Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vZI2iomlOTLUfbgTTEfU54-9mN4.roa
File: vZI2iomlOTLUfbgTTEfU54-9mN4.roa (raw, json)
Hash identifier: Zrf9C58u/QkJtva2x0Y2V2KRi0DNjlqeZ/eq0NLW+G0=
Subject key identifier: BD:92:36:8A:89:A5:39:32:D4:7D:B8:13:4C:47:D4:E7:8F:BD:98:DE
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01899BEE82A11AD3199C01F3997C373AA97D
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vZI2iomlOTLUfbgTTEfU54-9mN4.roa
Signing time: Fri 28 Jul 2023 09:57:26 +0000
ROA not before: Fri 28 Jul 2023 09:57:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 163.5.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:ee:82:a1:1a:d3:19:9c:01:f3:99:7c:37:3a:a9:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 28 09:57:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd92368a89a53932d47db8134c47d4e78fbd98de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e3:13:e3:77:4c:65:a5:a8:c3:82:53:9d:3a:
8c:b8:d4:ff:bb:c2:2c:87:d3:69:df:14:01:5c:ed:
53:65:21:bb:e3:e5:61:cb:91:45:d7:d9:f3:12:48:
dd:8a:02:23:56:06:ee:c5:88:b5:94:3b:87:89:5f:
81:af:e1:7d:38:55:90:9f:3e:7b:52:91:7a:e9:97:
31:98:a0:52:7a:62:97:9e:f9:c1:fb:c1:c0:a4:ca:
6f:61:74:f9:46:89:4d:12:3f:50:1f:a9:33:8d:ab:
0b:1f:e9:9d:40:bd:67:31:c3:7c:19:28:2e:e1:44:
a7:4b:cf:45:cf:7b:0d:67:fc:49:1f:b0:56:00:4d:
df:42:ed:58:6c:d7:9b:c7:6f:db:22:3b:f4:12:81:
4b:6d:58:59:87:db:b4:c5:b4:83:c3:98:00:07:c1:
f8:63:dc:fd:ff:6f:8e:bf:4d:c6:26:d3:92:ea:de:
57:56:51:9c:c3:74:e0:e6:91:71:1c:96:2a:de:6d:
50:08:6b:bf:a0:a3:32:0b:21:6d:f2:24:96:7c:14:
1d:0c:92:ac:af:98:c7:a0:48:e9:62:1c:52:a2:7a:
28:d8:22:44:d5:e0:e4:d9:08:b9:02:da:59:45:1e:
fd:25:e2:17:71:1d:33:85:5d:f9:d7:98:e1:3b:c0:
18:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:92:36:8A:89:A5:39:32:D4:7D:B8:13:4C:47:D4:E7:8F:BD:98:DE
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vZI2iomlOTLUfbgTTEfU54-9mN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.153.0/24
Signature Algorithm: sha256WithRSAEncryption
63:a0:ab:06:89:19:bc:a2:7f:2a:4e:50:c0:60:ce:e7:ac:90:
18:f2:f9:6f:8c:68:fd:0e:f6:49:0f:4c:a5:be:c1:e0:7b:ea:
e9:d7:28:35:0f:98:99:ee:bc:f0:2c:9a:a6:8f:b0:44:af:e6:
40:23:84:0b:e4:5c:d3:0b:df:1c:1f:0b:b8:ad:46:01:39:50:
72:0b:3e:b1:24:06:d4:7a:a2:66:74:06:89:fe:8a:26:00:3c:
02:1f:19:a7:38:c7:36:da:2c:bd:e1:50:38:19:f9:8f:1b:d7:
5a:fd:96:fc:9d:98:c9:0c:07:c3:e0:a4:0d:7d:cf:9c:9d:70:
d5:04:82:55:ce:fa:8b:a2:92:00:ec:62:54:56:b4:50:7e:28:
57:ab:93:df:c7:cd:c5:ab:53:84:8e:60:0e:2a:85:f9:ff:53:
67:07:e4:90:8e:0a:67:ab:88:e1:bf:90:a0:ee:a4:6c:4c:73:
dc:a5:60:d1:ff:da:e3:79:90:78:19:6f:a7:0a:d6:fd:f8:e8:
40:8a:c4:9b:99:c2:9d:d3:ff:51:78:ac:0a:08:dd:c7:c9:b7:
ac:78:cf:3a:8e:92:aa:e3:13:e8:2e:a4:47:22:8e:2d:ca:af:
4c:45:4f:2d:02:10:db:03:97:f7:d9:cd:2c:bd:63:bf:57:5f:
e4:17:f5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 12:25:38 2023 by rpki-client on console-fra.rpki-client.org