Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/tTLqD46jTOer6hNA7tKlgr4Cu94.roa
File: tTLqD46jTOer6hNA7tKlgr4Cu94.roa (raw, json)
Hash identifier: v+a0eKlk8Xw2CxrNt9CXUh7xaablbPn4DztRb3BEY3o=
Subject key identifier: B5:32:EA:0F:8E:A3:4C:E7:AB:EA:13:40:EE:D2:A5:82:BE:02:BB:DE
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019141150F6258B8ECE009D0F78AD92C21CE
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/tTLqD46jTOer6hNA7tKlgr4Cu94.roa
Signing time: Sun 11 Aug 2024 10:56:24 +0000
ROA not before: Sun 11 Aug 2024 10:56:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 163.5.124.0/24 maxlen: 24
163.5.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Aug 2024 21:31:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:41:15:0f:62:58:b8:ec:e0:09:d0:f7:8a:d9:2c:21:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 11 10:56:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b532ea0f8ea34ce7abea1340eed2a582be02bbde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:1d:f9:45:c7:23:d8:be:52:9a:ec:ce:17:4b:
99:55:9a:5b:fb:41:48:32:db:e0:3e:d7:03:13:fd:
d1:e3:ed:16:11:74:33:0b:cb:04:e7:74:f8:91:57:
40:26:75:c4:c8:8c:49:75:30:c8:97:7b:57:3a:44:
73:ca:b2:dc:0d:02:4c:50:b3:ba:c3:be:fa:95:63:
ac:ae:09:a2:be:20:0a:fe:d9:1d:0e:46:5d:1b:d6:
65:23:c9:fd:70:b7:9a:b8:04:43:c2:76:98:88:88:
1c:4f:3d:ee:ec:40:f1:5a:c9:69:ef:76:06:d8:57:
1d:08:96:ef:91:51:3f:f3:7b:68:98:4a:ca:4c:36:
24:83:a1:ba:ee:59:17:a3:d4:20:b7:f8:a4:9d:24:
26:f1:21:4f:0f:3a:31:85:ea:cf:49:d9:c3:17:de:
13:a8:99:4a:de:72:c7:af:d0:09:33:e6:46:48:d9:
b0:6d:78:60:7b:c4:fa:2c:75:9c:97:84:e1:f6:d6:
dd:1b:83:8f:2b:fc:93:a2:68:9f:db:aa:5d:02:57:
32:7c:3a:ba:b4:a2:08:a3:ac:00:08:db:ac:69:9d:
18:6c:03:2e:8d:1e:cb:05:49:ba:0e:b2:b5:5c:7a:
8e:04:51:0d:fa:ff:64:52:82:f1:c2:ba:69:a2:a1:
0f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:32:EA:0F:8E:A3:4C:E7:AB:EA:13:40:EE:D2:A5:82:BE:02:BB:DE
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/tTLqD46jTOer6hNA7tKlgr4Cu94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.124.0/24
163.5.173.0/24
Signature Algorithm: sha256WithRSAEncryption
14:da:cd:54:06:eb:aa:11:5c:a8:39:77:11:10:c7:03:1b:ba:
fd:fb:35:73:98:8d:01:56:80:e3:c1:d3:31:fb:36:5d:9e:ad:
b8:46:ce:65:4a:af:56:27:05:21:f1:1b:a7:ba:78:c3:d1:f9:
1c:d5:5e:90:66:ee:b5:3b:c6:a2:fc:60:03:7b:64:76:a8:e1:
96:4d:9f:13:ab:a5:f9:4b:32:d2:75:9f:73:1c:eb:1f:be:0e:
65:5d:b7:63:72:40:bb:27:c3:af:83:22:68:b7:f0:82:de:0a:
a8:48:7c:fe:fb:54:05:d3:f4:c6:a4:d8:46:82:85:e5:61:bb:
08:1a:9a:7c:56:14:43:c9:3f:52:e0:78:08:4f:6c:3d:62:92:
f9:c0:09:a7:ac:96:28:4e:6f:a9:11:2a:ee:ab:7c:c4:7d:4b:
74:0d:b0:ce:06:3d:b3:63:d0:47:4d:fd:40:b6:31:54:c0:ff:
f1:f3:af:7f:0d:e9:c1:ea:b7:67:f3:eb:e9:12:98:88:6d:8d:
65:f5:c1:08:85:b9:70:23:eb:6b:96:79:08:c4:b3:3c:6d:5b:
0a:fa:22:63:ea:dd:02:13:bf:6f:fc:a7:4a:ea:30:31:a9:fd:
2d:17:d3:54:7d:8a:2a:fc:b0:28:2f:3e:83:53:c4:39:50:e6:
a7:2e:ea:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 17 22:52:08 2024 by rpki-client on console-fra.rpki-client.org