Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/qiMITLBjMl5sOtZGWp5N2zjkgw4.roa
File: qiMITLBjMl5sOtZGWp5N2zjkgw4.roa (raw, json)
Hash identifier: jM2Jd0UeRzWQdBcAbOsWvhvbtxNkz0qEudbzmZM7LI0=
Subject key identifier: AA:23:08:4C:B0:63:32:5E:6C:3A:D6:46:5A:9E:4D:DB:38:E4:83:0E
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018A09E3494ED7D313B743C8F6F12E0C94D0
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/qiMITLBjMl5sOtZGWp5N2zjkgw4.roa
Signing time: Fri 18 Aug 2023 18:23:24 +0000
ROA not before: Fri 18 Aug 2023 18:23:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147291
IP address blocks: 163.5.72.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:09:e3:49:4e:d7:d3:13:b7:43:c8:f6:f1:2e:0c:94:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 18 18:23:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa23084cb063325e6c3ad6465a9e4ddb38e4830e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0c:73:24:aa:32:66:ad:13:1a:39:55:f3:c0:
63:2e:ca:18:39:1d:4f:f8:5a:3a:88:9f:f2:08:b3:
25:4a:d4:b3:78:c4:fa:6f:75:1c:18:48:2c:a2:31:
7a:9b:98:0e:49:10:a0:e9:2c:45:fb:46:58:29:f6:
03:31:a0:08:7e:8e:53:f5:f4:07:4d:48:ed:81:cd:
7b:f0:58:e9:58:6c:85:19:a6:29:32:e2:4a:6b:86:
3f:37:58:ee:a0:e2:23:a7:12:ed:af:1e:bf:8d:5a:
6f:bd:aa:e8:b8:79:58:57:1f:6f:37:38:04:ab:c9:
88:7c:7b:8f:df:f5:91:98:17:ae:6b:a3:7c:ff:2d:
df:28:38:ba:fd:ea:69:5f:22:77:4f:56:9c:c4:f0:
c3:35:41:cd:96:2e:00:ba:8f:4f:ce:ad:cd:a3:c3:
d1:2c:01:5e:e4:98:78:73:79:fe:fd:3b:79:6c:b6:
b7:6e:98:f3:43:b5:a6:55:b9:e8:73:cf:27:7d:78:
e5:08:10:7f:1e:5a:3d:57:e2:a8:dc:11:a2:48:05:
21:ab:ea:36:76:f6:c3:33:f0:8b:37:ca:6d:b7:6d:
f9:cd:a1:a5:95:a9:e1:e6:58:35:49:7e:2e:de:20:
ba:e0:e5:b2:86:69:23:d1:51:90:0b:ae:7e:aa:dc:
23:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:23:08:4C:B0:63:32:5E:6C:3A:D6:46:5A:9E:4D:DB:38:E4:83:0E
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/qiMITLBjMl5sOtZGWp5N2zjkgw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.72.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:44:42:7e:4a:99:ee:ca:a5:de:0e:eb:a8:62:e4:46:a7:69:
a3:4c:34:c9:8b:8d:43:45:c1:d6:7b:a0:e1:be:78:57:c1:3b:
32:43:42:7b:f9:ed:88:81:cd:ae:dd:3d:75:64:f0:72:cf:20:
0c:38:80:4f:77:a5:ac:8a:41:92:86:c7:7b:fa:23:92:38:53:
68:07:ec:0b:d7:d9:b0:db:43:28:d5:bc:2a:23:df:71:8e:fc:
36:8b:1e:92:92:41:55:f1:be:0e:a8:c8:eb:1c:77:e7:36:81:
c2:ee:b9:a6:1c:51:70:31:e0:f8:4a:c7:6b:40:23:31:30:10:
e2:7e:94:20:46:1c:dd:1f:ea:f6:41:eb:3b:74:ae:69:00:43:
3f:c1:f2:f1:44:e8:f4:9a:66:21:95:ed:78:d9:1b:8b:c4:bb:
1c:d4:9f:32:10:e9:b3:43:e9:b2:a7:2c:33:93:f0:fc:4d:18:
8c:22:df:04:27:14:e2:19:92:34:7c:19:b3:41:fb:0b:45:2a:
81:1b:30:e9:5a:eb:d7:8c:03:20:93:96:61:d1:83:14:af:87:
1e:8e:56:04:ef:dd:52:b2:7b:e6:08:35:9c:c6:8e:59:56:31:
a0:3e:11:b2:20:3c:c9:49:2a:b7:cb:c0:a3:e9:39:17:2a:e9:
fd:c6:74:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 8 13:04:57 2023 by rpki-client on console-fra.rpki-client.org