Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uWscvGdixPoonGXR2i06UeQVvog.roa
File: uWscvGdixPoonGXR2i06UeQVvog.roa (raw, json)
Hash identifier: GGPniPZBhmUbjQ3Gzd7wedXTU5IPu5Om2eG7Dnlvtz4=
Subject key identifier: B9:6B:1C:BC:67:62:C4:FA:28:9C:65:D1:DA:2D:3A:51:E4:15:BE:88
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018CC4255627C001ED1A706CC94D65EFCEF7
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uWscvGdixPoonGXR2i06UeQVvog.roa
Signing time: Mon 01 Jan 2024 08:30:30 +0000
ROA not before: Mon 01 Jan 2024 08:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44486
IP address blocks: 163.5.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 19:41:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:56:27:c0:01:ed:1a:70:6c:c9:4d:65:ef:ce:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 08:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b96b1cbc6762c4fa289c65d1da2d3a51e415be88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7f:35:cc:d1:b0:19:09:d8:0a:2f:f2:17:40:
4b:c3:9a:2d:2b:97:aa:03:91:40:35:5b:fc:4c:ec:
14:24:8e:ba:96:ef:85:e0:15:47:87:ad:6e:09:97:
fa:c4:55:55:59:3e:09:a0:12:54:f9:9b:9a:e0:9e:
39:5d:dc:fc:8c:1d:95:ea:36:b8:44:37:36:51:6c:
3a:e9:58:fa:7d:2f:6c:99:65:be:5b:19:02:11:b8:
d0:48:96:97:4c:01:74:a1:ce:4b:b7:cf:9a:7f:a9:
ed:a2:c9:50:d0:d9:ea:8b:87:26:fc:13:8c:08:80:
f5:30:ec:eb:ad:01:6f:24:68:0b:f5:05:c5:0f:6a:
ba:2e:dc:e1:ed:c0:ec:4a:23:9c:94:23:f2:64:fd:
41:19:38:06:73:6e:26:da:ce:f3:71:fd:97:96:d2:
80:b9:9f:d8:0c:9e:3d:42:2f:77:25:84:d7:93:8c:
26:15:da:24:43:45:42:a3:24:7a:bb:5a:d8:46:87:
61:c0:ae:33:38:f4:15:14:36:0b:83:0e:8e:fb:a9:
42:4f:7b:a8:8b:6e:7c:c6:d2:61:08:ab:54:fa:6e:
62:2d:75:06:85:63:38:1c:c0:0a:6e:65:71:ef:fe:
73:52:05:fb:7d:2e:1a:8a:3b:04:2c:2e:b5:65:72:
b4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:6B:1C:BC:67:62:C4:FA:28:9C:65:D1:DA:2D:3A:51:E4:15:BE:88
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uWscvGdixPoonGXR2i06UeQVvog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.148.0/24
Signature Algorithm: sha256WithRSAEncryption
57:a3:87:62:d1:c0:0c:b3:d3:71:07:14:71:b1:63:00:c1:fb:
3f:27:0d:36:c6:f4:08:d9:a7:ec:5b:33:f3:97:2c:79:82:82:
5a:69:2e:d2:86:7b:8b:92:61:31:79:5b:2b:97:59:6f:9b:4d:
cc:72:5a:c9:6c:ea:bc:ab:30:69:fd:ff:0a:96:79:f0:00:df:
9e:e0:96:73:22:64:b3:2e:05:87:2f:09:61:2c:05:9d:f0:db:
98:46:13:df:cf:45:9a:d6:57:26:55:ea:7e:38:ad:52:f9:46:
d0:1e:13:94:00:e5:3e:d5:bf:c1:9e:c4:ce:74:43:c2:7b:4b:
b8:d9:a3:1b:7a:18:80:d9:56:05:e7:ff:f7:1d:c7:df:cc:19:
29:43:df:9e:c1:46:61:35:bc:d3:fa:cf:42:83:71:5e:2c:41:
2b:52:bc:0f:bd:4e:a3:8b:da:f8:97:94:c0:2f:11:f9:c8:5b:
a6:b4:1d:98:02:e7:c8:57:01:77:6f:9f:29:36:40:3e:5b:fe:
aa:69:48:ef:05:93:7a:ad:0f:f0:40:3b:58:54:35:0f:cf:09:
7f:80:74:fc:d6:9f:fe:b0:54:0e:1a:e6:c3:25:d7:13:30:7e:
24:47:aa:23:d8:11:66:f2:1d:aa:a3:8a:5d:44:26:4e:50:77:
de:82:cb:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:08 2024 by rpki-client on console-fra.rpki-client.org