Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/seT355tdSwcRmkR88MW1grpktWE.roa
File: seT355tdSwcRmkR88MW1grpktWE.roa (raw, json)
Hash identifier: xUR6JqcsDc1XYMiu+8WK5YBtnH/ULodqT47YjGuZuhc=
Subject key identifier: B1:E4:F7:E7:9B:5D:4B:07:11:9A:44:7C:F0:C5:B5:82:BA:64:B5:61
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01857042C61A2A51E87823AAA15F488EA6E5
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/seT355tdSwcRmkR88MW1grpktWE.roa
Signing time: Mon 02 Jan 2023 02:15:02 +0000
ROA not before: Mon 02 Jan 2023 02:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203728
IP address blocks: 163.5.150.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:c6:1a:2a:51:e8:78:23:aa:a1:5f:48:8e:a6:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 02:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1e4f7e79b5d4b07119a447cf0c5b582ba64b561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0d:c6:62:41:ee:7d:ca:ef:33:17:44:db:75:
90:4a:1d:25:ed:f2:d3:13:63:3e:64:38:4b:12:75:
7c:d9:fc:af:73:53:7a:74:91:00:8e:4e:b3:24:95:
65:95:79:c9:9a:34:7f:ab:5b:3c:eb:48:4d:6e:1c:
fe:3f:c8:0d:fd:79:24:0a:21:51:76:fe:26:5d:6b:
86:74:cf:20:b0:02:31:49:9f:24:3c:95:10:9c:ac:
af:93:2b:c4:bd:fc:c9:5f:79:f5:5e:83:cf:e8:7d:
a8:64:cd:2f:08:59:80:62:7c:46:94:3b:6d:fa:77:
9e:e3:eb:90:2f:ad:3b:2b:dd:88:17:84:78:8b:9a:
61:36:11:ff:7b:1b:ed:28:c8:94:a5:f6:34:15:df:
f4:09:62:5f:50:60:4d:f6:b1:07:fc:e8:24:92:60:
6c:b9:c6:0b:43:fa:42:3c:37:11:1a:46:9c:98:04:
8b:a7:37:2e:35:7d:84:5f:5e:c6:9e:df:54:28:4a:
03:d6:74:6b:4e:5e:47:3d:67:6c:06:b9:d2:50:8e:
59:2e:f9:98:21:67:a6:ed:ec:0e:ac:06:bb:b4:7f:
7f:0c:83:f9:45:c1:95:3c:cd:d7:b0:14:c0:cb:5c:
be:5c:6d:82:09:60:55:ff:90:d3:54:1c:1a:c5:54:
30:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E4:F7:E7:9B:5D:4B:07:11:9A:44:7C:F0:C5:B5:82:BA:64:B5:61
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/seT355tdSwcRmkR88MW1grpktWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.150.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:83:07:0b:88:d5:42:97:a1:36:de:92:9f:9f:d7:f8:9c:ac:
4a:0f:51:eb:67:ad:a0:94:36:f1:97:36:3d:97:7b:5c:e0:24:
3b:5c:3b:46:ca:04:f7:9d:11:7b:e2:35:ce:94:10:c3:62:92:
69:6e:16:5e:47:d7:51:ea:c4:80:96:f2:df:ce:d7:6e:7d:af:
c3:7a:96:c4:65:af:23:4b:71:46:bc:43:c7:c3:40:c7:37:e0:
0b:0e:fe:64:1b:24:0a:1b:7a:5d:d0:ca:a4:b5:39:80:98:5f:
6d:58:81:fa:e6:4a:ec:95:60:9f:61:88:27:27:ab:21:eb:87:
6f:24:ed:62:4b:a4:59:e0:47:f3:ac:88:1a:b6:ef:04:93:6b:
9b:2c:ec:28:84:03:4c:05:f5:11:b1:32:6b:db:a2:a5:7f:f6:
6e:75:b0:a1:48:26:45:d8:62:db:4e:76:1b:17:74:6e:aa:4d:
34:c7:94:b7:10:a4:b0:7e:27:09:57:0c:18:2c:78:e5:69:ee:
5e:51:7b:04:1a:34:48:39:2b:96:11:08:62:74:ed:3e:12:bc:
07:27:5d:0c:dd:b5:2b:7e:2c:65:c6:44:d9:ef:12:57:02:8c:
74:5f:00:4f:f8:88:cd:21:9a:a0:f2:b0:f2:46:67:46:38:a6:
b3:db:27:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:19 2024 by rpki-client on console-fra.rpki-client.org