Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hvUkaeRZWV4CwbRNPyWwgb_-Mf8.roa
File: hvUkaeRZWV4CwbRNPyWwgb_-Mf8.roa (raw, json)
Hash identifier: wqKhxVUXw4D7FsPqim2fUw54UAokrIZA14tvc4Cjft4=
Subject key identifier: 86:F5:24:69:E4:59:59:5E:02:C1:B4:4D:3F:25:B0:81:BF:FE:31:FF
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01868436E3642B999F908ADB710CBF6DC990
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hvUkaeRZWV4CwbRNPyWwgb_-Mf8.roa
Signing time: Fri 24 Feb 2023 16:17:14 +0000
ROA not before: Fri 24 Feb 2023 16:17:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61302
IP address blocks: 163.5.139.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:84:36:e3:64:2b:99:9f:90:8a:db:71:0c:bf:6d:c9:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 24 16:17:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86f52469e459595e02c1b44d3f25b081bffe31ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c1:2d:d6:d2:74:e2:c2:9d:a7:48:4e:88:b5:
ce:29:9f:bf:ec:2a:dc:b5:a6:c6:5e:f7:66:6b:ce:
bd:5a:c2:de:1e:44:8b:25:aa:3a:77:c8:76:99:3c:
85:db:a4:5d:ad:ea:c3:ab:66:05:d8:62:14:80:9d:
16:43:7d:1d:1a:94:c2:15:3e:10:fb:15:ac:7f:27:
84:e2:61:78:46:fc:f8:c0:98:10:0d:9f:95:21:0d:
04:31:04:d7:b5:33:26:1b:ce:b9:ab:32:91:b5:f4:
3e:29:42:c7:b8:bb:a6:69:08:c1:98:34:21:51:53:
e0:91:08:49:e7:ca:8c:7d:c6:05:ec:5e:94:b8:67:
27:27:a6:81:d0:4e:8c:b9:2a:ba:5f:15:43:8c:77:
7f:a5:d6:d8:7e:15:17:c3:ab:84:b5:83:fd:da:05:
78:6e:6a:a6:bf:1d:25:30:3e:39:99:9f:c3:dd:da:
01:0a:0b:5b:cd:8a:63:ff:fc:d1:2d:ba:04:4e:80:
35:6f:0b:b3:24:42:0d:74:f4:d6:2a:f9:28:f9:cd:
57:9a:b7:78:c1:97:1a:92:ba:76:cd:42:fb:b8:f8:
ee:ab:81:9a:b0:fe:d5:2b:9e:84:15:67:40:ec:df:
1d:56:09:f7:ed:4a:67:a1:f6:5b:d2:d0:96:68:17:
88:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F5:24:69:E4:59:59:5E:02:C1:B4:4D:3F:25:B0:81:BF:FE:31:FF
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hvUkaeRZWV4CwbRNPyWwgb_-Mf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.139.0/24
Signature Algorithm: sha256WithRSAEncryption
63:4a:26:ab:58:6d:88:f0:ce:8e:e3:e7:92:e9:74:12:60:47:
93:79:32:4e:4c:00:ba:40:10:1b:07:86:b9:ac:41:f6:3b:66:
26:bf:51:5c:bf:72:a9:72:b3:29:a8:a1:a7:98:f5:08:b2:72:
70:28:32:49:91:10:98:cd:5f:bc:3f:92:61:60:cb:ef:db:36:
a8:d9:86:36:46:e1:f1:45:bc:10:ab:bd:52:d2:13:06:3c:df:
bc:ee:ed:2a:05:88:12:fc:bc:a6:3b:2c:83:de:f2:9a:21:25:
6d:d0:09:1b:05:a5:ed:52:e9:97:a3:1c:d5:14:60:41:c3:bf:
9e:6c:76:e0:06:9c:30:e6:ee:92:ab:34:74:a3:a0:d5:e9:1f:
e4:f1:d3:b8:47:ef:a5:33:97:d1:2a:51:54:57:85:4e:50:12:
72:e1:e4:8e:5d:7a:00:63:80:4e:be:d1:da:5d:22:35:0c:75:
05:15:61:b0:9f:22:e4:52:db:78:e2:f5:1e:9f:6c:90:e5:40:
80:e4:b4:e0:94:3a:ae:ac:e9:75:d8:3e:34:cf:89:dd:cd:8f:
f7:11:e1:61:5e:4b:cc:96:1e:20:81:55:47:1a:48:37:87:a5:
b6:11:f7:d1:5f:40:2f:cc:49:96:da:c7:80:f0:e1:be:80:5e:
07:5a:8e:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org