Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YLTil2ZpSrV_fO3-72DpLABpiiM.roa
File: YLTil2ZpSrV_fO3-72DpLABpiiM.roa (raw, json)
Hash identifier: MSO6tDm84+rlymmR1u7denB9iTPGLQwO3bnBg+RL4Tc=
Subject key identifier: 60:B4:E2:97:66:69:4A:B5:7F:7C:ED:FE:EF:60:E9:2C:00:69:8A:23
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0192421424320C1FA5A724D8A77B99795A29
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YLTil2ZpSrV_fO3-72DpLABpiiM.roa
Signing time: Mon 30 Sep 2024 08:37:49 +0000
ROA not before: Mon 30 Sep 2024 08:37:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40676
IP address blocks: 163.5.56.0/24 maxlen: 24
163.5.82.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.127.0/24 maxlen: 24
163.5.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 13:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:42:14:24:32:0c:1f:a5:a7:24:d8:a7:7b:99:79:5a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 30 08:37:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60b4e29766694ab57f7cedfeef60e92c00698a23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:93:73:ef:29:4f:bf:41:6b:7c:64:4f:d2:e8:
84:11:87:c1:58:01:3d:01:df:1b:9a:bc:df:6f:9b:
b7:bf:5c:78:d4:24:5d:17:4b:8c:df:12:14:ac:fc:
39:1e:6e:0f:22:2e:a8:85:dd:f9:77:94:e9:6b:98:
2a:ad:b3:77:72:ce:2d:31:35:d9:eb:29:c9:25:f5:
18:ab:03:95:e3:3b:6b:ca:b2:8d:86:4f:3e:61:0b:
4e:e6:5f:bf:55:43:13:e6:da:7f:e3:59:e6:c1:22:
62:0c:98:d1:4c:7f:c5:2a:2f:2a:2e:0a:3a:64:dd:
4e:03:9e:86:f3:da:4b:5d:78:20:77:a7:27:e9:35:
4b:15:10:ca:de:c9:03:c7:9a:69:d7:33:e4:cf:3a:
37:d5:3c:16:4d:18:df:af:c5:c4:4c:a0:69:90:04:
38:93:0e:0d:07:a4:c0:b1:02:0a:71:20:8f:f8:e5:
c5:8e:af:69:f8:0d:58:88:52:14:d7:66:e0:45:f9:
e1:af:e3:8d:84:57:0a:ba:64:31:34:22:84:1f:96:
da:ff:a6:7d:7a:9f:a0:a9:6b:59:ed:c5:8d:1e:08:
91:19:5b:9b:4b:07:5b:3a:4f:ad:0d:8f:45:4f:5f:
d3:75:e2:03:60:9e:66:e1:88:ca:b5:a0:76:e3:6a:
db:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B4:E2:97:66:69:4A:B5:7F:7C:ED:FE:EF:60:E9:2C:00:69:8A:23
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YLTil2ZpSrV_fO3-72DpLABpiiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.56.0/24
163.5.82.0/24
163.5.99.0/24
163.5.127.0/24
163.5.202.0/24
Signature Algorithm: sha256WithRSAEncryption
31:fb:90:6f:9b:f8:44:a8:bc:71:26:a2:50:59:35:4f:93:23:
8b:be:fd:fc:58:7b:ee:5a:c9:12:52:0e:21:42:48:84:40:4e:
ec:a7:a2:74:87:14:28:37:1f:17:56:49:52:71:c4:0e:27:8f:
3c:e4:a0:d7:04:7d:19:d3:b8:b2:4d:c8:c1:be:2a:4e:ac:af:
6d:93:9c:32:e4:ef:5c:7b:6a:c2:38:ff:4b:34:17:09:ab:1d:
8e:0e:c6:38:4d:ed:13:89:d8:33:2c:81:bc:4b:76:2d:05:30:
9c:78:0c:2a:e2:f7:7c:25:6e:f2:a0:4f:ac:69:94:f8:1b:a0:
9c:3e:53:6a:be:0a:8c:a9:45:53:7b:7d:95:00:9f:0d:a4:df:
d6:f1:e2:b3:fb:da:fe:0d:3a:c0:1e:21:88:6a:21:8d:37:a2:
0d:22:42:78:e5:bb:8c:85:8e:7f:f8:61:19:7d:23:0d:da:72:
bb:fc:be:04:97:bc:b5:cc:ff:21:c8:3a:76:3c:1d:39:5d:c5:
0a:7f:2d:43:80:d0:f9:a9:88:ca:06:c7:00:59:2a:37:7f:b3:
df:59:8a:de:bb:5a:5a:6f:2d:25:ae:c9:c9:bd:19:f3:2f:14:
80:5c:37:98:50:3f:a4:f2:f7:33:11:04:0d:fa:b9:7e:86:cc:
ad:59:5b:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 2 17:42:41 2024 by rpki-client on console-fra.rpki-client.org