Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Z8NfZJDG6QLX3meew9ds9Ukdp_g.roa
File: Z8NfZJDG6QLX3meew9ds9Ukdp_g.roa (raw, json)
Hash identifier: pm3dxJdg9KnJaigoupv89iyvXMC6bMsd03Cdbabp5wA=
Subject key identifier: 67:C3:5F:64:90:C6:E9:02:D7:DE:67:9E:C3:D7:6C:F5:49:1D:A7:F8
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B5450629F4D32C414BABE272BFCA4D11D
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Z8NfZJDG6QLX3meew9ds9Ukdp_g.roa
Signing time: Sat 21 Oct 2023 22:17:16 +0000
ROA not before: Sat 21 Oct 2023 22:17:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 163.5.190.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:54:50:62:9f:4d:32:c4:14:ba:be:27:2b:fc:a4:d1:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 21 22:17:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67c35f6490c6e902d7de679ec3d76cf5491da7f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:57:67:c7:dd:f0:14:3a:f3:0c:e2:0c:5b:92:
ec:9f:72:f5:1a:e6:61:8a:7d:c3:76:b9:41:9d:9e:
10:89:a4:21:b0:88:23:8d:e2:a9:71:33:95:c2:47:
1f:a7:00:15:2d:78:ca:cf:40:77:21:98:ff:64:b4:
bd:27:6d:0b:70:bf:19:04:44:77:2d:12:d6:39:de:
3d:0b:b5:71:b3:0b:92:a6:9d:c4:85:34:99:c5:a1:
d2:72:09:eb:20:22:01:04:b4:2f:b4:3b:77:e8:c4:
9e:6a:09:df:8d:df:a9:a4:55:97:c1:31:3c:08:45:
65:48:75:4e:75:70:7b:70:2d:24:6e:99:3b:d0:ae:
b5:21:f3:95:5d:96:21:4b:b6:f8:76:cd:2d:3e:7f:
da:f0:01:a3:d1:dd:0d:41:59:23:38:e5:9b:f1:86:
c4:28:66:77:28:42:e5:04:78:bb:86:a6:9f:80:10:
8f:8d:78:da:27:26:cb:1a:b3:a7:5d:e5:f3:e9:44:
13:84:a3:03:67:7e:36:0c:df:77:1c:34:e7:4a:75:
65:97:eb:89:81:8c:0f:c7:e5:c0:8e:df:00:73:a8:
e9:cc:60:2d:a8:5f:df:d8:3c:32:b4:a7:20:20:b9:
0b:cf:46:2e:a9:c0:90:b3:11:9e:85:a1:8d:3f:4e:
76:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:C3:5F:64:90:C6:E9:02:D7:DE:67:9E:C3:D7:6C:F5:49:1D:A7:F8
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Z8NfZJDG6QLX3meew9ds9Ukdp_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.190.0/24
163.5.195.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:35:6a:68:4a:ef:11:2b:25:0a:10:b5:8a:db:2f:6d:3e:12:
92:33:bc:ff:bc:ce:c5:12:a5:34:04:23:89:b1:4b:ad:54:de:
cd:ee:35:be:5a:3a:41:72:c5:fe:7e:9b:8b:ec:97:a7:e4:d4:
15:d8:00:79:31:90:3d:9d:ca:59:8e:40:78:6b:b9:92:26:41:
f2:71:22:ff:cd:a8:a8:1c:3b:9b:45:0e:82:71:c3:5e:fd:91:
a6:2b:f6:eb:6e:8a:ae:df:00:05:ec:3c:c2:7b:8c:c6:36:0a:
02:12:72:09:17:03:ec:4c:74:d6:b0:eb:e8:49:11:5c:6f:6e:
29:69:c3:15:45:cc:36:36:07:a1:3f:6a:2e:c3:b8:d4:df:d8:
7a:83:b4:f0:ab:d9:a9:62:bb:d2:5d:92:1f:9e:42:d5:f2:e1:
2c:78:a4:22:67:4e:72:fb:6d:2b:13:6e:d7:b4:b4:7d:4b:3f:
96:c7:d5:88:b6:a0:3d:73:7c:33:2a:37:67:b7:bd:30:d1:4c:
2f:94:2e:90:b0:a7:9f:26:c9:17:53:69:1e:c9:00:ee:97:c0:
58:24:9a:9b:fd:2b:3e:c2:77:5a:c8:0c:90:f9:e8:31:3b:38:
5d:02:f1:c4:4d:b5:52:7c:2b:a9:a2:d9:ad:07:eb:53:5d:9c:
9f:cb:34:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:19 2024 by rpki-client on console-fra.rpki-client.org