Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/srt8KxUT-sbunYoZqYF6kOFan0w.roa
File: srt8KxUT-sbunYoZqYF6kOFan0w.roa (raw, json)
Hash identifier: oMPWMVpVfl9elEV0YHRTfEMVkWIo1H9uCjNoWtR6W7M=
Subject key identifier: B2:BB:7C:2B:15:13:FA:C6:EE:9D:8A:19:A9:81:7A:90:E1:5A:9F:4C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018964EE169C82B1D31856B98657990AE823
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/srt8KxUT-sbunYoZqYF6kOFan0w.roa
Signing time: Mon 17 Jul 2023 17:37:52 +0000
ROA not before: Mon 17 Jul 2023 17:37:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203511
IP address blocks: 163.5.132.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:ee:16:9c:82:b1:d3:18:56:b9:86:57:99:0a:e8:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 17 17:37:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2bb7c2b1513fac6ee9d8a19a9817a90e15a9f4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:86:ea:ce:7f:28:52:5c:37:63:92:97:30:52:
5f:8d:2e:7b:bc:c3:de:ae:d4:bc:a4:43:a8:9d:d4:
6d:33:1b:26:e6:59:62:67:4b:5d:ca:93:62:8c:3d:
b8:0f:cc:bb:7b:1d:63:b7:a7:6e:e9:5c:75:eb:06:
34:7d:54:ff:bf:69:ed:58:19:dc:41:c8:4b:cc:a4:
51:97:b9:23:fb:bf:30:8b:cf:f0:cc:1c:e1:74:58:
ea:b9:e2:86:63:9e:65:f6:c5:34:f2:0e:55:5d:bf:
6e:e9:5e:a2:0a:84:e0:f9:58:1d:c0:36:93:2d:a2:
13:ad:2d:af:d8:6c:a5:ff:d0:48:bf:f7:3e:e0:54:
69:3b:4c:a5:b5:d3:a0:41:d8:a8:07:41:c7:86:96:
b8:00:16:83:13:cb:8b:0b:63:4e:33:34:d8:04:4f:
fc:cb:e7:49:c3:89:33:16:db:7e:74:27:15:2d:a4:
b0:6c:60:75:a1:e4:2b:a5:76:45:a7:a2:42:cc:65:
ed:e4:e0:ad:14:78:9a:bd:bb:4a:00:49:12:30:73:
49:0d:b5:81:c1:55:0b:8f:39:02:1c:64:ff:f3:c3:
e8:a2:83:87:ba:c2:32:d1:84:d1:0f:bc:bf:96:46:
20:2c:5e:7a:9a:e1:b4:2c:fc:28:b1:17:53:1c:3a:
4b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:BB:7C:2B:15:13:FA:C6:EE:9D:8A:19:A9:81:7A:90:E1:5A:9F:4C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/srt8KxUT-sbunYoZqYF6kOFan0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.132.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:ce:34:4d:8b:4c:e3:14:10:2f:ff:04:a5:3b:82:7a:48:65:
2d:26:b0:34:c0:2a:94:e7:48:18:17:79:dc:c1:8d:b4:6b:24:
4b:1f:fd:10:fc:ec:b8:77:fc:fc:53:04:a4:f6:24:23:cf:ba:
cb:32:c3:aa:cb:05:5a:46:4f:75:9d:9f:b0:74:be:5e:c1:f5:
d6:ba:b2:82:0d:7b:fe:26:ed:bd:7e:3a:9e:dc:49:d0:e2:66:
c3:f0:cc:31:d9:d7:54:73:b3:e3:2e:b1:61:b8:7b:81:cf:1a:
aa:2e:39:75:c1:05:f5:bc:49:c9:84:52:49:3a:ae:c3:cf:19:
44:83:53:f5:7f:74:17:cc:2e:cd:1f:bf:7e:3e:d2:44:57:4f:
23:5f:0b:93:80:f5:7f:1b:4e:80:52:8b:22:dc:92:ac:91:b4:
1f:5f:a3:61:f8:72:ef:fe:d2:c9:a7:8e:ac:75:12:7b:d1:c0:
32:b0:ac:3a:cb:fb:f3:11:65:3a:01:f8:a4:66:1a:b3:d1:4b:
b5:9f:ac:63:bd:3a:76:5c:53:04:ad:40:9c:88:a2:b1:25:c7:
2c:78:0e:ea:29:c1:b0:61:e5:1e:7c:67:65:d9:57:ae:fb:9c:
4d:72:df:30:58:8b:a7:79:06:9a:ee:11:00:ea:4e:9b:c3:39:
b8:5b:fb:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 2 14:16:41 2023 by rpki-client on console-fra.rpki-client.org