Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/oTKzewjen5N8dyZaj_VSfDIiAiA.roa
File: oTKzewjen5N8dyZaj_VSfDIiAiA.roa (raw, json)
Hash identifier: TFFdcaVw3NPhv1UjKSwszqcaqwWETJ15NHjK7r6MlgM=
Subject key identifier: A1:32:B3:7B:08:DE:9F:93:7C:77:26:5A:8F:F5:52:7C:32:22:02:20
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0186BCF0C4B6EA129FF4977832245B2676C8
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/oTKzewjen5N8dyZaj_VSfDIiAiA.roa
Signing time: Tue 07 Mar 2023 16:39:00 +0000
ROA not before: Tue 07 Mar 2023 16:39:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 163.5.186.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bc:f0:c4:b6:ea:12:9f:f4:97:78:32:24:5b:26:76:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Mar 7 16:39:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a132b37b08de9f937c77265a8ff5527c32220220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:54:35:ee:ac:af:b9:f1:2a:1a:99:46:16:b6:
f0:65:50:e1:9a:d1:b8:60:2e:0b:18:ce:30:61:28:
d7:43:6c:bd:ee:c2:a2:8c:b0:37:ab:c8:2d:8e:3e:
3a:57:08:b1:08:0e:94:21:2b:f3:31:7e:ad:d3:58:
0f:e3:4e:85:f3:ae:bc:e2:b4:c9:92:2f:8f:aa:6b:
7b:36:8c:36:b9:9c:1b:c1:eb:01:3c:13:0f:c2:db:
b9:d6:a4:84:86:8a:a8:ef:55:b6:9b:27:21:43:41:
f8:1e:4b:d8:31:77:63:31:37:52:a6:42:19:33:43:
a7:8c:c4:c9:b5:fe:0c:d7:b0:15:b1:e2:56:18:19:
b0:66:93:d8:b4:b8:46:62:cc:cc:2c:9e:01:4e:40:
dd:a2:e4:dc:0d:ee:44:92:6d:91:b0:1f:dc:b5:b3:
3c:e4:6a:29:08:34:aa:fb:1b:0a:83:ad:7c:77:01:
9e:c9:69:63:94:6b:e0:c5:e6:a1:ea:a5:a4:a9:58:
35:4b:68:23:dc:ed:bd:85:89:40:a2:f6:dd:eb:ab:
26:a1:8b:d7:b8:60:3b:a3:9b:9d:c8:61:51:52:16:
7a:46:24:22:1a:70:75:cd:94:bd:1c:4d:96:19:da:
99:37:a5:a6:87:19:4c:32:ee:df:b4:0f:4c:80:82:
17:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:32:B3:7B:08:DE:9F:93:7C:77:26:5A:8F:F5:52:7C:32:22:02:20
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/oTKzewjen5N8dyZaj_VSfDIiAiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.186.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:c5:8d:ba:c0:71:7c:38:15:f2:7f:9b:a1:49:09:a6:24:74:
e2:45:7e:48:95:35:94:36:39:fc:fd:da:fb:95:23:22:ef:ed:
9e:83:64:06:a0:ce:7a:ff:e6:33:6a:1a:bd:6e:41:1d:55:6a:
65:92:9d:94:b7:ac:72:63:78:56:cc:75:e4:2d:e6:48:19:d2:
94:ec:cd:80:4e:29:2f:1b:0c:7a:e1:46:3d:9e:6d:43:e1:51:
ee:d3:0b:da:ee:9f:5c:6f:52:33:2c:8d:b2:c2:21:37:04:17:
81:d7:f0:c1:57:03:b0:f4:cd:4a:ac:5f:94:74:69:65:06:b8:
84:de:38:21:22:a1:d6:a3:3d:41:72:4d:ce:d1:68:42:98:67:
67:3e:eb:1d:e8:1a:b7:d4:22:9c:9b:cd:ce:cb:6c:25:1c:6f:
74:37:04:e8:b2:4f:36:35:ff:4a:3a:1d:de:13:a6:3c:47:65:
2f:cd:9f:d3:6f:94:54:01:83:4f:a4:e4:af:36:72:02:c2:94:
80:35:a2:c7:b9:92:9a:43:5a:09:2f:b8:d5:1a:44:ac:ed:6f:
a5:41:f6:a3:d3:6c:cb:67:e5:dd:0f:b8:ed:b2:ee:e8:b5:3e:
d8:50:12:4b:c3:c3:f3:40:f0:bf:c3:c1:fd:83:5f:16:16:eb:
55:44:15:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-ams.rpki-client.org