Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nWqa6rT_FplPBer0MgpK9jUSXQA.roa
File: nWqa6rT_FplPBer0MgpK9jUSXQA.roa (raw, json)
Hash identifier: rO1yvXHSDjeZkawLjuMN7XURW5PAVccwO34Jw/yqqM0=
Subject key identifier: 9D:6A:9A:EA:B4:FF:16:99:4F:05:EA:F4:32:0A:4A:F6:35:12:5D:00
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018D66719632E44CAA2253EF732C587A0012
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nWqa6rT_FplPBer0MgpK9jUSXQA.roa
Signing time: Thu 01 Feb 2024 20:52:16 +0000
ROA not before: Thu 01 Feb 2024 20:52:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61135
IP address blocks: 163.5.65.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 12:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:66:71:96:32:e4:4c:aa:22:53:ef:73:2c:58:7a:00:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 1 20:52:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d6a9aeab4ff16994f05eaf4320a4af635125d00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:23:e7:72:e2:15:59:1d:70:6b:b0:dd:60:dc:
38:f6:4e:9d:2f:a5:7b:5b:27:b7:2f:10:39:09:96:
a9:18:55:80:46:10:63:9f:a3:fb:c6:ac:e2:47:87:
b7:76:17:75:c9:0f:1d:05:ab:93:cc:d0:f2:7f:1e:
e0:8c:35:5a:fa:e8:a8:aa:c5:83:9f:b1:b4:6a:fe:
e2:1f:3f:c8:24:05:47:51:34:89:7a:8c:70:61:67:
a7:f3:3c:56:e6:fa:c6:87:da:57:a7:66:21:6e:a0:
68:a4:fc:fa:ab:8b:a9:a4:7c:f8:e4:ef:63:a6:72:
f8:fd:c9:2a:a3:46:79:5f:81:67:39:af:98:9d:9c:
36:e5:ed:95:85:e1:1a:72:c5:dc:a2:63:70:02:68:
6f:e7:de:17:00:80:b0:32:07:1b:47:b6:83:a9:81:
a4:85:ac:f0:fb:7b:12:32:53:36:87:18:08:20:33:
02:89:6b:a3:7d:f2:8b:eb:3b:8c:7d:cf:5e:ad:68:
35:e2:7c:80:d5:ed:3c:ac:31:09:93:89:1a:67:ba:
de:44:9c:91:c6:71:93:83:7d:cc:8b:c9:93:02:a3:
09:8f:6a:f1:ca:ec:ef:20:72:15:e9:0d:05:bf:b6:
3d:7b:0e:92:dc:ec:bc:8a:e9:04:3f:42:b3:4f:f3:
a1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6A:9A:EA:B4:FF:16:99:4F:05:EA:F4:32:0A:4A:F6:35:12:5D:00
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nWqa6rT_FplPBer0MgpK9jUSXQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.65.0/24
163.5.73.0/24
163.5.82.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:55:cd:21:b4:d9:6b:01:e4:ac:16:22:62:35:30:00:9d:16:
cc:57:e2:46:be:d1:04:ed:2e:51:6f:01:98:59:89:bb:e3:12:
7f:82:da:64:58:32:4d:68:39:ce:6a:c5:6e:ee:b5:b8:4c:3c:
88:85:e5:94:04:17:39:3d:18:e7:f8:bd:ec:3e:18:58:e1:b5:
59:19:d9:a2:c9:2d:99:30:dd:cc:15:41:cc:34:73:6a:36:3b:
1b:a9:d0:ce:5a:b6:71:a0:fc:4a:5f:b3:93:7a:c4:34:db:d5:
23:2b:0d:ac:08:41:cf:4d:ff:a5:ae:44:d9:4c:69:6b:26:f1:
41:10:1a:7c:9b:4b:35:32:66:50:4b:b3:ee:c9:78:f6:e3:a3:
3e:36:7c:6a:55:2e:a1:17:8b:fd:a2:59:10:59:69:40:df:35:
9b:6d:02:0d:42:68:01:d1:a8:c8:ea:a2:82:b9:ed:40:1b:72:
c2:6a:c3:66:f7:6c:51:ac:a3:98:84:74:65:0a:e1:4f:ba:00:
d1:0e:71:39:ce:6b:b0:b9:e0:66:a0:32:18:86:a3:7c:2f:02:
bf:c6:69:65:71:13:b8:e1:a5:4f:b4:86:39:51:07:22:f6:4e:
26:bf:d3:88:8b:8d:84:2e:33:cc:21:34:9c:7f:9e:dc:72:1e:
3b:da:f3:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 18:22:36 2024 by rpki-client on console-fra.rpki-client.org