Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ccA0uR_AnqeJE-e2hF16Xa8sNdI.roa
File: ccA0uR_AnqeJE-e2hF16Xa8sNdI.roa (raw, json)
Hash identifier: OAOdc1EBhQPYJTRUDgoZzLBrPjVhhP2DsMzZUCTq1Ks=
Subject key identifier: 71:C0:34:B9:1F:C0:9E:A7:89:13:E7:B6:84:5D:7A:5D:AF:2C:35:D2
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0191C31E841E48428BEA0F3AC86556FD5A12
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ccA0uR_AnqeJE-e2hF16Xa8sNdI.roa
Signing time: Thu 05 Sep 2024 16:57:22 +0000
ROA not before: Thu 05 Sep 2024 16:57:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 163.5.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 14:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c3:1e:84:1e:48:42:8b:ea:0f:3a:c8:65:56:fd:5a:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 5 16:57:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71c034b91fc09ea78913e7b6845d7a5daf2c35d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:6a:75:e1:0b:65:8b:67:84:a8:3c:ce:43:3f:
b8:72:50:e6:f1:69:79:21:9e:af:ec:d2:69:62:40:
b6:55:f7:03:91:9f:1b:61:53:7b:9d:20:f8:7b:13:
cf:ba:c7:12:01:0b:1e:0f:46:64:5c:7a:50:72:8b:
4c:a8:1d:a3:72:7b:e4:87:de:99:89:bd:5a:0d:24:
52:bf:b5:c9:b1:0e:21:93:7a:38:a4:30:88:33:dd:
dc:b3:97:e9:29:89:9b:a3:fb:3f:ac:77:7c:de:0c:
0c:6b:02:19:f3:5e:f9:25:d2:88:d6:8a:35:24:50:
0c:f3:fb:92:b8:4b:4f:48:75:e7:be:c3:7c:9a:55:
1d:9e:57:ad:30:3f:e9:2e:73:8a:d1:3f:c9:6e:8d:
b3:b4:e2:88:ef:8b:a8:75:42:72:63:c6:2e:d2:f9:
63:cb:88:9b:b5:13:2a:20:f6:0b:53:0a:fb:11:a8:
bb:56:19:55:0a:15:ed:e2:8b:20:5c:dd:ee:f3:ad:
2f:6a:42:a7:41:95:86:7f:d1:38:fd:35:9d:b8:b3:
23:1a:a4:ce:ae:37:33:b0:f6:43:1e:25:1b:13:c5:
e0:de:c6:51:e7:a7:a0:a4:a6:28:c2:05:76:d9:30:
7c:46:4a:a9:f3:ad:9c:82:11:e4:ee:55:fb:3b:91:
07:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C0:34:B9:1F:C0:9E:A7:89:13:E7:B6:84:5D:7A:5D:AF:2C:35:D2
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ccA0uR_AnqeJE-e2hF16Xa8sNdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.187.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:cf:d5:d7:9e:ad:0d:ed:aa:60:0d:64:c9:79:e2:f4:c7:85:
35:c0:e0:65:84:c9:6d:40:aa:94:48:95:09:6b:ee:90:f9:9d:
b6:6c:77:e7:9f:2b:56:83:95:16:0c:b8:02:92:ad:2a:9b:36:
a3:52:98:21:ef:11:ed:47:f7:74:31:38:93:60:67:06:6c:35:
50:a1:ea:72:fe:87:63:b2:9c:8b:19:ef:bd:d7:37:ad:9f:ae:
ae:b6:ea:90:15:31:88:c0:e6:3c:b6:3a:e8:d3:85:bf:f7:e8:
ca:c9:71:87:00:3b:8b:b3:ac:ab:c4:6a:0f:fa:a0:2f:c8:83:
e5:2b:ed:c1:00:86:5c:9d:92:57:86:60:2b:9e:09:ad:bb:18:
b5:1a:95:0f:ff:7a:05:a4:a4:92:91:3c:26:a7:d2:5c:12:86:
5d:10:33:38:c9:b1:2f:dd:94:70:32:9e:0f:dd:42:1c:79:ff:
17:0e:8d:bd:05:78:6e:f2:7e:e3:f6:19:6e:4a:49:4f:46:fa:
b6:1a:52:0f:7f:e9:f5:f6:26:6b:2b:8d:f4:b6:f6:7f:f5:ce:
96:28:a8:be:f6:c0:e7:73:b4:cf:6e:c0:ca:ce:43:f9:4a:7b:
56:1b:4e:72:c6:e5:f1:c1:a0:86:e3:6f:9d:e1:7a:67:ec:a3:
72:a3:a5:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 20:31:47 2024 by rpki-client on console-ams.rpki-client.org