Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yevAd18WO_tWistrMyDSVPHspO0.roa
File: yevAd18WO_tWistrMyDSVPHspO0.roa (raw, json)
Hash identifier: Wo07mFD/MjyKUuxKNsvGcL32rnMT1+3mhaZsQUL4dXU=
Subject key identifier: C9:EB:C0:77:5F:16:3B:FB:56:8A:CB:6B:33:20:D2:54:F1:EC:A4:ED
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018A74C6FDA00B4BA7FF39CC5DAC6A8914EE
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yevAd18WO_tWistrMyDSVPHspO0.roa
Signing time: Fri 08 Sep 2023 12:31:52 +0000
ROA not before: Fri 08 Sep 2023 12:31:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21859
IP address blocks: 163.5.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Nov 2023 22:49:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:74:c6:fd:a0:0b:4b:a7:ff:39:cc:5d:ac:6a:89:14:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 8 12:31:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9ebc0775f163bfb568acb6b3320d254f1eca4ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:81:dc:c3:b3:05:cb:f5:ac:15:f4:16:6e:82:
2e:e5:e2:2e:37:a1:ca:fb:d5:e6:46:a2:1e:7e:ee:
13:e9:27:0b:8b:0c:1d:92:36:99:8d:87:ec:47:8e:
30:b1:79:20:c0:fc:85:8d:17:5e:9d:fb:e2:8e:eb:
00:59:51:42:0a:ab:50:16:77:b9:18:b4:b2:ac:86:
89:fb:53:a4:6a:db:59:2a:db:72:d3:e4:e0:dc:ff:
ef:6e:48:63:f0:28:ea:a4:ea:67:84:88:22:8a:1f:
c6:7f:85:53:52:a3:15:dd:dd:b6:eb:b0:b0:5b:4e:
e4:4c:80:a1:bd:9b:c6:d2:64:92:1f:c7:f5:9b:e2:
18:dc:0a:fd:a6:30:59:52:99:7e:c6:9b:50:8a:87:
e1:91:4e:34:98:84:a0:81:34:c2:6d:d8:85:ed:d4:
d6:0d:c0:43:8e:56:de:d7:50:65:c3:80:dd:9b:54:
3a:30:5a:6c:96:6f:53:9e:96:6f:c3:5d:6b:16:8a:
37:de:5c:92:ad:24:6b:3a:6d:dd:59:cb:d5:0d:0a:
b1:39:6d:50:cb:f0:5e:2b:b3:91:35:e5:fb:78:b5:
ab:fd:ab:84:ea:79:7a:87:ec:36:0d:1b:5e:04:42:
49:40:8c:84:a7:99:15:24:c7:d4:d9:a3:a1:ac:1b:
e0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:EB:C0:77:5F:16:3B:FB:56:8A:CB:6B:33:20:D2:54:F1:EC:A4:ED
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yevAd18WO_tWistrMyDSVPHspO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.61.0/24
Signature Algorithm: sha256WithRSAEncryption
43:39:05:3b:9e:c1:45:52:a1:22:3a:6e:d5:1f:28:e2:32:d5:
03:1f:2e:1f:6c:43:8b:82:c6:08:74:d2:35:cf:bc:dc:50:4a:
73:f2:bb:58:d9:71:3d:05:75:2c:ed:63:7c:fe:2c:7d:61:ad:
fc:0a:24:a1:3e:95:ff:93:0d:5d:b5:f3:cd:1c:5c:71:f1:a9:
4f:3b:d0:80:bb:8f:25:1f:aa:d2:66:1a:c2:19:99:93:58:b8:
12:ba:27:54:1f:ac:f3:2d:3c:45:2a:c7:12:c4:d8:af:a2:2f:
2a:a2:45:3c:ef:af:ca:d0:9b:cd:6e:15:f0:2d:e9:9b:33:8c:
1f:06:97:8e:06:08:0e:32:33:1f:ee:e3:bb:af:d7:98:dc:b6:
6f:0f:6d:2d:96:6f:7a:8d:b3:2c:06:17:b5:32:32:75:64:2f:
bf:00:c0:60:8e:6a:03:7a:34:64:28:94:19:bb:ae:f6:bb:08:
f7:49:d2:71:fa:29:83:81:57:99:ee:85:0f:0f:4b:ce:4e:e1:
03:34:7f:3d:3a:7f:ea:2f:17:51:31:cd:51:ca:1a:26:65:0b:
0f:9d:d0:81:e9:b8:45:77:79:a1:b1:a3:7e:ba:99:5b:68:f6:
3b:8a:b4:46:d6:e0:2f:d4:4b:65:60:0c:0f:ca:88:66:54:2b:
2c:1c:d0:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:09 2024 by rpki-client on console-fra.rpki-client.org