Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/rE-wqGR8KVnZ7XhSfLjAF0cjm9M.roa
File: rE-wqGR8KVnZ7XhSfLjAF0cjm9M.roa (raw, json)
Hash identifier: GSy9Rmg9qHkjf0/k1wV/4omqU3pQaI9zHvYd4HrQi4Q=
Subject key identifier: AC:4F:B0:A8:64:7C:29:59:D9:ED:78:52:7C:B8:C0:17:47:23:9B:D3
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01883D35A12CD8A30B8766B73200057A600A
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/rE-wqGR8KVnZ7XhSfLjAF0cjm9M.roa
Signing time: Sun 21 May 2023 07:28:24 +0000
ROA not before: Sun 21 May 2023 07:28:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.58.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:3d:35:a1:2c:d8:a3:0b:87:66:b7:32:00:05:7a:60:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 21 07:28:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac4fb0a8647c2959d9ed78527cb8c01747239bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:61:2f:2c:a6:7c:1f:6c:0b:db:fa:24:71:bd:
ff:6c:63:8c:ff:6a:bc:8c:85:b7:2c:98:77:5a:83:
04:4e:e6:d4:aa:5a:5b:32:e9:24:9e:8d:17:fc:31:
b1:f6:94:4c:c4:b8:45:0a:5d:9a:f5:0a:87:2f:a6:
09:d7:6d:d7:11:ec:b0:81:fc:f5:44:01:17:8c:6a:
b4:71:56:31:82:b4:80:c5:9f:56:79:3f:17:88:02:
00:ba:bd:bb:a9:8e:94:a2:92:a9:3b:57:95:ee:23:
df:50:f3:8a:bd:d2:e0:f7:c1:e5:cb:ce:69:e6:dc:
5b:63:34:2a:af:13:6b:90:15:3c:35:97:87:8b:68:
72:7e:1e:61:a9:ca:c4:66:5d:3c:40:61:88:a8:cb:
18:84:c9:01:86:a0:e7:89:c5:cb:74:20:fe:2b:36:
b7:c7:f9:0a:45:cd:11:90:0f:3a:61:63:90:85:7a:
b1:f5:34:ad:a6:73:44:52:2f:29:96:87:cd:2d:48:
c4:52:8a:83:d0:a8:e8:69:e6:5b:13:7b:1e:2c:29:
f9:52:f5:1f:37:7a:7e:e0:cf:65:71:56:b5:b1:3e:
1f:2e:17:5b:bd:6b:01:c6:cd:a8:21:1c:09:aa:15:
00:f8:a7:05:ca:40:8e:12:ea:91:a0:8d:b6:6c:5e:
f6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:4F:B0:A8:64:7C:29:59:D9:ED:78:52:7C:B8:C0:17:47:23:9B:D3
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/rE-wqGR8KVnZ7XhSfLjAF0cjm9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.58.0/24
163.5.110.0/23
163.5.126.0/24
163.5.128.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
66:93:5a:ee:66:da:57:d2:24:74:28:b4:8a:c3:ac:9a:77:c7:
48:59:eb:da:ba:8a:35:ad:41:b5:05:2a:a4:d0:86:ba:87:a2:
5f:ea:97:0e:8f:80:3f:21:8b:ce:46:3e:81:ce:fc:3e:11:67:
ab:21:f8:43:bc:34:f6:8b:c8:81:31:95:ce:cf:be:bf:91:8b:
06:37:f5:94:5f:0f:d6:de:c9:a7:81:1b:6e:95:24:ba:7d:99:
a7:e0:27:de:a5:88:97:45:a4:e1:8b:8a:c3:6e:2c:44:76:25:
64:90:5d:37:1c:1c:6a:f3:bf:45:65:48:2c:30:d1:b5:8d:7d:
98:f3:be:9e:eb:d2:d6:33:60:bd:35:98:4a:49:ca:90:62:8e:
64:6f:35:63:be:90:ac:c0:f4:40:bc:83:42:cb:f0:4c:d2:6b:
dd:a3:e4:26:80:77:4a:33:8d:fa:39:65:99:55:2a:b5:9e:01:
c6:65:c5:5c:6c:bb:0c:af:7e:bc:62:c8:1d:ce:68:b9:94:d8:
37:1c:d4:44:d3:33:40:3a:68:b3:84:80:98:62:5e:04:ec:c2:
ff:c9:4f:3f:16:1b:6c:e3:7b:d0:c3:03:a2:ce:9d:1d:45:db:
fa:98:91:7a:0a:9d:6c:54:da:ad:bd:55:79:70:d0:f3:95:a5:
f0:8b:45:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-ams.rpki-client.org