Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xveK0SoWogAH-7_flEXYqkifx3g.roa
File: xveK0SoWogAH-7_flEXYqkifx3g.roa (raw, json)
Hash identifier: OISx9Q+r1NRhoIs0w8dyUau38ZQ7p9gEOrpCnG/kb3k=
Subject key identifier: C6:F7:8A:D1:2A:16:A2:00:07:FB:BF:DF:94:45:D8:AA:48:9F:C7:78
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01894442BB534C67709762215979683CDE50
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xveK0SoWogAH-7_flEXYqkifx3g.roa
Signing time: Tue 11 Jul 2023 09:22:51 +0000
ROA not before: Tue 11 Jul 2023 09:22:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396356
IP address blocks: 163.5.70.0/24 maxlen: 24
163.5.76.0/24 maxlen: 24
163.5.72.0/24 maxlen: 24
163.5.77.0/24 maxlen: 24
163.5.98.0/24 maxlen: 24
163.5.92.0/24 maxlen: 24
163.5.243.0/24 maxlen: 24
163.5.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:44:42:bb:53:4c:67:70:97:62:21:59:79:68:3c:de:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 11 09:22:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6f78ad12a16a20007fbbfdf9445d8aa489fc778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:be:ab:15:b4:8f:aa:20:2a:22:e4:36:14:fc:
1d:68:40:64:07:71:ca:ae:ad:ca:2e:65:09:70:8f:
72:15:d4:b4:2f:36:bd:5b:bd:e0:b8:35:64:54:4d:
ca:51:5f:97:b6:96:4c:03:ac:f1:47:6a:d1:f9:7a:
3c:eb:b6:3e:be:81:0e:1b:f9:8b:66:29:12:b9:c4:
1f:72:70:2a:7d:96:5b:33:79:d1:50:2f:3a:29:c8:
86:1e:86:35:2f:fc:9e:7f:c7:3e:06:51:64:a6:cb:
4e:f6:8d:5a:b0:06:93:39:87:57:0e:0b:3a:1b:b6:
94:22:9b:1c:3c:7f:4a:b2:b6:26:e4:f9:d7:c4:b3:
47:ed:19:ab:eb:16:46:38:3c:1e:dd:b4:a0:ac:08:
74:e7:ee:4c:64:36:a8:66:b5:c4:27:49:11:7f:39:
3a:b8:ed:9b:4d:ec:e9:e6:21:b2:2f:ba:2e:4a:15:
37:1c:65:d9:ca:f5:40:8c:fc:e8:f1:11:31:37:89:
2c:61:a6:d6:1a:45:6e:6a:22:58:f0:98:b3:a8:68:
1d:87:87:18:e3:45:f2:05:90:24:b8:94:c6:17:67:
04:93:c5:8b:36:41:85:a0:c3:1d:5d:84:c4:22:e6:
eb:1b:47:32:5e:09:7c:85:b0:42:e5:6b:a4:16:cc:
9d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F7:8A:D1:2A:16:A2:00:07:FB:BF:DF:94:45:D8:AA:48:9F:C7:78
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xveK0SoWogAH-7_flEXYqkifx3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.70.0/24
163.5.72.0/24
163.5.76.0/23
163.5.92.0/24
163.5.98.0/24
163.5.243.0/24
163.5.245.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:7b:c8:36:19:21:26:c7:1c:af:ba:e9:a1:10:4d:34:ad:cb:
c0:cd:e1:e6:1b:52:1e:19:ae:f6:7f:70:5c:00:cd:9a:ec:32:
77:9f:5a:6d:07:06:a0:14:51:8d:fb:62:60:6d:cf:f5:ec:29:
0a:24:07:ec:48:fe:31:af:42:a6:ba:dc:c9:4f:ce:7b:70:44:
16:af:7e:17:20:3c:8f:52:81:72:2b:ca:e6:d8:f9:70:ff:a2:
9f:fb:40:6a:2a:88:dc:7a:0d:6b:9b:14:30:ee:13:22:84:c3:
f7:d2:40:dd:8c:3e:3b:aa:8c:3b:77:68:8e:7b:b3:ea:25:5a:
95:b8:5c:a6:53:74:6b:cd:38:01:d9:38:3d:fe:91:08:9e:1b:
fa:94:ee:20:24:53:ca:4b:fa:2d:74:55:61:c5:35:bf:ac:5d:
f0:88:fb:70:08:4c:52:58:e7:cc:bc:41:74:94:6b:ca:04:d8:
a3:2a:89:00:0e:38:12:3d:b4:21:7e:cc:6c:2a:40:2f:57:99:
54:2e:70:98:1f:9b:5a:31:fc:d3:7f:b6:b0:c8:93:2b:03:6e:
8f:b7:0d:51:ce:fa:35:33:75:df:ec:9b:1f:59:0f:32:6f:ff:
fd:c6:cb:2d:0c:f4:36:71:81:7a:fc:32:6b:f7:9c:54:de:26:
0b:14:86:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 28 10:18:30 2023 by rpki-client on console-fra.rpki-client.org