Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/sXFJZX0j8hX8K57RD5FvzoMGjS0.roa
File: sXFJZX0j8hX8K57RD5FvzoMGjS0.roa (raw, json)
Hash identifier: 4qz7RRCyLhQScnuVjmUZL40s4TNAG1H1+7nKZMZZ72k=
Subject key identifier: B1:71:49:65:7D:23:F2:15:FC:2B:9E:D1:0F:91:6F:CE:83:06:8D:2D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0189EBAB9BA84623E36B0DB465B820132D2E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/sXFJZX0j8hX8K57RD5FvzoMGjS0.roa
Signing time: Sat 12 Aug 2023 21:33:59 +0000
ROA not before: Sat 12 Aug 2023 21:33:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396356
IP address blocks: 163.5.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:eb:ab:9b:a8:46:23:e3:6b:0d:b4:65:b8:20:13:2d:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 12 21:33:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b17149657d23f215fc2b9ed10f916fce83068d2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:31:a2:5f:bb:11:a7:86:a6:75:f5:0c:f3:f6:
bc:4d:30:65:fd:4d:32:e0:79:7a:86:47:58:d7:6f:
52:61:0e:19:bd:ae:b7:56:43:fa:ab:11:76:1d:d0:
bc:a1:fc:7e:65:31:d4:8d:dd:fe:df:34:ea:90:68:
05:ad:35:60:5e:1a:f0:34:05:8b:0f:e1:01:e1:fd:
7b:61:12:e6:70:10:f9:a1:2c:a3:94:45:20:6f:4e:
0c:cd:f4:68:69:86:a1:bb:8e:9c:f2:77:e2:0d:ff:
8c:01:5e:8f:6b:dc:53:0b:b7:7e:c9:ac:7e:97:22:
ae:59:e4:c3:40:ee:e6:3e:98:45:79:58:6e:11:6e:
8b:48:31:84:1b:7a:b6:96:2f:8b:4e:2c:e0:4f:e6:
b1:98:53:c0:f4:de:74:e4:61:e2:d5:e7:f8:0c:c7:
a8:4b:55:97:7f:03:13:da:68:5f:76:cc:4a:4b:4e:
85:cd:66:b4:f1:34:53:1a:c3:2e:44:38:c0:17:5c:
4c:e2:59:74:65:87:17:06:49:94:92:ae:67:a9:4b:
c1:49:34:89:a7:f6:e5:2d:3b:c0:a8:c1:01:a1:ee:
d7:46:07:33:d4:93:d6:be:a2:32:e9:38:9a:30:e0:
e3:7d:66:7a:72:db:19:97:8b:d2:32:f2:05:b6:72:
f4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:71:49:65:7D:23:F2:15:FC:2B:9E:D1:0F:91:6F:CE:83:06:8D:2D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/sXFJZX0j8hX8K57RD5FvzoMGjS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.76.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:3f:c7:8a:9a:c0:b9:99:da:34:26:8c:4f:f1:8d:4a:94:0d:
a7:15:59:e1:2d:0f:29:34:5a:5f:c7:a5:13:a5:1e:bb:f0:98:
63:22:a3:0d:64:f4:25:18:b6:02:be:66:1b:22:c0:69:fe:7a:
f4:7c:c1:41:8b:04:c8:5b:b6:3c:f1:c8:70:3e:cd:ac:7a:8a:
9d:1d:0d:a7:e3:e0:9e:fb:85:7d:06:54:39:26:43:47:84:ec:
68:dc:b8:c1:7f:52:3f:4f:ec:3d:42:1d:a7:63:30:a4:d3:50:
2e:10:92:3c:35:84:3e:43:68:f3:55:5c:b4:38:ac:5a:59:a4:
98:78:e8:6a:0b:dd:d0:38:e1:28:fe:ee:ec:13:04:8c:3f:9d:
9d:b8:a7:4e:63:75:bc:a7:80:58:4a:27:77:d0:a5:1f:10:e9:
1b:6a:3f:14:27:fd:86:2f:a1:a4:7a:84:0b:ea:4d:a9:8f:05:
65:d6:56:59:b2:ee:87:b3:0f:43:88:59:6d:5b:02:b5:42:bf:
f3:72:96:92:b7:47:52:ee:46:a7:a2:b8:0f:76:98:b4:c3:1d:
ca:77:78:29:1e:bc:26:27:81:f2:a5:8c:b0:3c:65:cd:f7:82:
42:d1:da:06:05:5b:e7:65:bb:61:67:56:d1:75:6d:8b:b5:06:
05:d5:da:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 15 17:41:56 2023 by rpki-client on console-fra.rpki-client.org