Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/jGk-l8BRZyI4Mg5fGa7yJMeMZ0E.roa
File: jGk-l8BRZyI4Mg5fGa7yJMeMZ0E.roa (raw, json)
Hash identifier: Qjqt0LZi4BmD5wkTVODl8X82wXDP52yMYoB/91AM2N8=
Subject key identifier: 8C:69:3E:97:C0:51:67:22:38:32:0E:5F:19:AE:F2:24:C7:8C:67:41
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01857042D1BAD311E2692EAE504A5740816D
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/jGk-l8BRZyI4Mg5fGa7yJMeMZ0E.roa
Signing time: Mon 02 Jan 2023 02:15:05 +0000
ROA not before: Mon 02 Jan 2023 02:15:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400039
IP address blocks: 163.5.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:d1:ba:d3:11:e2:69:2e:ae:50:4a:57:40:81:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 02:15:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c693e97c051672238320e5f19aef224c78c6741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:0f:37:2f:1c:d0:65:9f:a7:42:7b:7c:84:c6:
19:f0:aa:a9:ff:15:34:c9:c9:80:50:6e:1c:4e:7d:
6b:72:d4:2f:0c:9c:c0:cc:33:76:57:a5:88:36:80:
32:10:b2:54:81:52:5d:11:21:6c:5b:b1:25:c5:ac:
b5:3b:22:0b:97:db:89:be:2a:5f:9b:bf:36:42:a5:
ad:74:8c:e6:f1:1c:1f:e1:20:85:d3:a8:80:c9:ea:
64:22:19:d2:04:42:92:d5:34:95:83:14:6a:52:c9:
ea:47:ed:05:d6:f2:b6:a4:3f:35:a0:b5:4a:de:13:
ef:04:18:ca:db:9e:8a:4b:0a:69:dc:df:0b:1a:72:
9d:87:09:72:ee:ac:c1:6f:f3:0e:58:88:31:33:6d:
bf:ad:79:3a:ab:07:b7:c3:87:fc:a0:be:86:59:4b:
7f:8e:9e:1f:db:fb:b8:36:2f:49:78:fc:48:5e:6f:
e0:0d:fa:b6:89:36:94:df:f7:e5:68:62:2d:2e:5d:
d6:5f:b6:61:c6:e2:ed:65:f2:47:1c:41:b6:68:b4:
91:01:0f:a5:14:73:13:80:8f:a2:81:da:f0:2b:2c:
80:3e:45:6f:52:f0:90:d2:0a:f7:c6:c9:c0:f8:45:
7d:fb:cd:51:a0:d9:a5:d2:fe:9f:53:a2:ff:4c:d8:
c3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:69:3E:97:C0:51:67:22:38:32:0E:5F:19:AE:F2:24:C7:8C:67:41
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/jGk-l8BRZyI4Mg5fGa7yJMeMZ0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.167.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:f3:50:13:54:a1:a1:a3:01:25:5e:c7:86:17:4e:4d:92:22:
57:bd:0d:bc:2f:31:01:4f:16:f8:bb:92:76:c0:2d:1f:ac:94:
8e:f1:1c:6c:46:22:f4:f2:f5:ca:3a:f9:ff:d6:78:c8:a0:44:
70:23:37:1d:37:53:ba:e7:b4:00:c6:73:bb:b5:12:7c:5a:09:
52:bf:8f:c2:a4:ad:3c:5d:71:e1:1a:1c:59:4e:a5:a4:33:58:
75:83:e9:47:0d:8e:0c:32:30:91:2b:5c:1f:5d:b4:f8:c6:e8:
f8:c9:99:6c:03:59:23:a0:ae:d9:f1:81:72:c3:e9:7d:55:3f:
2d:f6:61:57:6a:79:2d:04:73:41:ed:85:4b:bd:35:3e:bd:ce:
8f:0f:6f:ec:b4:16:21:bf:0f:2b:5b:9f:94:85:23:0b:11:e2:
f3:d4:e7:90:c4:e7:31:7c:09:87:59:53:7b:9a:d5:53:4d:4d:
47:a5:67:38:08:25:64:bb:bc:4c:a8:42:7b:0c:ce:60:4a:c8:
87:50:00:fb:89:cb:75:7c:9a:52:1c:6f:a7:2a:d1:fa:58:9f:
4f:67:9c:e9:a7:32:f4:f9:e2:5c:c1:09:1c:ae:f3:bd:76:07:
4d:31:64:a8:7b:aa:0e:dd:ee:d2:8e:12:9d:d1:b5:21:b7:23:
c9:a7:a6:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:32 2024 by rpki-client on console-ams.rpki-client.org