Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mrw5vONCZQooLkjTsvkY56CRMjw.roa
File: mrw5vONCZQooLkjTsvkY56CRMjw.roa (raw, json)
Hash identifier: 7NRXwN0Q5UipDrVZxtSoucpDN3KOSkTnnBo75hyhbsY=
Subject key identifier: 9A:BC:39:BC:E3:42:65:0A:28:2E:48:D3:B2:F9:18:E7:A0:91:32:3C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0188DF40AB6836BDA8DB55608903CCAA3B1B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mrw5vONCZQooLkjTsvkY56CRMjw.roa
Signing time: Wed 21 Jun 2023 18:38:57 +0000
ROA not before: Wed 21 Jun 2023 18:38:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52053
IP address blocks: 163.5.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 Jun 2023 07:22:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:df:40:ab:68:36:bd:a8:db:55:60:89:03:cc:aa:3b:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 21 18:38:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9abc39bce342650a282e48d3b2f918e7a091323c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:cf:d6:e1:f0:59:10:84:0a:ff:85:c5:97:62:
5d:fa:f5:99:e9:ab:fa:41:7e:f6:46:99:b3:8f:27:
03:02:2a:91:2d:79:3a:7b:14:2a:74:03:c6:47:ac:
f0:e2:4d:09:52:7e:c7:71:8f:e3:35:c5:47:b4:05:
54:30:c7:ac:e0:f1:6f:d1:18:fb:19:2b:3e:4c:4d:
fc:6a:fc:42:3c:4f:78:0d:5c:c0:b8:0c:a4:3d:81:
9a:ab:81:e7:88:3f:c7:b0:5e:7b:1a:fa:8c:a2:dc:
63:b9:48:8e:3e:fd:4c:00:a5:e6:9d:8f:09:8d:99:
9a:85:96:b1:30:a8:7e:80:ae:0d:65:18:7f:2f:e6:
b8:8d:a2:14:5b:6a:a5:85:be:ba:ba:1e:09:4b:f1:
f8:b0:68:85:34:fa:2c:51:a2:e8:94:e4:09:63:19:
ea:ec:63:0b:ea:2d:b5:4c:d0:03:5e:dd:e1:29:5b:
4c:c2:f9:b2:91:b2:66:21:e6:2b:af:6a:5a:ed:32:
5c:ba:74:f1:0c:94:37:04:ba:ab:05:3b:01:96:4f:
9f:09:07:e2:75:cb:94:da:dd:94:b6:9e:83:68:3a:
97:b0:5e:d0:b7:d1:e5:d3:2f:dd:ab:f8:ef:fe:35:
38:d2:d1:15:ea:37:8a:54:50:e3:44:14:7b:7e:a3:
ec:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:BC:39:BC:E3:42:65:0A:28:2E:48:D3:B2:F9:18:E7:A0:91:32:3C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mrw5vONCZQooLkjTsvkY56CRMjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.149.0/24
Signature Algorithm: sha256WithRSAEncryption
05:a2:f4:37:21:30:8e:f1:a6:03:b7:12:ca:a0:54:99:91:97:
a9:fa:11:84:4b:44:5a:26:13:54:6b:c1:f4:c7:ee:b0:ca:b1:
ea:ab:e5:58:8d:f5:89:72:09:95:eb:a4:d9:4b:a2:81:47:90:
79:f0:25:66:78:21:ca:21:3a:e2:f1:95:10:42:8a:77:2b:bb:
c5:c1:6a:f3:f0:e3:95:a1:9d:6f:91:06:4b:c5:25:43:f8:68:
a2:40:d4:16:e8:60:91:1e:d1:20:14:5b:5a:02:57:60:46:9d:
5c:b0:c0:51:7e:58:97:7e:8e:c5:75:fb:7b:c0:76:bf:c2:18:
89:70:a8:d0:de:94:99:41:32:34:2e:58:1f:57:39:44:41:98:
08:e9:09:7c:40:01:bc:2b:4c:75:87:5c:45:2c:6e:3a:1c:52:
ca:02:2d:38:4c:a0:11:b3:52:38:33:fb:6d:c9:11:77:12:52:
6b:d6:80:a3:ea:76:b2:ef:0b:4f:4a:1f:b5:cf:c4:0b:17:16:
ad:23:4e:59:dd:9f:ab:bc:a8:7b:59:6c:40:01:3c:f6:cd:7d:
93:09:8b:6d:f7:18:32:f4:76:f6:87:42:cf:fe:28:9e:33:a4:
4f:c5:d9:44:cb:a5:b8:c5:85:5b:0e:d1:2c:a0:7a:43:19:97:
3d:d2:08:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:35 2024 by rpki-client on console-ams.rpki-client.org