Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nDp-E3jn5in1_K-56dxqyIoXFf4.roa
File: nDp-E3jn5in1_K-56dxqyIoXFf4.roa (raw, json)
Hash identifier: iukJURYD+qwBXmSynzwZMCcp7pll/eU2c+dwg2LA6tk=
Subject key identifier: 9C:3A:7E:13:78:E7:E6:29:F5:FC:AF:B9:E9:DC:6A:C8:8A:17:15:FE
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019081EE08A0F0DBE8D888756F737B245CF9
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nDp-E3jn5in1_K-56dxqyIoXFf4.roa
Signing time: Fri 05 Jul 2024 08:06:18 +0000
ROA not before: Fri 05 Jul 2024 08:06:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56339
IP address blocks: 163.5.2.0/24 maxlen: 24
163.5.5.0/24 maxlen: 24
163.5.10.0/24 maxlen: 24
163.5.11.0/24 maxlen: 24
163.5.12.0/24 maxlen: 24
163.5.20.0/24 maxlen: 24
163.5.21.0/24 maxlen: 24
163.5.23.0/24 maxlen: 24
163.5.24.0/24 maxlen: 24
163.5.40.0/24 maxlen: 24
163.5.41.0/24 maxlen: 24
163.5.42.0/24 maxlen: 24
163.5.43.0/24 maxlen: 24
163.5.44.0/24 maxlen: 24
163.5.45.0/24 maxlen: 24
163.5.46.0/24 maxlen: 24
163.5.47.0/24 maxlen: 24
163.5.48.0/24 maxlen: 24
163.5.49.0/24 maxlen: 24
163.5.50.0/24 maxlen: 24
163.5.52.0/24 maxlen: 24
163.5.55.0/24 maxlen: 24
163.5.57.0/24 maxlen: 24
163.5.68.0/24 maxlen: 24
163.5.69.0/24 maxlen: 24
163.5.80.0/24 maxlen: 24
163.5.81.0/24 maxlen: 24
163.5.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 15:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:81:ee:08:a0:f0:db:e8:d8:88:75:6f:73:7b:24:5c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 5 08:06:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c3a7e1378e7e629f5fcafb9e9dc6ac88a1715fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cf:11:3b:10:de:2c:54:46:57:8a:69:44:d9:
67:5c:83:f3:17:f0:bc:cf:aa:f3:7d:68:9c:ce:a0:
9e:fb:9a:64:4a:78:c3:a0:64:db:f3:9b:e9:cd:72:
d3:a3:45:9c:9f:5a:93:e6:ef:d3:3c:47:75:da:8e:
ca:d4:e9:fc:25:0f:dd:b7:00:25:28:a8:13:16:74:
7f:8c:f8:4f:01:12:fc:8c:53:64:06:83:fe:93:35:
d9:90:54:b5:fe:54:34:33:4d:fa:9c:a5:fe:bb:7e:
f4:75:43:7b:f6:07:ab:6c:ce:3c:86:cc:b1:e1:43:
f3:64:cd:b9:e0:c6:36:de:12:2c:f2:4d:38:6f:eb:
20:60:10:d3:76:27:a7:97:1f:10:58:18:df:5f:3f:
3d:7e:25:4e:b5:34:bd:7b:b7:2c:c3:8a:f1:87:18:
be:b0:1c:fb:45:b0:ec:c9:eb:b6:1a:0d:82:48:85:
41:21:c7:3c:8a:d7:3e:f0:c2:46:e3:a7:11:9e:6a:
e5:de:e7:ba:2d:18:15:79:b3:47:0e:f0:79:79:38:
03:9d:0c:de:e9:dd:b7:f1:f1:3d:23:a8:b5:06:17:
0b:00:92:f8:b2:b7:ba:8a:b1:52:ab:67:ae:94:fc:
e1:a2:35:dc:bb:df:0a:dc:99:5b:8b:01:a1:77:0d:
b6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:3A:7E:13:78:E7:E6:29:F5:FC:AF:B9:E9:DC:6A:C8:8A:17:15:FE
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nDp-E3jn5in1_K-56dxqyIoXFf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.2.0/24
163.5.5.0/24
163.5.10.0-163.5.12.255
163.5.20.0/23
163.5.23.0-163.5.24.255
163.5.40.0-163.5.50.255
163.5.52.0/24
163.5.55.0/24
163.5.57.0/24
163.5.68.0/23
163.5.80.0/23
163.5.85.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:f0:8e:70:8d:b5:7e:78:8b:3f:e2:2b:e6:61:1e:0e:38:0c:
c6:15:33:e3:06:23:e1:3d:e9:4e:3b:0a:21:47:ec:78:49:fa:
bd:e5:42:80:f8:ae:d1:88:65:3d:d1:cb:76:ae:88:66:59:1f:
81:d0:a3:ee:5d:95:8a:b5:8c:b0:69:9d:5a:4c:a3:5b:7e:57:
9e:05:66:be:5d:3f:83:70:33:60:0f:0a:bc:75:ba:2d:dc:a8:
ee:8d:25:5a:6f:5a:d5:67:89:d0:fe:16:44:47:2a:09:8c:7f:
2b:93:6c:3f:80:ed:b8:59:9b:92:01:aa:bb:04:94:4d:93:cc:
37:ef:38:41:5a:c3:eb:87:fb:6e:83:64:21:14:8a:a7:7b:f9:
f4:a2:7c:7a:34:4d:ec:cc:f5:a9:f6:e4:05:37:8d:a9:ab:e9:
47:3b:65:a4:ab:4d:47:83:0d:ac:55:3b:ba:c1:a0:79:b1:c1:
1f:e2:df:43:b9:f5:76:30:c4:a7:da:3e:f0:fd:5c:56:6e:6f:
ef:63:1f:16:90:be:5c:15:b0:12:29:f6:7e:51:ca:f6:ec:f8:
6c:d3:c2:c0:2c:c0:e6:c3:5f:41:d9:61:5e:5a:4c:a0:d7:15:
05:e3:36:d7:96:65:17:ee:86:85:df:21:9a:fd:f6:58:35:a0:
a7:ab:65:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 18:17:53 2024 by rpki-client on console-ams.rpki-client.org