Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vcUHVO42TP0B76KHeYoZY8ryBrQ.roa
File: vcUHVO42TP0B76KHeYoZY8ryBrQ.roa (raw, json)
Hash identifier: guHy878YpaaXvPZ5MkhydQniusJoBaiT6fJJ1rLg++c=
Subject key identifier: BD:C5:07:54:EE:36:4C:FD:01:EF:A2:87:79:8A:19:63:CA:F2:06:B4
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018BA2CD7757E99835D1E237F8FFDB20774B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vcUHVO42TP0B76KHeYoZY8ryBrQ.roa
Signing time: Mon 06 Nov 2023 04:04:16 +0000
ROA not before: Mon 06 Nov 2023 04:04:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207994
IP address blocks: 163.5.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a2:cd:77:57:e9:98:35:d1:e2:37:f8:ff:db:20:77:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 6 04:04:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdc50754ee364cfd01efa287798a1963caf206b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1d:b5:36:e4:b4:31:ca:f9:c7:c8:a0:3d:09:
3f:cd:bf:09:8b:6e:3e:f9:16:cb:29:88:cd:1b:18:
4e:96:52:ef:89:20:03:d8:a3:c6:2a:17:29:21:db:
f1:4e:98:b7:69:68:f6:6e:3c:8d:d1:9a:8e:b3:44:
42:27:11:ef:1c:5f:7f:03:d0:14:c8:ba:46:44:75:
78:19:a7:14:82:a6:a3:58:bb:19:4f:5a:89:d5:a3:
f2:8a:93:4e:e5:22:f7:ad:f9:6f:0f:b6:41:ac:c0:
e3:eb:31:0e:b0:31:8e:ac:ed:44:6c:0b:c3:f8:a6:
ec:38:ef:ae:44:17:3a:50:b9:0c:0c:a9:49:8c:44:
4f:76:19:ea:ed:a1:3f:28:6e:f7:3b:c5:54:a7:f9:
d0:5c:82:24:d7:78:58:5f:c0:97:9c:ee:fc:d8:58:
1a:a0:f1:1a:64:7d:94:16:28:14:2b:66:7e:2f:cd:
54:3f:49:25:9b:46:c9:d9:14:f3:06:f7:ff:3d:73:
86:4c:1f:74:8a:da:99:b1:89:03:67:30:4c:6a:5a:
ef:1a:81:5d:94:de:2e:0f:c7:5b:28:73:3c:1d:b9:
cc:bb:e8:80:71:6b:2b:55:5c:b6:2b:0c:96:a6:02:
f0:68:46:d5:cc:03:54:cc:22:da:a1:64:bc:c1:72:
6f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C5:07:54:EE:36:4C:FD:01:EF:A2:87:79:8A:19:63:CA:F2:06:B4
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vcUHVO42TP0B76KHeYoZY8ryBrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.76.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:e9:90:a1:fa:17:a6:e7:07:8e:60:19:cb:5a:6b:7d:92:a6:
b3:43:c1:c2:bb:8d:77:c8:04:07:28:89:0b:d9:61:9d:5e:e6:
7b:1b:7e:38:a2:1c:d7:c6:0f:8c:3c:7d:05:26:7f:bd:81:b5:
72:26:2e:5a:04:be:84:07:fb:a5:44:c4:9b:89:ff:f7:95:c5:
f2:c8:81:91:34:e3:b4:16:43:5d:30:b0:5b:f5:e1:7e:22:0c:
6d:ae:1c:7f:12:47:d8:50:d1:36:0c:06:e7:d4:93:24:fd:67:
6f:48:ad:77:4b:53:50:f3:42:1a:2f:c2:8e:ab:29:83:d7:7c:
7a:5e:2c:15:f0:a3:fa:78:51:ba:ed:bd:de:02:6d:b0:c4:c1:
82:2b:a5:24:9e:46:ea:fc:ce:aa:cf:db:63:3e:d4:05:1e:54:
b6:69:6b:72:0c:ea:ed:0e:8b:f7:a3:f2:c9:11:45:23:da:aa:
6a:6d:1d:65:fd:8e:ca:8c:20:75:9d:e4:4e:df:04:fb:9d:0c:
7c:7f:e7:0f:4b:aa:76:d7:99:4b:62:b0:8a:a7:b3:6c:ac:14:
e1:cf:46:80:6a:c5:25:c6:af:59:ac:ed:a2:c3:40:70:ae:cb:
c2:64:01:9b:64:59:46:20:38:9a:4d:37:8e:5e:e0:98:64:33:
8b:bc:de:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:19 2024 by rpki-client on console-fra.rpki-client.org