Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ln4foxFtWfruf-hygMoe9hICsyg.roa
File: ln4foxFtWfruf-hygMoe9hICsyg.roa (raw, json)
Hash identifier: Wuc/ZiN5zbVNi8zJdVgTgXZ9r7Zsg3E+ZTHtMpLptJE=
Subject key identifier: 96:7E:1F:A3:11:6D:59:FA:EE:7F:E8:72:80:CA:1E:F6:12:02:B3:28
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018572C44508A4FC7D04526DE27B7131B728
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ln4foxFtWfruf-hygMoe9hICsyg.roa
Signing time: Mon 02 Jan 2023 13:55:43 +0000
ROA not before: Mon 02 Jan 2023 13:55:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210703
IP address blocks: 163.5.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c4:45:08:a4:fc:7d:04:52:6d:e2:7b:71:31:b7:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 13:55:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=967e1fa3116d59faee7fe87280ca1ef61202b328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bd:65:f9:7e:9a:cb:c0:f9:a4:f3:1f:5d:82:
5f:8b:b5:a0:4f:f5:28:8a:7e:63:90:75:ed:68:db:
54:b5:5e:10:07:da:2d:e5:9e:6d:c3:4f:bb:28:4c:
50:c1:a6:b3:03:f4:0b:c9:2a:46:5b:fd:0c:65:f4:
51:2e:16:39:04:54:f4:9f:d4:5c:1d:ea:7e:6e:4e:
04:f5:71:da:3a:64:c8:1a:fb:99:09:2c:44:49:98:
a0:54:39:23:5a:22:3d:5e:af:bf:83:ac:02:09:99:
28:f4:88:3a:a7:1c:b1:74:aa:19:df:38:62:fa:1d:
fb:42:5e:31:68:c7:3d:4a:6f:34:21:af:81:4d:54:
21:8d:3c:fe:1d:9f:5e:a4:09:e2:97:91:89:3c:f6:
29:6a:2c:46:f7:be:57:7d:20:1f:41:71:ab:19:3e:
f5:6c:e5:1e:6d:20:41:4e:bc:f8:30:b7:d7:78:92:
ec:42:ec:4b:70:a1:b7:e8:25:5c:60:9d:50:5d:ef:
61:47:b0:44:17:81:f5:d4:79:37:4a:cf:bf:25:18:
13:e0:9e:bb:a2:d8:62:64:71:1d:59:be:f4:c3:82:
e6:af:d5:22:e5:11:d4:28:f0:b6:db:71:8c:60:b9:
ee:15:ed:b5:48:24:52:87:8d:6c:88:87:fb:4a:8d:
34:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:7E:1F:A3:11:6D:59:FA:EE:7F:E8:72:80:CA:1E:F6:12:02:B3:28
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ln4foxFtWfruf-hygMoe9hICsyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.144.0/24
Signature Algorithm: sha256WithRSAEncryption
92:7c:40:4b:a5:dd:a7:a4:7a:c6:a3:a5:99:90:57:75:a0:69:
29:75:bd:7d:ad:09:1b:93:be:7d:0b:94:79:99:a8:e4:50:87:
33:5b:80:a7:06:18:e8:76:4c:f9:16:60:29:51:ab:2b:f8:68:
58:a2:9a:7e:4b:fc:ec:92:bf:14:38:0b:f7:1e:28:60:bf:24:
07:9e:3f:3f:3d:03:bf:34:b3:b5:7e:ac:31:f1:64:54:ab:cd:
31:c7:05:a6:4f:80:1b:b1:34:5b:94:09:03:05:0b:b6:53:ae:
6f:a5:e5:1f:f9:8c:d1:bc:64:64:05:c0:1a:c3:c3:fa:7e:ff:
a7:3d:03:e3:59:a1:9a:6a:02:81:da:ac:9b:72:35:d6:c0:1e:
e5:8b:cd:12:33:3d:1b:2a:5c:f9:f4:23:a6:af:8e:1a:13:b1:
8a:86:90:6d:ad:9d:fb:2b:97:cf:c4:2c:f8:35:29:f5:fa:b3:
bb:1b:e8:62:cc:24:bf:97:bc:ce:fe:77:c7:5a:c4:e3:83:73:
08:9e:df:40:08:f2:f3:19:c4:97:fd:7d:22:dd:78:2d:37:9d:
db:b1:dc:81:41:9b:51:75:e9:b4:63:d4:35:2d:06:1d:b0:6a:
1a:ad:77:6a:08:50:7c:8c:a7:8d:f9:8d:7b:29:62:2f:b3:dd:
99:fd:83:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org