Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/g01n0tf6J-sWZpkK_y0anzvXOgY.roa
File: g01n0tf6J-sWZpkK_y0anzvXOgY.roa (raw, json)
Hash identifier: ZIvQ6u8KQviR7NZPB963V6bcYit5nipF+Ik2rzKnqSw=
Subject key identifier: 83:4D:67:D2:D7:FA:27:EB:16:66:99:0A:FF:2D:1A:9F:3B:D7:3A:06
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0190C4B5EA418BBBA175FB5A03F7FEA68D03
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/g01n0tf6J-sWZpkK_y0anzvXOgY.roa
Signing time: Thu 18 Jul 2024 07:19:34 +0000
ROA not before: Thu 18 Jul 2024 07:19:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199912
IP address blocks: 163.5.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jul 2024 18:16:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c4:b5:ea:41:8b:bb:a1:75:fb:5a:03:f7:fe:a6:8d:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 18 07:19:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=834d67d2d7fa27eb1666990aff2d1a9f3bd73a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:34:9e:82:f9:bc:a0:d9:c9:8e:cf:09:4e:be:
29:a0:cb:6d:ad:28:7b:0b:ed:aa:46:25:bb:da:9b:
f1:a3:98:e8:ba:05:3b:a2:78:19:4e:34:7f:83:2b:
ca:e0:96:0e:58:a1:3f:21:68:d8:ce:ff:00:dc:d8:
c7:23:24:cd:11:20:26:fc:00:c9:4a:56:c2:7c:23:
29:01:95:b6:1a:c6:db:29:82:66:fe:b6:4d:d3:29:
e9:0a:33:94:1d:f3:3d:47:d5:70:e0:57:f9:95:eb:
fc:a1:8f:9d:3c:8e:78:f9:da:5f:79:92:64:01:94:
a8:b2:5d:12:27:05:f8:0b:d7:12:2c:f6:d9:bb:bc:
fb:85:d1:91:de:6b:1c:ce:6b:d9:3d:70:ff:82:f5:
b9:38:71:ef:24:2c:22:a6:66:a9:13:42:32:a4:32:
81:9d:fe:fc:76:7c:f5:6c:84:13:9b:b9:79:63:7b:
1d:88:06:e3:23:5c:48:74:fb:4b:d2:87:f9:d9:7a:
99:8f:e9:73:f9:d2:10:fd:d6:68:b0:49:78:59:d9:
e9:fb:81:2c:99:e8:c2:c1:2c:72:9a:81:45:5b:b0:
64:f1:4c:ee:fd:b5:f1:51:7c:94:ba:ba:84:c5:a8:
40:52:f8:f2:08:38:dd:9c:92:c5:21:40:84:87:dd:
e2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4D:67:D2:D7:FA:27:EB:16:66:99:0A:FF:2D:1A:9F:3B:D7:3A:06
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/g01n0tf6J-sWZpkK_y0anzvXOgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.215.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:8d:39:ac:7f:21:73:c9:38:5e:ab:c6:f4:08:c9:7d:fb:de:
02:b4:41:1a:03:7d:d9:e4:0e:ae:c1:90:4d:2f:ba:fe:25:30:
e7:f0:5a:63:38:f2:1b:f6:a8:f6:62:ce:84:2a:c2:4a:16:bb:
91:27:0f:1d:43:ef:dc:52:2f:a3:3d:0c:31:3c:2f:87:ef:ed:
4b:aa:5a:0a:a0:2b:15:db:a4:1b:be:39:46:8e:3b:46:94:0a:
f5:b2:15:75:82:96:c4:af:74:69:0b:55:12:db:93:19:19:b5:
ec:12:96:c7:67:cd:35:f2:ab:a4:5a:6e:9a:e6:d0:5d:3a:97:
9e:d4:b1:d1:38:0b:c4:bf:db:7f:f6:21:8a:b4:01:9d:fb:fc:
b4:c0:06:df:85:db:97:e4:3d:7c:da:e1:71:8f:18:d3:64:6b:
97:11:e1:bf:90:6e:68:16:79:5e:1c:f0:51:1f:1d:a4:0f:01:
ea:66:47:89:eb:17:04:9e:fb:65:c2:75:80:45:af:7e:7e:3e:
7f:bb:a2:66:b8:77:eb:3b:44:0a:12:b6:aa:5a:ee:5b:cd:a1:
2f:92:d3:78:d3:09:3c:a8:b5:dc:7d:77:d5:07:44:ec:9e:98:
8c:fc:45:54:d3:38:96:97:6d:37:0e:06:77:d7:e8:1e:cc:89:
fd:6d:7b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 23 20:54:15 2024 by rpki-client on console-ams.rpki-client.org