Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ZZfMM3uQmpusyIIpFpGHGm-Ix7E.roa
File: ZZfMM3uQmpusyIIpFpGHGm-Ix7E.roa (raw, json)
Hash identifier: 6B5/DvPHkUGDOQxJqhCd7k5KNjy4yNDZR0sSDkdUcr0=
Subject key identifier: 65:97:CC:33:7B:90:9A:9B:AC:C8:82:29:16:91:87:1A:6F:88:C7:B1
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0187BD7E92C9A4D1A04BD74AE8018E2863EF
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ZZfMM3uQmpusyIIpFpGHGm-Ix7E.roa
Signing time: Wed 26 Apr 2023 12:16:41 +0000
ROA not before: Wed 26 Apr 2023 12:16:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 163.5.186.0/24 maxlen: 24
163.5.103.0/24 maxlen: 24
163.5.152.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bd:7e:92:c9:a4:d1:a0:4b:d7:4a:e8:01:8e:28:63:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Apr 26 12:16:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6597cc337b909a9bacc882291691871a6f88c7b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:df:6d:b7:6c:ef:c5:02:66:5d:2c:46:29:cf:
47:10:df:0b:1d:39:26:6b:4b:d8:c3:23:70:2c:89:
98:05:0d:47:b6:cd:44:55:79:4e:86:e5:11:a5:fa:
91:64:e8:b2:e8:43:52:9c:8d:ba:fd:75:81:24:a0:
59:54:f8:84:a3:a8:c5:b6:ee:83:0f:a7:10:cc:8f:
36:0f:f6:46:c0:64:df:8d:7c:35:41:bc:4a:c0:4d:
cc:40:cf:ea:1f:b2:0c:7f:df:a6:38:9a:b5:d4:c1:
0a:05:17:fd:3a:2d:c0:0f:d7:6a:da:a7:ab:b3:42:
22:79:21:13:7b:65:5c:a9:36:d4:16:06:1c:86:7e:
17:e8:7e:cf:7d:0b:6a:ba:a3:7b:95:38:41:36:c8:
7b:c1:ce:97:8b:5d:86:d3:13:b4:6f:26:6e:e9:7b:
3a:f5:78:f3:fe:01:0d:90:af:58:ea:8d:95:ea:a9:
86:a5:4f:5b:19:ba:ff:ba:8d:be:7b:44:3d:26:92:
24:a1:fd:8b:60:f6:59:65:d1:84:8a:df:14:c1:fc:
b2:57:21:e2:cf:f3:3e:19:ac:a5:e4:6a:24:47:75:
32:5f:8e:69:2e:a3:42:a0:c0:53:44:73:93:c5:cb:
a1:22:e2:08:27:22:2f:88:a0:1d:14:88:0c:6f:82:
91:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:97:CC:33:7B:90:9A:9B:AC:C8:82:29:16:91:87:1A:6F:88:C7:B1
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ZZfMM3uQmpusyIIpFpGHGm-Ix7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.103.0/24
163.5.152.0/24
163.5.186.0/24
Signature Algorithm: sha256WithRSAEncryption
45:27:e2:dc:20:39:21:0d:ba:d0:36:52:d3:95:71:75:27:a9:
4e:34:9e:e9:cb:2c:66:36:65:99:61:81:af:05:be:c4:11:1d:
cd:44:13:bb:6c:72:65:f4:00:79:4b:d0:29:0f:db:e3:57:e6:
a6:25:1f:a3:95:16:a8:96:38:71:8a:c3:34:ec:f2:dc:a8:c0:
1c:24:ba:3f:8a:45:74:b0:ca:7a:40:14:7b:46:e9:81:2f:56:
05:65:db:57:0c:a2:2a:21:25:e4:a2:f3:77:fe:85:2e:f9:57:
21:95:4a:8f:ba:c0:76:53:a6:bd:5c:28:b2:1e:d4:48:77:c4:
47:3c:d5:34:4e:c0:32:57:81:6b:51:78:15:c3:3e:c6:8f:92:
76:db:a9:35:23:da:0e:e3:57:f8:93:e3:8b:37:d8:4a:e3:18:
18:11:c6:b2:e9:cd:f9:65:6b:b7:3d:ca:71:d1:3f:e6:79:76:
3b:ba:7a:10:2d:ea:d5:0c:81:bc:1a:72:cb:5e:6c:22:a0:09:
20:f8:df:93:79:64:3a:f9:fc:de:32:fb:07:fd:f6:f7:6b:96:
5f:45:b3:bd:1c:85:2f:5d:c3:53:44:6d:fb:64:ea:e7:56:8f:
fb:6b:c5:22:f3:4a:38:23:2b:28:b2:e3:c7:33:a0:58:a5:ec:
94:db:7e:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 8 13:04:57 2023 by rpki-client on console-fra.rpki-client.org