Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_p7gAgtddPQRKsXfh8aZAFy4bHo.roa
File: _p7gAgtddPQRKsXfh8aZAFy4bHo.roa (raw, json)
Hash identifier: uMe9sStLMvCFfDxQ0ilXwwX4qLLPVhRL0mTvKQ9HgOk=
Subject key identifier: FE:9E:E0:02:0B:5D:74:F4:11:2A:C5:DF:87:C6:99:00:5C:B8:6C:7A
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0190FDB34DE9A15A348D8CCC8485808C223B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_p7gAgtddPQRKsXfh8aZAFy4bHo.roa
Signing time: Mon 29 Jul 2024 08:55:04 +0000
ROA not before: Mon 29 Jul 2024 08:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 163.5.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Aug 2024 12:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fd:b3:4d:e9:a1:5a:34:8d:8c:cc:84:85:80:8c:22:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 29 08:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe9ee0020b5d74f4112ac5df87c699005cb86c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f3:72:0a:bf:5c:ac:4c:10:3e:fb:4f:3f:c1:
4e:99:07:1a:74:e7:2f:82:8c:66:de:26:65:66:77:
bc:43:bb:47:64:20:05:04:71:37:3e:fb:9e:7f:5d:
f6:b8:ea:3b:a6:87:96:65:a1:f4:e7:a6:96:76:7f:
8b:db:0c:5d:35:2f:84:a0:15:f1:06:ef:08:d3:ef:
67:79:6a:62:bc:6b:33:de:a9:31:63:2d:70:5a:bf:
24:c1:23:fb:2d:63:21:fe:33:d1:e7:54:79:f8:89:
a1:31:da:00:57:c9:de:3f:08:0d:1f:e5:81:82:24:
52:dd:62:88:6d:99:6d:57:f8:c4:70:8f:be:82:55:
43:ba:40:e1:55:e5:aa:b6:6e:82:b5:91:ec:d8:c2:
f3:7d:85:4a:5c:a4:9a:de:51:f1:c3:84:6f:95:e2:
6a:35:31:8e:ce:4e:07:6a:03:7b:af:17:f1:21:62:
05:a5:71:90:20:82:de:92:9e:79:be:ef:33:0f:19:
e7:3c:8d:7d:23:17:16:09:05:a2:02:d6:2a:ae:c6:
12:31:91:55:f4:b8:16:a1:14:35:7f:14:7e:d7:8f:
07:87:12:e1:b8:3c:0f:01:28:ee:1e:c2:7c:a9:94:
66:af:72:4f:37:5a:b5:0f:11:b8:15:3f:2c:de:ed:
f2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:9E:E0:02:0B:5D:74:F4:11:2A:C5:DF:87:C6:99:00:5C:B8:6C:7A
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_p7gAgtddPQRKsXfh8aZAFy4bHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.247.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:eb:42:51:2d:1a:f4:af:c7:49:af:7d:15:a3:93:4b:15:4c:
24:1d:f0:11:13:45:46:5c:39:f8:c8:ef:03:c7:1b:65:a4:5e:
63:c6:ef:80:f1:03:a8:40:f5:4b:3d:5c:d3:e5:9f:63:dd:77:
70:4e:e5:9b:ec:22:dd:34:11:2c:ca:8e:9e:12:c1:26:c2:a0:
72:4e:0b:87:7d:83:d2:40:4d:7f:81:dc:ff:f2:74:bc:72:42:
06:f1:d4:85:26:27:cd:da:3f:27:96:27:ba:d9:3c:a2:5d:0e:
b7:07:46:ca:8d:c3:3f:d7:19:eb:ad:d0:5b:01:ef:38:b9:b9:
19:e4:bb:b6:97:fe:17:75:db:9f:6a:1d:f2:20:69:70:23:a4:
96:a0:75:1d:a4:4a:97:74:1b:f8:4d:e1:a0:1a:06:1b:c8:a4:
92:ba:1c:c4:00:0e:eb:c9:ee:2b:5d:f1:33:47:13:24:e6:e8:
88:90:08:0c:55:f5:50:88:78:a4:ef:f6:bd:92:7a:ee:89:69:
a2:8f:f8:90:20:4b:96:c0:45:f5:c4:f9:47:09:eb:c9:83:ee:
7e:69:26:a1:45:15:08:a9:54:10:eb:ce:28:20:89:d8:5f:51:
50:0e:d2:b7:2c:8d:a4:09:80:2a:5d:7f:ee:02:3d:ab:a1:f3:
10:ae:8b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 6 15:08:08 2024 by rpki-client on console-ams.rpki-client.org