Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/a9ZzvUWgAwZvcZ1PfAKCfeqSMwc.roa
File: a9ZzvUWgAwZvcZ1PfAKCfeqSMwc.roa (raw, json)
Hash identifier: XD5vn4aZhd/xhE1Jp5aF4wYL0HI8iRWhJi4p5Mb6GvU=
Subject key identifier: 6B:D6:73:BD:45:A0:03:06:6F:71:9D:4F:7C:02:82:7D:EA:92:33:07
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018CC4255BEA0E256F9E635D4CEA8CB7ABC3
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/a9ZzvUWgAwZvcZ1PfAKCfeqSMwc.roa
Signing time: Mon 01 Jan 2024 08:30:31 +0000
ROA not before: Mon 01 Jan 2024 08:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63023
IP address blocks: 163.5.79.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Mar 2024 15:54:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:5b:ea:0e:25:6f:9e:63:5d:4c:ea:8c:b7:ab:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 08:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bd673bd45a003066f719d4f7c02827dea923307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0b:7e:8d:4b:2b:a5:f6:64:bb:9e:55:a1:5e:
d5:25:2f:c0:5d:8d:21:4c:a2:05:78:38:0d:e2:ee:
27:31:c7:75:e4:fc:34:32:c8:46:17:39:aa:0f:61:
c5:5c:70:b8:cf:a9:01:1e:6e:92:1e:38:c2:c6:cb:
d9:3e:7b:a2:af:ab:bc:84:d1:3b:76:3b:7c:2a:37:
cf:14:cf:54:fc:5b:63:90:96:84:23:23:68:7c:41:
02:39:60:ed:80:06:3c:76:30:f2:90:d9:a2:59:6d:
7b:e1:47:a0:0b:ab:59:13:11:8c:eb:64:bb:1f:81:
6d:c4:80:b5:67:b1:d8:98:b2:ae:dd:6b:05:73:b3:
24:42:35:c9:d3:72:a3:33:14:eb:71:82:37:a3:7c:
92:be:bd:a1:8d:f2:28:24:2d:0c:b3:e8:1f:91:e9:
ad:57:8b:db:af:11:c9:8e:3b:0a:d5:a2:24:23:d6:
5c:91:17:59:32:e2:fd:28:2a:36:7d:22:96:3a:02:
bc:fc:61:fd:2b:4b:a5:92:f6:e0:0f:26:d4:5e:22:
62:ce:ec:24:ec:fd:e5:99:e1:5f:42:dd:19:52:be:
1d:8c:93:39:7e:d1:a4:23:df:8f:bf:da:74:ee:22:
ab:1f:90:22:5c:58:63:3b:f6:e6:34:31:c6:32:1a:
6a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D6:73:BD:45:A0:03:06:6F:71:9D:4F:7C:02:82:7D:EA:92:33:07
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/a9ZzvUWgAwZvcZ1PfAKCfeqSMwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.79.0/24
163.5.134.0/24
Signature Algorithm: sha256WithRSAEncryption
69:ec:b3:04:6b:1f:be:9d:4a:92:56:52:ef:88:e6:d1:cf:55:
a3:cb:6c:09:2d:3f:b4:1b:ac:58:d1:00:1e:a9:4e:d7:5b:49:
46:00:95:08:34:21:d5:20:88:00:ad:22:ce:8d:34:53:5b:4d:
25:09:59:1b:85:b7:9c:be:80:53:05:23:87:8b:82:8a:99:b7:
f7:50:bc:61:cf:cd:2a:18:53:c1:a3:20:fe:59:1b:f4:67:98:
81:73:cd:2f:0d:4b:bd:1e:23:c9:fb:78:9d:8f:30:71:8e:91:
59:05:5f:dd:5a:d5:04:9d:15:40:7d:c5:12:66:47:e6:ba:8f:
b0:6c:58:82:ac:5d:22:a1:d9:4b:44:c0:22:16:dd:22:3d:cd:
b0:6f:66:02:89:a2:0a:df:10:33:74:f6:b1:28:38:fa:4f:90:
71:8a:fd:0f:33:a3:43:40:18:2e:03:a5:67:21:76:8b:c9:32:
26:7b:b6:f2:81:b4:95:19:73:f1:51:f8:a9:ad:6c:cb:25:50:
c2:2e:b1:3e:68:22:5c:dd:e1:31:b7:64:e7:5b:13:e3:61:ce:
cf:0a:ec:57:d7:cb:b0:b1:f9:ac:d0:89:3d:f8:54:d6:9e:44:
51:a3:28:29:58:d0:5b:c9:7f:a9:5c:50:10:7a:ac:54:a2:76:
1b:e2:63:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:06 2024 by rpki-client on console-fra.rpki-client.org