Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dxuQ_cnlaIwHAuCFfSvnSyOcXGQ.roa
File: dxuQ_cnlaIwHAuCFfSvnSyOcXGQ.roa (raw, json)
Hash identifier: HFhaoZfpoU6Tc1Y6KJTW16p9wpEW254Q+v1fkO6PMb0=
Subject key identifier: 77:1B:90:FD:C9:E5:68:8C:07:02:E0:85:7D:2B:E7:4B:23:9C:5C:64
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018AD3057F2266B86612BB66354B2441D892
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dxuQ_cnlaIwHAuCFfSvnSyOcXGQ.roa
Signing time: Tue 26 Sep 2023 19:44:27 +0000
ROA not before: Tue 26 Sep 2023 19:44:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 163.5.149.0/24 maxlen: 24
163.5.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Sep 2023 20:59:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d3:05:7f:22:66:b8:66:12:bb:66:35:4b:24:41:d8:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 26 19:44:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=771b90fdc9e5688c0702e0857d2be74b239c5c64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3f:25:64:1f:b0:91:74:e0:5e:db:86:0d:93:
3d:35:97:c7:a2:25:ca:16:b2:1a:e3:bb:42:e0:f2:
2b:2f:9b:0f:a4:c5:e9:83:ee:f7:1e:ca:7e:0b:14:
b7:d0:7b:48:26:85:cf:36:fc:46:88:d7:99:b1:16:
08:58:1d:d6:5f:00:ec:e1:59:58:a4:fc:2e:88:78:
98:fa:37:e0:32:6f:9b:b4:8a:95:e3:d5:7d:92:cc:
50:3c:2c:a2:a3:cc:6f:77:7d:b3:e0:ae:b3:2e:82:
c4:62:e1:79:b5:61:f8:d6:3d:6e:2c:67:88:15:0f:
9b:13:c8:77:86:c2:0e:48:95:b5:a5:3a:ef:ad:51:
df:ee:3a:e2:dd:aa:15:9b:ee:ae:07:14:5c:08:9f:
7a:1e:87:6c:53:55:17:b7:33:1f:12:29:9f:5a:f0:
48:a3:04:3d:0e:83:95:9e:2c:3a:9d:28:d7:ca:c1:
41:e2:b1:c3:0d:63:28:8b:f3:a1:98:1e:4f:8d:ec:
72:4c:1c:36:0a:c2:29:4f:30:03:63:5d:cf:71:3b:
2a:c7:d8:c8:9c:61:43:36:95:2a:ab:f9:0a:62:e9:
63:f6:f4:e1:73:6b:5b:71:a7:72:da:7c:1f:72:be:
c5:2e:d9:72:8a:05:bf:72:90:cb:aa:86:ef:67:2f:
4f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:1B:90:FD:C9:E5:68:8C:07:02:E0:85:7D:2B:E7:4B:23:9C:5C:64
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dxuQ_cnlaIwHAuCFfSvnSyOcXGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.149.0/24
163.5.168.0/24
Signature Algorithm: sha256WithRSAEncryption
42:9a:f8:f5:50:b4:f5:21:c4:99:ef:0f:ac:69:89:81:dd:b8:
17:ff:13:0b:50:6a:c7:31:3b:e8:02:96:14:ba:d1:43:93:36:
75:3b:e8:5f:b8:31:57:32:e2:06:64:8c:99:91:ca:a5:e9:c5:
c6:53:e7:8c:c1:a4:0a:89:b2:8c:66:ed:70:fd:fc:c6:fd:2d:
b2:6b:f6:cc:31:5e:fd:85:36:b0:21:bc:f9:f8:4b:0e:dc:b8:
34:9c:e6:1b:23:d9:8d:2b:d3:d0:5e:78:59:98:26:7d:8c:18:
71:ee:0d:f0:fe:17:18:a0:a3:d7:4e:3a:21:bf:13:20:8f:81:
56:1a:44:49:78:63:e8:3b:0b:f2:ca:f0:cb:fe:73:1d:ce:90:
70:46:5e:a6:02:da:31:94:f8:13:b8:12:c2:5a:38:b3:78:fa:
a7:95:28:fd:ae:e6:c9:ec:c0:fe:4a:04:f0:91:88:97:a3:af:
d4:ab:47:da:04:24:5e:4c:6c:a9:59:3b:98:02:b4:30:8e:e9:
37:f7:9c:10:aa:4e:db:bb:6c:6f:b8:5d:d0:41:d3:cd:5a:b2:
65:cd:d9:1a:39:6e:a8:08:fa:dc:2f:61:47:01:f7:0f:6e:8c:
87:b3:86:36:c2:78:e2:43:b8:88:68:e0:65:c0:40:2d:a8:78:
a4:6f:fd:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:07 2024 by rpki-client on console-fra.rpki-client.org