Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hjBuvr-41A2ElgMmehW2NYduvJ0.roa
File: hjBuvr-41A2ElgMmehW2NYduvJ0.roa (raw, json)
Hash identifier: L4RuzUnl7JCzuA1ILFuaxBE/bG84wv/KrbogUlt4jWs=
Subject key identifier: 86:30:6E:BE:BF:B8:D4:0D:84:96:03:26:7A:15:B6:35:87:6E:BC:9D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018ACD7258C6BF721FA150AF0028102D1EB1
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hjBuvr-41A2ElgMmehW2NYduvJ0.roa
Signing time: Mon 25 Sep 2023 17:45:37 +0000
ROA not before: Mon 25 Sep 2023 17:45:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 163.5.95.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cd:72:58:c6:bf:72:1f:a1:50:af:00:28:10:2d:1e:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 25 17:45:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86306ebebfb8d40d849603267a15b635876ebc9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:06:b1:98:7e:a7:15:86:11:eb:7c:4f:c2:4c:
28:76:3e:7d:7d:1b:98:80:2d:a5:60:a0:66:14:d1:
fc:ee:0f:70:3d:18:47:f4:59:0a:e0:e0:69:0d:98:
33:dd:58:98:a3:9d:30:60:68:9f:7d:73:94:35:62:
12:56:41:fe:12:39:8e:e9:b3:3b:c8:10:ed:d0:4e:
ec:07:18:88:5a:44:31:98:6d:cd:0d:36:a7:95:c7:
99:f0:b8:d7:65:99:9d:49:c2:36:b6:14:24:15:93:
61:fd:7f:74:f6:05:07:15:b8:7a:fd:77:e8:db:98:
b5:0f:28:97:47:80:7b:c7:90:08:a5:0b:89:e8:bb:
e9:83:62:bc:c5:a3:a4:cc:ff:a6:7a:fe:3d:49:4b:
f9:6a:4a:e1:e5:77:b2:0d:d5:98:0c:dc:c3:a0:0f:
eb:ed:c3:b4:af:cc:14:bf:04:23:a5:1a:5a:99:11:
6e:77:63:be:20:59:77:d3:d2:3f:3c:59:92:48:29:
b9:d8:3f:ac:8f:a5:2b:b5:ce:37:cc:96:d6:38:5d:
e4:d5:65:c0:93:75:1b:a9:d6:39:95:21:ad:ce:72:
c0:4b:15:a6:2c:da:a0:93:9b:23:38:d7:11:12:a7:
f9:16:8f:b8:ff:7b:7b:c6:af:8d:be:e0:f9:6e:39:
6f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:30:6E:BE:BF:B8:D4:0D:84:96:03:26:7A:15:B6:35:87:6E:BC:9D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hjBuvr-41A2ElgMmehW2NYduvJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.36.0/23
163.5.95.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:9d:d1:0f:90:a5:a1:c9:94:dd:d4:d7:8a:97:00:42:61:3f:
a8:05:c8:fe:24:60:21:e5:a5:f9:5d:18:7a:a9:b6:9a:48:67:
3c:95:78:55:4a:3e:91:5f:3a:1d:79:f1:aa:41:d8:87:5f:53:
e6:84:da:45:8b:76:03:d0:00:6e:91:f5:31:a4:f2:e8:b4:5c:
82:76:6b:73:55:28:44:a0:3d:3b:ad:03:f0:5c:f1:31:37:85:
12:a9:26:7a:b6:79:e1:91:82:f0:6f:59:1b:60:f3:ad:20:75:
d7:aa:14:ec:02:ba:30:54:d0:20:00:c2:97:c3:9f:69:cd:4a:
72:84:c5:99:60:85:f8:d3:b4:88:7a:e3:74:7d:e6:be:68:fd:
3c:3c:6a:e1:b3:23:02:3f:cc:6a:88:93:e7:53:ec:b8:10:85:
0f:94:82:a1:22:38:ba:b5:1d:fb:27:08:99:20:a0:6a:8b:ad:
42:e4:8f:c4:96:e0:ff:be:b5:21:b7:74:13:b8:13:f5:8b:13:
89:88:f6:1c:e9:fe:f9:70:af:95:fe:8f:57:08:62:1a:9b:b3:
78:70:e5:2e:2a:39:b6:2c:84:00:f8:0f:37:e3:32:27:48:05:
e2:01:ea:2a:59:66:97:40:83:42:88:76:7b:90:94:7e:f9:c9:
9a:81:47:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 2 09:28:53 2023 by rpki-client on console-fra.rpki-client.org