Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_OcMxQvXu8BNNdfgcr2Sh4whZ6k.roa
File: _OcMxQvXu8BNNdfgcr2Sh4whZ6k.roa (raw, json)
Hash identifier: BdXAgWNx+lXOFNO1SdO1oPobAem/s4/ZXICnnmSLaHw=
Subject key identifier: FC:E7:0C:C5:0B:D7:BB:C0:4D:35:D7:E0:72:BD:92:87:8C:21:67:A9
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018CC42567757CAEBDF172FB3FCCB3604915
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_OcMxQvXu8BNNdfgcr2Sh4whZ6k.roa
Signing time: Mon 01 Jan 2024 08:30:34 +0000
ROA not before: Mon 01 Jan 2024 08:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210907
IP address blocks: 163.5.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 Feb 2024 10:23:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:67:75:7c:ae:bd:f1:72:fb:3f:cc:b3:60:49:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 08:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fce70cc50bd7bbc04d35d7e072bd92878c2167a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e8:76:85:66:0d:f4:50:05:7d:1c:78:b7:60:
02:8a:e6:c3:01:e7:09:b2:8e:d4:3a:06:5e:9b:23:
19:33:a1:11:e1:61:4c:11:f4:26:fd:e3:6a:50:45:
22:5b:ae:9a:fa:06:4c:5a:47:f5:1a:88:6e:5b:18:
c5:e3:81:06:e5:f7:32:f5:51:e8:f3:94:dc:33:41:
62:e0:03:a0:1e:ff:be:7c:0a:73:34:34:e0:0e:3e:
b4:83:a6:7d:80:88:19:dd:14:3d:66:d1:83:88:43:
af:97:6e:86:67:8f:5f:d9:74:ac:d5:1a:a8:d7:10:
ce:c7:43:cc:72:4e:54:81:29:80:b5:d0:00:f0:80:
f2:ae:ba:19:f4:b7:c3:cc:cc:da:2a:5a:51:4d:57:
9f:e1:d8:d2:23:de:20:ee:7f:92:f1:d1:73:b1:aa:
96:55:56:82:0e:95:55:b9:3d:94:7e:de:f3:10:d0:
e3:6c:d1:7f:7f:5d:80:ea:e9:45:6c:ec:87:e2:9f:
a5:cd:a7:56:b9:5b:1e:3d:f8:24:6b:ae:4d:ad:14:
67:18:b7:f9:50:98:40:59:bb:3d:c0:77:92:47:2d:
07:fb:38:83:dc:f7:61:58:b3:f2:2b:c8:4e:55:d1:
0f:94:a3:8c:f8:3c:68:e1:c9:6b:6e:aa:ae:50:78:
b3:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E7:0C:C5:0B:D7:BB:C0:4D:35:D7:E0:72:BD:92:87:8C:21:67:A9
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_OcMxQvXu8BNNdfgcr2Sh4whZ6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.185.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:fa:a8:ba:57:b4:51:9f:c9:b4:3d:c3:2b:a8:05:17:f3:0b:
8f:ce:95:4c:cc:be:b7:0e:11:07:26:ba:27:04:a4:90:e3:61:
1f:5a:e9:a9:a9:4f:7f:e3:7a:ad:c4:38:4f:f9:60:99:46:90:
9f:1d:42:a4:54:19:92:0f:d5:08:e5:a4:61:5b:37:94:ba:3d:
09:23:ab:79:0f:ca:d9:66:eb:07:f0:b2:68:8e:37:1b:40:5d:
e3:8b:8b:1d:1d:1e:5a:4f:5a:92:fb:6b:11:26:30:6e:4d:68:
dc:67:30:86:ed:2c:6b:91:3c:12:9a:7c:8a:60:e9:2b:4d:08:
0c:e8:0a:89:b4:27:50:84:ca:4f:4e:f7:3a:8d:6e:c0:53:67:
f0:c2:5c:24:e6:be:a2:54:37:f5:99:bc:5e:7e:e3:50:46:24:
f8:76:76:c5:7c:c4:eb:2c:2b:b4:f6:89:36:24:30:64:b2:fc:
9e:d1:ed:54:3e:b8:98:27:51:75:e4:30:1d:fd:06:31:75:a7:
1c:c3:aa:da:f0:84:7a:66:a3:b1:e6:eb:44:39:5a:94:2f:e2:
39:c8:02:83:53:bd:26:fc:ca:a9:3c:87:90:3e:86:94:e7:fc:
b2:45:c1:53:2a:bf:1b:02:06:36:5f:5b:32:14:4a:95:d8:12:
8d:a5:d7:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 24 13:43:56 2024 by rpki-client on console-ams.rpki-client.org