19:d3:35:14:8c:85:71:b9:4d:4d:1d:0f:9c:fa:15:
78:28:4b:34:5b:2a:f1:80:61:5f:96:1f:5f:55:a5:8f:31:9d:
bd:eb:e8:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:21 2023 by rpki-client on console-fra.rpki-client.org