Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yNM1Ypm6lK1uQRzpTOq9mE-16KY.roa
File: yNM1Ypm6lK1uQRzpTOq9mE-16KY.roa (raw, json)
Hash identifier: 17aXKeZvQNYS2oxpIeQmBHNpwPuFUS19raTUADBymQU=
Subject key identifier: C8:D3:35:62:99:BA:94:AD:6E:41:1C:E9:4C:EA:BD:98:4F:B5:E8:A6
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018BB738D7D24F188EA2578076D17E3F4205
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yNM1Ypm6lK1uQRzpTOq9mE-16KY.roa
Signing time: Fri 10 Nov 2023 03:13:57 +0000
ROA not before: Fri 10 Nov 2023 03:13:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 163.5.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b7:38:d7:d2:4f:18:8e:a2:57:80:76:d1:7e:3f:42:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 10 03:13:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8d3356299ba94ad6e411ce94ceabd984fb5e8a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8a:71:91:e9:68:c1:dd:24:c1:e0:d6:62:f4:
0e:d5:6f:f2:c0:e3:4f:3f:a4:20:25:d9:2b:8b:d4:
5e:30:e5:a8:06:ba:4d:9f:48:94:6d:45:c3:6a:58:
a4:72:90:74:5a:93:39:d5:5e:a8:c8:97:f8:76:ea:
ef:f9:1d:67:fa:dd:d8:02:02:ee:b0:37:e2:e0:8e:
84:d6:95:4a:40:74:fb:63:5e:a8:02:d2:5c:32:09:
86:dc:e4:cf:8b:f8:83:52:b8:4d:74:8e:c4:c7:6a:
77:84:9a:e1:82:ac:dc:c1:b6:54:b4:74:e3:64:65:
0a:d9:45:67:19:0c:39:68:89:64:91:02:e1:2f:7a:
4a:ef:c8:59:b1:ff:94:37:6c:7c:f8:63:bf:75:98:
0c:dc:c6:8c:dc:58:f2:50:09:dd:c2:35:6f:07:7c:
d0:23:7b:3b:1a:df:28:e5:b1:77:db:b5:30:52:d3:
4c:1a:9b:d0:17:54:28:b0:f3:be:0b:93:49:c0:1e:
3f:fd:c6:6d:e1:b6:05:d3:2e:94:97:41:99:60:7c:
0e:31:8b:9b:c7:6d:6f:39:18:77:1a:e7:eb:25:25:
dd:5b:7b:77:59:4b:04:5a:57:11:bd:8d:c0:b6:e2:
19:86:ed:b4:7b:ad:04:b1:1d:b5:2d:ec:4c:3a:34:
b2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D3:35:62:99:BA:94:AD:6E:41:1C:E9:4C:EA:BD:98:4F:B5:E8:A6
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yNM1Ypm6lK1uQRzpTOq9mE-16KY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.86.0/24
Signature Algorithm: sha256WithRSAEncryption
06:db:81:e0:9f:10:35:3e:42:bd:e1:ad:d6:43:96:24:4d:c5:
86:3d:c6:80:44:37:c5:59:be:4e:3e:48:b5:c9:79:9c:39:3f:
ce:08:b5:e1:b8:8b:f8:49:2d:30:13:c9:cb:7d:75:65:7c:a0:
b4:4e:53:d9:13:bb:87:eb:fd:d1:5b:6e:5d:ef:90:f9:b5:c0:
0c:57:c1:f1:96:46:57:4d:2a:75:1d:46:6c:59:ef:22:e0:a1:
cc:d1:de:90:15:af:14:70:82:fb:2f:2e:84:35:cc:18:2a:21:
0e:00:e7:53:dd:36:61:5e:b6:b2:4b:0e:7d:f6:a8:7b:82:4c:
44:37:90:12:49:d9:0d:fd:fa:71:17:6f:9f:a6:f4:4c:06:37:
f6:68:ff:b7:fa:21:0e:68:78:40:c2:69:82:b2:69:fd:41:54:
bb:dd:8a:ed:d4:75:bb:61:29:2c:92:a9:3d:d0:39:d8:9c:db:
b6:2c:58:c3:22:65:4d:7f:4b:b0:9a:47:17:19:61:e6:1d:d9:
1f:1b:42:26:d0:c5:2e:90:b4:2e:57:f8:56:a1:03:be:55:1a:
08:74:41:9c:f2:cd:c8:6c:5f:09:37:ff:52:26:f6:3b:6c:60:
b0:2a:1f:17:c2:5f:51:7c:3e:e2:c5:c4:5c:82:4a:74:b3:3b:
c5:47:7f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 11 10:58:54 2023 by rpki-client on console-ams.rpki-client.org