Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/l6uWTJ9OhDQUSNMtlZHHDfpzcnE.roa
File: l6uWTJ9OhDQUSNMtlZHHDfpzcnE.roa (raw, json)
Hash identifier: /OHmj6PTz1UeXFBmEAhuOG6d4s6VOijvpDDbHeRiFgg=
Subject key identifier: 97:AB:96:4C:9F:4E:84:34:14:48:D3:2D:95:91:C7:0D:FA:73:72:71
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018BABFABEA2D1EE15BFA87A43D5516CDD53
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/l6uWTJ9OhDQUSNMtlZHHDfpzcnE.roa
Signing time: Tue 07 Nov 2023 22:50:18 +0000
ROA not before: Tue 07 Nov 2023 22:50:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216089
IP address blocks: 163.5.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ab:fa:be:a2:d1:ee:15:bf:a8:7a:43:d5:51:6c:dd:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 7 22:50:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97ab964c9f4e84341448d32d9591c70dfa737271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:28:24:2e:c2:0e:b4:9f:bd:7c:5d:3a:fd:19:
a3:af:29:bb:64:a9:c4:b4:2f:cf:ef:64:e0:fc:33:
a4:99:09:e8:2d:6b:ea:cf:cc:73:0f:82:12:68:f5:
cf:cf:f7:ef:36:91:40:d2:ae:15:f1:a0:3b:7d:73:
94:e1:64:d8:e8:e8:ed:47:8a:40:75:24:49:55:b6:
ce:40:8c:8e:6a:64:06:89:72:e0:2c:98:78:a5:c2:
72:f4:57:17:cb:c6:a9:0c:66:a7:4b:5f:fa:72:ff:
aa:59:97:02:63:e4:b5:53:a8:0d:34:44:5f:5f:5c:
36:a7:3f:d3:ba:1a:0c:55:2b:a1:94:2a:45:65:04:
de:ee:f3:76:7b:bf:71:86:69:ed:1a:bc:3a:4e:15:
28:0b:ea:ee:69:d2:7b:d8:a1:a3:22:47:93:23:29:
64:29:85:e4:58:7b:70:3a:65:5c:57:21:88:1b:e1:
02:bd:3c:5a:cb:6d:2e:54:b4:2a:f8:1b:23:7b:91:
8e:9d:4d:d6:e8:58:d9:d2:9f:ae:ba:94:61:e8:95:
b6:0f:43:3e:63:13:1d:b3:87:4a:9e:52:51:c9:76:
e9:29:2d:5a:79:da:7d:59:7d:db:d5:df:0d:b0:60:
7f:67:4d:a2:38:50:96:98:48:e2:54:13:2b:dd:4d:
98:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:AB:96:4C:9F:4E:84:34:14:48:D3:2D:95:91:C7:0D:FA:73:72:71
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/l6uWTJ9OhDQUSNMtlZHHDfpzcnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.251.0/24
Signature Algorithm: sha256WithRSAEncryption
75:d1:ec:be:19:84:78:cb:3b:b6:45:6e:0b:87:cf:b6:83:63:
93:7e:81:ee:40:45:47:dd:8a:49:f4:03:82:ba:81:8f:80:8b:
99:31:77:c7:0f:c0:fd:a9:c0:67:a5:b0:96:20:07:f0:17:5e:
cc:b5:2c:4d:13:1d:37:17:e3:91:23:ef:3b:bb:ec:a5:88:59:
5b:7a:54:d1:e1:a2:1d:03:ec:5b:c6:fa:03:36:dd:36:16:aa:
20:31:5d:9e:d5:b0:7e:2d:ca:b1:96:e4:52:b6:05:a8:6d:46:
3a:38:5a:10:b6:ce:f5:f4:08:94:96:c9:35:71:1d:72:54:6f:
1e:23:f1:a7:fe:30:05:93:85:3d:6a:2b:60:ce:8f:6a:1e:f1:
71:f2:2e:b8:c4:f6:00:23:b5:79:66:c2:fc:31:d8:a9:cd:a8:
9a:e8:4c:33:5c:03:18:e5:40:f1:b7:94:ff:81:a1:00:ce:68:
a0:c6:0d:96:44:58:71:77:cf:08:82:ca:84:b6:6b:56:78:1d:
41:5a:6e:a9:de:36:0a:a0:a6:18:1f:30:cb:e1:f9:b3:0c:28:
35:36:73:12:41:60:03:ec:2c:f2:3c:4b:3d:39:a0:5e:e6:9a:
95:ef:7b:5b:96:96:ef:19:69:71:a8:ac:c9:db:7e:87:73:66:
7a:16:37:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:19 2024 by rpki-client on console-fra.rpki-client.org