Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/we9Uhu4PXxEDdjJ-wI9Em8pV4nY.roa
File: we9Uhu4PXxEDdjJ-wI9Em8pV4nY.roa (raw, json)
Hash identifier: U4anxpw+lmRkSplPNPRTPxTPLXjBwPVgdShQDznIEhw=
Subject key identifier: C1:EF:54:86:EE:0F:5F:11:03:76:32:7E:C0:8F:44:9B:CA:55:E2:76
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01857042C8C836F0320FC6F9EDC4DF0BCE98
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/we9Uhu4PXxEDdjJ-wI9Em8pV4nY.roa
Signing time: Mon 02 Jan 2023 02:15:03 +0000
ROA not before: Mon 02 Jan 2023 02:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207429
IP address blocks: 163.5.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 11:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:c8:c8:36:f0:32:0f:c6:f9:ed:c4:df:0b:ce:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 02:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1ef5486ee0f5f110376327ec08f449bca55e276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ba:27:0a:fe:c9:43:18:a3:a7:c9:9d:18:22:
08:3b:32:11:da:73:5e:6b:a4:3f:0b:a4:5c:d4:ad:
3a:1c:04:cf:48:a0:60:74:77:13:ef:a6:1b:c0:87:
75:97:e7:4e:c4:9c:72:99:9e:eb:a5:cb:ea:b1:85:
b7:60:af:23:ab:22:f6:61:3e:3d:e2:a0:87:08:6e:
99:42:43:11:b1:5a:c0:ac:be:68:3f:d6:ac:57:f0:
be:d9:42:1d:2a:22:3f:92:22:1d:aa:b3:fc:dd:22:
ce:21:78:38:bb:59:5b:95:d7:d3:e5:d1:f9:38:b3:
73:a3:d4:42:ea:a9:f4:7d:fe:a6:aa:f7:4c:e1:f2:
c5:35:c1:b8:0e:d9:ac:4a:18:51:63:aa:77:36:b7:
a3:01:35:ad:8a:22:97:5d:d4:74:7c:a9:c5:02:16:
53:63:f5:fc:5b:6f:61:fd:80:6b:0b:d0:28:63:fe:
74:1f:b1:9f:10:78:9a:ed:29:bd:6c:ce:2f:e3:03:
2e:64:c6:3d:17:cc:a7:a6:be:20:c2:da:74:eb:ef:
39:ac:35:f6:00:e6:0e:02:c6:5d:68:3a:c5:27:55:
de:c2:05:ba:86:00:d4:e8:74:24:86:ce:96:3e:0c:
0e:87:86:cd:5c:fd:c0:ba:90:67:d4:54:e3:63:b0:
af:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:EF:54:86:EE:0F:5F:11:03:76:32:7E:C0:8F:44:9B:CA:55:E2:76
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/we9Uhu4PXxEDdjJ-wI9Em8pV4nY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.104.0/24
Signature Algorithm: sha256WithRSAEncryption
00:1d:76:90:d5:78:3e:84:89:01:03:bf:64:59:fb:c1:33:4c:
74:51:5c:58:26:d5:dd:0e:6b:80:ba:3b:eb:d3:4f:9f:0a:01:
c1:85:b9:13:cf:19:06:82:ed:a5:bf:69:22:75:4c:aa:50:f0:
cb:e4:6b:af:2e:b3:84:b1:e7:89:b8:6a:d8:2f:8b:73:36:d1:
26:68:a0:04:6d:bf:fc:f2:00:1d:a8:dd:5b:31:ec:f3:bf:4e:
ee:ff:ec:ca:9b:8d:c6:0c:ec:d4:d0:b7:b1:7e:4c:6b:b6:9b:
8e:6b:c6:79:ee:1b:8c:38:60:48:70:af:c5:13:7d:19:a8:6b:
06:5a:ca:82:72:d9:79:51:72:26:7c:44:5a:49:0b:27:1e:4d:
73:40:1d:7e:3a:b1:b0:e5:71:7d:5c:9e:21:f0:5e:87:4a:19:
2f:3a:2b:e0:9d:db:c1:91:3e:cc:ca:a5:a4:f3:2c:51:5f:5d:
48:65:41:71:d3:34:95:4d:28:e8:ac:83:81:12:59:55:90:48:
fa:bd:19:0a:94:a1:1c:fc:73:4f:eb:af:b9:73:dc:a3:a9:c0:
ac:c3:85:79:73:98:c0:23:e0:3f:3a:11:1d:c2:e5:96:e6:2a:
90:6c:5e:15:a2:ce:4c:93:88:83:9d:79:17:cc:fc:2a:0e:d5:
72:97:f1:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:36 2024 by rpki-client on console-ams.rpki-client.org