Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/sspZgiOjIYUPKJrAaMBKCmgDBJs.roa
File: sspZgiOjIYUPKJrAaMBKCmgDBJs.roa (raw, json)
Hash identifier: LC9ybnz1zig4NED78vSVvvukBYn6I57cuac4B9dYv74=
Subject key identifier: B2:CA:59:82:23:A3:21:85:0F:28:9A:C0:68:C0:4A:0A:68:03:04:9B
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0189AD1BCD4D6DCED98A8BE077AD075834FA
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/sspZgiOjIYUPKJrAaMBKCmgDBJs.roa
Signing time: Mon 31 Jul 2023 18:00:27 +0000
ROA not before: Mon 31 Jul 2023 18:00:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59432
IP address blocks: 163.5.67.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ad:1b:cd:4d:6d:ce:d9:8a:8b:e0:77:ad:07:58:34:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 31 18:00:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2ca598223a321850f289ac068c04a0a6803049b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1c:27:3f:4d:e1:d1:74:5b:f9:d5:17:e8:94:
80:2c:eb:aa:07:86:d1:cc:1f:c2:80:89:b9:21:6d:
76:e4:59:f0:18:fc:3f:80:78:a3:1c:04:0e:42:52:
b0:93:ce:b4:72:a9:b2:80:c5:15:38:11:35:6e:2d:
be:43:d5:9d:f3:66:74:36:14:77:0e:d0:54:4b:73:
40:4d:d3:39:07:91:85:b0:8f:37:e1:6d:14:cf:31:
14:53:50:3a:82:5f:56:d1:72:08:03:5f:3f:0d:19:
07:0e:eb:5c:4d:f5:99:5d:83:17:04:d4:c2:14:4b:
69:05:d6:8d:14:17:fe:35:a0:4a:57:77:12:a5:f5:
bd:ad:18:be:13:f9:ea:ad:69:33:13:b3:10:a1:f5:
7a:b0:a0:ce:a0:c9:3f:5d:bd:a7:de:71:64:9c:77:
d6:e4:17:d3:59:9c:ca:9e:0f:e5:bf:77:11:30:d2:
25:f0:4f:a7:b8:3e:6d:0f:03:58:87:11:cf:61:5b:
d9:57:2c:fb:65:23:d7:0e:7b:d2:1f:57:d5:2d:99:
d8:0a:bb:2a:42:b6:65:5a:26:8c:90:41:82:2d:42:
a3:ce:28:47:6c:e2:43:02:fb:a6:4c:e1:5d:a2:82:
a2:f6:e4:a2:ae:4f:76:e2:ac:e9:21:22:93:2a:18:
28:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:CA:59:82:23:A3:21:85:0F:28:9A:C0:68:C0:4A:0A:68:03:04:9B
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/sspZgiOjIYUPKJrAaMBKCmgDBJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.67.0/24
Signature Algorithm: sha256WithRSAEncryption
82:01:15:77:ac:fb:67:d1:ff:7a:b6:2e:33:a0:10:4c:73:69:
6f:48:0f:89:a8:f0:02:2d:c0:60:d7:fb:c6:32:e4:6f:61:f7:
b2:8a:d5:81:7d:cb:a7:00:8c:c2:9d:2d:e8:e2:7b:06:80:f1:
37:9e:ca:fd:5c:95:23:79:b3:43:f9:e3:0f:6b:80:72:86:31:
2a:e0:bd:b6:98:10:7b:dd:b1:17:27:d5:5e:dc:6b:fa:00:5e:
0a:7e:a8:36:ce:84:d5:03:b4:fa:f9:bc:ee:76:74:70:c3:93:
1b:45:78:8e:25:14:f6:5a:4d:0b:83:bf:f0:50:ef:60:ee:b4:
0d:6d:1f:8e:62:cd:a0:2c:ff:32:91:b1:1c:9e:52:8c:01:1c:
17:d9:a7:9c:9b:e6:90:6c:5f:ba:cb:31:f6:61:e0:4e:26:48:
a1:4f:71:ac:ef:80:e3:11:84:b8:d5:0d:21:8c:07:3d:b3:61:
a7:74:8f:3a:5e:e1:52:95:41:c6:14:59:23:7c:e2:46:83:7e:
0c:ba:ad:a5:3e:4f:20:c0:af:2c:cb:55:da:9d:61:7e:b8:be:
ce:43:87:2d:e2:b7:fb:c4:85:34:15:0c:3c:43:95:cd:f2:5e:
13:42:46:a8:7f:24:53:51:fa:93:74:de:69:f7:8b:fb:ee:0f:
92:cc:82:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 31 22:19:54 2023 by rpki-client on console-ams.rpki-client.org