Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xVpGI2laGET96RATqecBMFbsMP4.roa
File: xVpGI2laGET96RATqecBMFbsMP4.roa (raw, json)
Hash identifier: Gd9QBQZg05mX836rKObtrY+fLYMcWB6hvmobxklGLrQ=
Subject key identifier: C5:5A:46:23:69:5A:18:44:FD:E9:10:13:A9:E7:01:30:56:EC:30:FE
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018C01ECBE6B3A3729F9570BBF8C40E7DCB2
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xVpGI2laGET96RATqecBMFbsMP4.roa
Signing time: Fri 24 Nov 2023 15:22:21 +0000
ROA not before: Fri 24 Nov 2023 15:22:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400897
IP address blocks: 163.5.254.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:01:ec:be:6b:3a:37:29:f9:57:0b:bf:8c:40:e7:dc:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 24 15:22:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c55a4623695a1844fde91013a9e7013056ec30fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:30:74:2a:77:7c:f2:7b:9e:cf:34:e4:8e:5c:
5e:24:ce:ab:3d:22:b0:41:78:59:47:a9:47:ff:93:
b9:3a:51:5a:ba:2d:97:91:39:5e:e2:32:be:ef:09:
36:58:21:60:dd:9c:bb:46:6a:04:09:84:09:59:53:
57:2a:2d:85:2a:14:1b:04:31:99:12:59:38:3b:cc:
cd:41:63:5d:9c:51:41:4c:63:c1:7a:1e:dd:67:b6:
dc:6e:e5:17:21:fa:42:8d:65:c0:6c:23:b3:e9:91:
83:75:c0:58:30:42:2c:41:a5:2d:00:8f:b5:19:e1:
49:b2:c5:36:cc:a3:a6:e6:c5:01:3a:ae:83:bc:6b:
4d:73:96:66:e3:d3:3d:1d:03:57:e9:b0:9a:a0:38:
a8:e7:ec:f5:ae:25:0d:04:3f:44:bf:18:5d:5c:cc:
00:d6:70:f7:3f:4e:b1:8b:46:ae:5d:29:1c:6e:24:
59:8a:9c:7b:75:68:01:df:4a:00:3b:4c:e3:a8:9f:
ad:59:5c:c7:24:1d:84:15:05:03:41:cc:72:9e:6e:
a0:c7:aa:72:55:90:6c:6b:c6:5e:c8:9d:44:71:44:
0e:9d:80:78:72:ba:72:07:ca:d4:75:56:b9:bf:3a:
95:46:51:39:d1:e1:e2:60:41:ba:59:5a:ac:77:56:
ba:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:5A:46:23:69:5A:18:44:FD:E9:10:13:A9:E7:01:30:56:EC:30:FE
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xVpGI2laGET96RATqecBMFbsMP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.254.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:31:6b:de:81:85:29:19:57:64:39:48:02:6f:82:d4:ed:c6:
4d:50:fe:cc:78:7d:5c:31:d7:c1:7a:dc:65:fd:52:86:7d:1f:
11:56:ec:56:ea:10:d9:07:8b:52:28:db:3f:fc:aa:3d:c7:67:
00:a2:8a:a8:d5:fc:32:b3:ce:f3:dc:aa:f7:a0:31:9d:e3:11:
e2:0b:ff:25:4e:7b:2c:0c:e0:72:0f:19:61:73:e7:f4:8b:2f:
6e:d3:00:cf:8d:04:fb:d2:d3:c5:7d:63:7c:74:c2:93:71:ae:
c0:04:4b:f9:ea:a0:d0:c2:fa:1e:31:54:d1:31:2b:00:f6:be:
5c:e6:df:3e:99:f9:fc:3c:3b:67:0e:2b:3a:a8:23:4a:67:e8:
85:5d:42:42:64:00:e0:d9:3b:49:6c:2f:b4:a7:c2:74:f1:ba:
01:6f:ee:6c:84:ff:8d:cf:fd:7b:fa:f5:18:9d:6c:30:4c:d1:
76:e8:ac:bd:9b:90:e0:c3:c3:a9:ba:f8:87:eb:40:74:6b:f9:
ef:64:63:8d:e2:8d:88:65:01:4b:27:9b:00:6d:e2:23:c6:02:
43:3e:25:91:0c:e9:97:5e:7a:8a:78:83:02:04:02:20:c6:99:
47:9c:f1:0c:9c:1c:f1:29:87:52:4e:c1:74:4c:22:8b:40:1f:
4c:84:5b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 28 00:57:26 2023 by rpki-client on console-ams.rpki-client.org