Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mYyKvv5nC3Cu8C99Usm-7S6Z1_8.roa
File: mYyKvv5nC3Cu8C99Usm-7S6Z1_8.roa (raw, json)
Hash identifier: oafCZNddafKKxV+OiPirSb7lgskWAmvn1BwduX/AL/g=
Subject key identifier: 99:8C:8A:BE:FE:67:0B:70:AE:F0:2F:7D:52:C9:BE:ED:2E:99:D7:FF
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018F62EBE19590F748C5CED2B288B50ACA26
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mYyKvv5nC3Cu8C99Usm-7S6Z1_8.roa
Signing time: Fri 10 May 2024 14:32:56 +0000
ROA not before: Fri 10 May 2024 14:32:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64267
IP address blocks: 163.5.61.0/24 maxlen: 24
163.5.91.0/24 maxlen: 24
163.5.239.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 14:28:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:62:eb:e1:95:90:f7:48:c5:ce:d2:b2:88:b5:0a:ca:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 10 14:32:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=998c8abefe670b70aef02f7d52c9beed2e99d7ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ca:69:2b:b3:cd:55:86:31:6e:b8:4a:9f:fd:
d1:4f:98:aa:50:f8:62:56:a5:84:a7:af:59:81:6a:
4b:ad:33:b1:1e:06:84:3b:53:cc:ef:b0:2f:66:11:
fa:fb:31:82:19:9c:59:0a:c2:75:b3:e8:04:4f:09:
b9:d6:32:c4:fc:39:5d:71:5c:40:4f:c1:d7:db:c4:
87:cd:68:07:d7:05:1a:af:0c:a6:2f:0f:f1:d8:dc:
30:dc:8d:b9:b0:21:64:44:6a:d0:f4:2f:d1:10:0e:
27:a4:1d:de:d4:dc:e5:d1:6d:83:38:01:b9:de:90:
d8:41:2e:ec:2f:3e:bd:eb:6b:20:f3:c0:8c:3d:cb:
de:33:ec:d1:70:21:d1:db:9f:24:16:ac:10:80:cc:
0b:01:40:63:f1:b9:6d:d5:c8:34:0a:6a:21:ee:67:
be:7c:c1:e3:65:61:2d:ed:16:a5:f3:b8:3f:c8:e0:
a1:f0:6e:1e:b2:6e:64:82:cf:e4:be:86:c9:42:c5:
49:11:1b:e3:b2:88:b4:3f:50:de:94:57:44:a9:53:
39:f3:3d:3b:7b:f2:e7:09:a0:f4:52:05:5d:07:e7:
a7:9f:d8:fe:84:ea:23:b3:ee:c1:a5:16:59:b4:f9:
e2:3c:ba:42:7e:54:85:79:66:ec:f5:cb:ea:95:f6:
51:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:8C:8A:BE:FE:67:0B:70:AE:F0:2F:7D:52:C9:BE:ED:2E:99:D7:FF
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mYyKvv5nC3Cu8C99Usm-7S6Z1_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.61.0/24
163.5.91.0/24
163.5.239.0/24
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:76:f8:12:ff:f7:4d:d9:ed:1c:c1:78:de:6b:64:6d:f8:35:
c8:d5:2b:5a:d8:86:a9:e4:84:77:e5:e4:aa:eb:0d:7f:09:a5:
01:32:c1:b2:cd:d3:9e:8d:cb:74:61:e1:96:ab:b3:81:bd:20:
15:a4:6b:5b:90:c2:43:b0:20:f9:cf:d8:34:ca:a1:37:ab:75:
91:bc:d9:70:2f:c1:7f:f2:c3:15:90:bd:35:c2:0d:4c:a5:e1:
77:e5:0e:19:98:62:d4:47:39:76:78:b3:18:91:12:bb:81:b6:
5f:f8:61:6f:b3:e6:b3:d1:e9:b5:2f:17:61:0c:35:35:4f:28:
59:15:4f:5c:fa:bb:3e:a6:ce:bd:0c:ab:bc:fa:1b:50:be:8d:
a9:8a:db:89:28:40:be:b3:a2:7e:bd:bc:e9:dc:c6:9f:8f:9c:
71:91:e9:49:12:74:64:65:b3:d5:c1:66:e9:88:30:e7:c5:58:
5b:75:21:bc:b5:d4:3b:03:dd:d4:92:3f:34:4e:2b:41:d2:df:
3b:93:7d:c0:f2:60:4e:9a:e4:da:6b:f8:96:e4:6b:a9:90:ed:
f4:33:23:a5:b4:6b:b0:5e:9f:d6:f1:c9:db:d0:7e:81:e1:80:
64:ab:1d:3b:a5:53:0b:b6:ce:4c:2e:4c:14:14:71:8c:9b:b2:
35:48:47:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 1 17:51:30 2024 by rpki-client on console-ams.rpki-client.org