Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Zvlm12Bqbdi6zWJziwApSQOOzlk.roa
File: Zvlm12Bqbdi6zWJziwApSQOOzlk.roa (raw, json)
Hash identifier: KNq2mE/z41eonvPPcCjJKZXQ0DEXf6BLgW6uiN0Nwwk=
Subject key identifier: 66:F9:66:D7:60:6A:6D:D8:BA:CD:62:73:8B:00:29:49:03:8E:CE:59
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018A7FB8807450ECB0118B015997C7E9443C
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Zvlm12Bqbdi6zWJziwApSQOOzlk.roa
Signing time: Sun 10 Sep 2023 15:31:52 +0000
ROA not before: Sun 10 Sep 2023 15:31:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198831
IP address blocks: 163.5.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Sep 2023 15:42:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:7f:b8:80:74:50:ec:b0:11:8b:01:59:97:c7:e9:44:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 10 15:31:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66f966d7606a6dd8bacd62738b002949038ece59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cb:fe:f4:82:34:bc:be:85:85:fc:dc:f0:5a:
63:19:fa:aa:d0:5a:85:80:7d:e6:23:95:0b:3c:5c:
31:28:49:57:81:19:69:59:08:14:a3:b6:ed:e3:f2:
49:27:b9:b9:48:7b:32:58:7f:5e:f8:1c:95:04:7d:
55:2c:7a:00:11:28:fe:b2:43:88:6c:82:66:68:4c:
d1:52:f2:32:32:5f:55:4c:3c:24:9a:39:ef:9e:dd:
e8:22:b2:23:bf:e4:95:70:0b:78:93:0c:0c:7c:52:
1f:2b:36:1e:bf:77:09:56:98:3f:cc:34:f7:1f:17:
1e:d4:34:32:68:38:be:0b:b6:99:15:04:49:7d:ec:
03:9b:0b:c4:c3:ff:71:23:a7:d8:e4:ce:0f:81:85:
bc:f8:0a:be:6c:bc:e1:59:fa:ff:f9:3c:4e:9b:80:
08:fd:62:c1:22:c7:a6:e3:1d:81:90:29:25:f4:97:
d5:45:5f:0b:97:f9:08:52:63:e8:f4:21:e5:53:2c:
46:c2:5f:19:f0:eb:2f:04:3c:97:38:3b:45:3b:53:
80:31:7d:9b:f8:04:85:a9:83:c3:61:52:e5:8c:68:
05:ca:49:57:99:78:bf:88:89:59:99:70:c1:36:17:
7e:d8:f6:61:92:56:70:e1:8f:29:61:f2:a2:77:f1:
d4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:F9:66:D7:60:6A:6D:D8:BA:CD:62:73:8B:00:29:49:03:8E:CE:59
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Zvlm12Bqbdi6zWJziwApSQOOzlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.59.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:ef:6a:f1:7d:e9:0a:7c:f2:4c:cd:4c:56:15:ef:f2:27:65:
17:1a:16:3d:00:14:4d:61:6c:62:28:41:4c:94:d5:de:06:7d:
38:b5:83:1a:85:21:c0:d3:54:de:59:30:fb:92:64:75:bc:1d:
67:2c:9b:ac:98:64:7a:85:7e:95:30:87:93:f7:1f:88:a7:14:
2c:a0:82:61:dc:8e:3e:83:95:54:71:28:0c:5b:01:6c:90:a1:
8b:78:51:d2:3a:16:97:27:3a:38:82:98:fe:8b:18:0e:12:bc:
83:fb:05:36:00:95:ca:85:ca:f7:d8:c1:2b:5a:4d:64:68:e0:
53:cc:21:59:c6:58:18:5e:6c:62:62:ee:b5:95:40:c9:41:9e:
da:34:52:eb:40:ff:04:b9:db:bb:e2:78:4e:a7:55:11:a5:36:
59:6e:c4:f8:95:b3:cf:d8:a8:88:a1:1b:c7:aa:46:f5:52:39:
ff:c8:4a:34:9c:88:b7:57:23:d6:07:da:31:6e:20:d1:aa:e7:
f0:32:b3:50:53:9b:3b:5f:a1:f0:d0:87:6d:fa:ae:80:1e:71:
46:a6:e3:93:72:8f:d0:4f:25:af:dd:18:c8:fc:eb:51:b3:19:
53:3d:b2:21:a1:d2:b9:8c:be:13:19:64:26:42:89:07:17:f6:
ab:f2:98:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:06 2024 by rpki-client on console-fra.rpki-client.org