Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/clW74LJJTlXhxX_gLFrkbKkKvng.roa
File: clW74LJJTlXhxX_gLFrkbKkKvng.roa (raw, json)
Hash identifier: j717ZTIgsz8dVG26UoZWstvamdjfq0SSDs+nwfxAi/U=
Subject key identifier: 72:55:BB:E0:B2:49:4E:55:E1:C5:7F:E0:2C:5A:E4:6C:A9:0A:BE:78
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01892C90F246B048C5EA69A0F77BB443B483
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/clW74LJJTlXhxX_gLFrkbKkKvng.roa
Signing time: Thu 06 Jul 2023 18:57:23 +0000
ROA not before: Thu 06 Jul 2023 18:57:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399486
IP address blocks: 163.5.112.0/24 maxlen: 24
163.5.32.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2c:90:f2:46:b0:48:c5:ea:69:a0:f7:7b:b4:43:b4:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 6 18:57:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7255bbe0b2494e55e1c57fe02c5ae46ca90abe78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a7:71:f3:7c:a1:7d:41:1f:80:b0:38:35:e2:
b0:05:f8:4a:24:bc:ed:c0:39:51:73:f7:f6:84:54:
58:ad:d5:fb:2e:65:1b:c4:b6:2a:95:c6:42:10:cf:
99:99:5e:cd:4f:fb:6c:08:9a:c4:bb:18:97:51:e6:
67:bd:c6:fa:6d:1f:74:bc:89:8e:65:1b:a8:cb:bb:
89:6c:e9:11:b4:07:42:00:bb:04:65:e2:71:21:37:
f4:30:b9:af:03:bb:f4:be:eb:f3:8a:4e:12:fa:34:
8b:fa:3a:e6:56:0c:59:d9:c7:a2:01:07:77:25:ec:
ba:57:22:7b:c4:cf:48:3b:47:68:94:e6:f2:b0:93:
9f:f0:d8:63:17:7f:df:1c:9d:61:bf:ce:83:ab:2b:
fc:0e:71:60:e5:5d:ff:3b:07:83:6f:03:90:30:e0:
0d:9e:ff:04:9d:4d:d6:ae:e3:0c:74:66:d3:5f:11:
af:0d:e1:b5:05:c2:27:b8:b1:f2:6e:cb:f5:5f:04:
23:a4:59:4b:31:bb:8f:e5:ff:d7:7b:a9:cb:c4:b2:
e0:5e:e5:74:c8:62:2c:6c:99:7f:14:f1:2a:e9:bc:
35:8d:e5:f8:39:c9:52:4e:d0:63:fb:91:d5:26:b4:
26:bc:15:1a:36:ba:6c:78:bd:9d:26:6b:b3:0b:69:
55:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:55:BB:E0:B2:49:4E:55:E1:C5:7F:E0:2C:5A:E4:6C:A9:0A:BE:78
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/clW74LJJTlXhxX_gLFrkbKkKvng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.32.0/24
163.5.112.0/24
163.5.160.0/24
Signature Algorithm: sha256WithRSAEncryption
52:e7:6c:82:d5:34:41:d4:a4:5f:01:a7:e9:f7:1f:bb:25:b6:
3d:34:21:72:66:7f:92:40:0b:96:10:ef:a2:c1:eb:93:42:ca:
53:5d:f9:dd:52:db:1b:6e:16:3a:60:b5:39:fe:a5:43:ee:14:
81:4e:ff:18:b4:51:e3:43:3b:c1:b8:a4:a4:cd:a6:a6:ad:7a:
d0:ec:4b:0c:d5:c8:7c:75:47:7b:a8:f4:91:50:c5:e9:ac:38:
15:ec:b8:83:92:5c:0a:78:46:11:d0:f4:09:16:64:d8:c2:3e:
cc:ea:2a:86:1b:9c:ad:93:1f:62:3e:cf:f6:97:b8:e3:53:ae:
90:ca:48:d2:71:69:25:26:e0:22:52:93:c3:0a:a2:e3:26:7b:
b9:e6:74:4a:5f:d8:48:99:b8:7e:a7:78:10:eb:86:68:e0:79:
ca:b1:da:b2:6e:08:6a:e2:b5:b5:71:4c:e6:e9:61:e7:28:44:
ef:41:ad:45:e4:10:2f:2f:5e:e5:be:5f:8c:28:93:9d:d9:96:
75:0d:e9:66:40:68:ee:7d:55:d8:bd:1e:a4:60:1b:1b:73:07:
2a:05:2e:0f:3f:ce:64:36:dd:00:12:94:bc:1a:46:d7:52:20:
0b:ee:90:b4:2c:8c:f8:41:36:ae:a4:62:b5:57:bc:c8:1a:8a:
36:af:c1:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org