Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/g5goujwgnO8M_csyg8Lyn6Z-fPI.roa
File: g5goujwgnO8M_csyg8Lyn6Z-fPI.roa (raw, json)
Hash identifier: XjSgLafBWJNi6Xvb+jSYuth1zYW9ZW56XHrcUprleT0=
Subject key identifier: 83:98:28:BA:3C:20:9C:EF:0C:FD:CB:32:83:C2:F2:9F:A6:7E:7C:F2
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0188341737C1FB2BAF6966CCD0BF227A0DB9
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/g5goujwgnO8M_csyg8Lyn6Z-fPI.roa
Signing time: Fri 19 May 2023 12:58:36 +0000
ROA not before: Fri 19 May 2023 12:58:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198607
IP address blocks: 163.5.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 May 2023 07:27:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:34:17:37:c1:fb:2b:af:69:66:cc:d0:bf:22:7a:0d:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 19 12:58:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=839828ba3c209cef0cfdcb3283c2f29fa67e7cf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9d:29:a4:0a:02:cd:5c:75:c8:00:07:5a:83:
0e:45:29:01:e1:85:0e:55:be:70:87:b9:dd:88:cd:
3d:c3:e3:d9:83:40:f5:96:6b:b7:84:b8:90:17:c8:
2e:0e:1b:3c:76:17:7f:c6:84:ad:84:74:16:1f:25:
da:33:15:b8:15:82:d2:c6:ff:45:ac:d6:a5:64:8b:
5a:7d:eb:2b:86:52:71:5d:a8:38:38:a3:f5:32:a9:
4a:67:74:74:41:69:c3:48:a2:c8:ff:c6:49:35:87:
93:5d:e9:a9:27:f2:32:65:54:4b:76:5f:99:66:c2:
b8:db:bd:35:1b:e8:1f:b8:4f:32:5f:af:2a:45:ce:
1b:b6:93:8c:65:0a:5d:ba:a5:75:63:7c:68:64:2f:
73:9f:0b:6e:64:26:3f:24:7a:0b:ae:8e:07:74:0a:
20:e3:c4:f6:9e:2e:c2:f7:e5:f8:bd:3c:94:1a:bf:
25:52:4c:ec:db:0c:0a:c7:20:51:51:30:6f:da:2a:
dc:6a:c6:f4:01:8b:01:35:3c:c2:c9:dd:38:14:fc:
34:73:e1:39:e9:c0:37:25:fb:61:de:d9:fb:ce:a1:
1e:33:6c:29:13:4e:b4:61:cf:48:cd:c1:19:14:d6:
75:21:b0:f2:04:c1:63:d7:21:f1:33:8c:45:a2:ec:
ed:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:98:28:BA:3C:20:9C:EF:0C:FD:CB:32:83:C2:F2:9F:A6:7E:7C:F2
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/g5goujwgnO8M_csyg8Lyn6Z-fPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.239.0/24
Signature Algorithm: sha256WithRSAEncryption
14:5c:4d:33:3b:76:67:cc:e2:16:4d:70:5f:81:3f:cf:f4:ea:
48:db:81:31:0e:a2:23:b8:9c:72:d8:75:d3:64:99:96:ae:68:
f0:39:78:8c:5b:3a:f9:0e:18:18:d4:be:a3:82:67:14:a9:c0:
c0:f5:f8:94:ee:f4:de:ff:3b:37:97:d9:dc:cd:24:5e:e5:a9:
db:06:91:ab:b9:39:d8:86:67:ee:09:8e:eb:bf:94:21:a1:eb:
54:e7:45:5f:1b:03:cd:2d:92:a2:d8:ad:b4:ef:f0:a9:8c:03:
ed:a3:13:0e:0e:9f:88:03:db:ed:e3:05:67:d4:90:5c:98:6e:
15:9b:c6:f9:2c:c7:f1:b5:af:86:14:c7:0e:17:4a:6a:bd:9a:
f4:18:a8:e8:b5:1a:d9:1e:75:cc:08:46:67:e0:c5:7a:86:4c:
69:43:60:4a:d4:c3:e6:d5:e4:38:5a:e9:ca:28:8d:ec:f3:c6:
4f:14:2a:24:38:d7:99:09:a2:13:79:34:b8:c4:c1:39:39:d2:
59:93:99:6f:86:2d:71:04:7e:a5:d4:71:17:37:22:e7:be:f0:
ce:d9:0f:69:2a:d6:2f:81:92:2e:3c:41:93:2b:24:9a:41:d8:
39:b2:a6:d4:4b:72:19:f5:1e:36:dd:0d:9d:6a:1e:fd:9b:4c:
fb:6c:72:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:07 2024 by rpki-client on console-fra.rpki-client.org