Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/q7N66wp-BivypoqOMUcuvKtWhPw.roa
File: q7N66wp-BivypoqOMUcuvKtWhPw.roa (raw, json)
Hash identifier: VbLsOXmyt6GLV9EJk87fRInsFlM1kT72S1Qtu23Ik5s=
Subject key identifier: AB:B3:7A:EB:0A:7E:06:2B:F2:A6:8A:8E:31:47:2E:BC:AB:56:84:FC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018CD3481F99B27CF2A3AA997FA9795FD73D
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/q7N66wp-BivypoqOMUcuvKtWhPw.roa
Signing time: Thu 04 Jan 2024 07:02:48 +0000
ROA not before: Thu 04 Jan 2024 07:02:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64267
IP address blocks: 163.5.91.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 17:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d3:48:1f:99:b2:7c:f2:a3:aa:99:7f:a9:79:5f:d7:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 4 07:02:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abb37aeb0a7e062bf2a68a8e31472ebcab5684fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:db:b6:80:61:9c:0f:a4:51:f8:c1:66:30:6d:
40:cc:9b:57:0e:0d:19:a3:2c:79:12:ed:2d:7f:17:
84:b5:31:18:ac:7e:f4:88:ae:53:8d:70:d7:e7:98:
6b:c4:db:5c:34:0e:c2:05:f4:8d:f9:59:62:5a:11:
86:ae:2c:f8:d4:57:10:95:ec:f5:75:74:13:04:30:
55:4b:d7:c0:89:ce:93:98:9a:44:6b:bc:7a:d9:2b:
23:30:87:65:9d:97:2b:bb:68:12:97:0d:35:41:51:
0f:21:c1:50:f9:d0:99:39:33:97:6f:59:6c:33:e8:
51:06:9b:ac:34:44:5f:19:a1:e1:7f:db:d1:a0:45:
d5:1d:05:98:36:43:dc:9a:08:14:58:0a:08:df:9c:
b7:6d:cf:d3:e3:25:c1:e2:8b:4f:31:a0:7b:e8:ea:
02:b1:56:7c:28:48:f4:83:92:e4:60:98:1c:dc:51:
41:f3:b3:07:cc:4b:e9:eb:ad:67:8f:fa:14:95:18:
6f:d1:34:3b:33:ff:d6:89:56:37:9e:99:20:1f:38:
a4:50:71:bd:91:64:27:1e:7c:c4:c2:91:60:96:c7:
d6:11:ec:42:65:df:96:36:ef:8a:44:67:1a:2b:8b:
cd:6a:ba:73:f6:48:1e:dd:a7:5f:b4:89:57:a9:b6:
33:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:B3:7A:EB:0A:7E:06:2B:F2:A6:8A:8E:31:47:2E:BC:AB:56:84:FC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/q7N66wp-BivypoqOMUcuvKtWhPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.91.0/24
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
76:3a:ba:cd:c5:a6:64:c4:53:f7:0f:02:60:e2:76:f7:66:12:
d0:d4:48:66:4b:00:a5:2a:59:79:42:97:61:35:ca:6c:5f:a4:
c8:df:34:07:5c:29:b1:13:67:df:c1:f2:7f:ad:70:5e:06:90:
11:32:fa:d3:c7:84:d3:f6:96:51:91:7b:8a:7c:50:c1:fe:e9:
dc:01:6d:a0:92:16:60:c9:0f:ce:52:69:49:e3:00:d1:93:4a:
98:f0:c2:d3:5d:5d:4e:9b:c3:a3:c1:ea:e5:0e:b1:f6:e9:6a:
ad:04:26:4b:45:50:4b:e3:b2:9e:ed:b4:69:cf:ba:15:45:5a:
1a:2c:8f:b3:4f:27:02:c1:79:12:74:85:a1:b0:43:e6:d0:fc:
a0:4d:09:1b:41:f6:c1:8f:42:52:e0:c3:a2:b8:e6:97:d4:a5:
84:04:27:d2:51:6a:f5:74:be:68:88:e8:ab:0b:fe:b2:aa:2d:
80:92:ad:49:62:8b:96:d4:89:c8:96:51:c5:39:1e:06:d8:a2:
c8:b1:2f:e5:a3:c5:0b:84:81:73:8e:02:72:09:9c:8d:dd:77:
9f:c2:91:df:33:6d:23:22:d8:1d:85:46:6f:78:bf:00:cf:51:
a8:53:7f:07:02:60:fe:96:d4:4b:70:ef:56:d4:a5:fc:5a:db:
20:8a:d6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 10 21:58:40 2024 by rpki-client on console-fra.rpki-client.org