Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ysTNOP1i7mMJUDgWuWfCGUW_eaM.roa
File: ysTNOP1i7mMJUDgWuWfCGUW_eaM.roa (raw, json)
Hash identifier: 4gZCFR/QEgY9XQ9/6FPbsHfJu+k39Niu96nUyKVplg0=
Subject key identifier: CA:C4:CD:38:FD:62:EE:63:09:50:38:16:B9:67:C2:19:45:BF:79:A3
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0188147A74F871D12A2992F0253FE0416B1E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ysTNOP1i7mMJUDgWuWfCGUW_eaM.roa
Signing time: Sat 13 May 2023 09:39:09 +0000
ROA not before: Sat 13 May 2023 09:39:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2914
IP address blocks: 163.5.206.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.213.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 May 2023 09:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:14:7a:74:f8:71:d1:2a:29:92:f0:25:3f:e0:41:6b:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 13 09:39:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cac4cd38fd62ee6309503816b967c21945bf79a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:76:df:ae:19:ca:f4:28:0b:bd:59:31:ed:d3:
f8:c1:11:ce:de:79:2d:f0:7b:04:20:b0:d4:03:9e:
9c:13:f8:ef:f6:65:0f:a2:8c:af:a4:90:d7:e9:93:
c7:8c:b3:e3:25:ed:f7:53:3c:1b:33:8d:c3:6a:d1:
9c:f5:8f:1d:26:c0:35:6c:f9:75:08:10:66:b4:ca:
94:91:84:d8:ef:7d:43:9c:85:87:ca:65:15:2f:e8:
32:70:f3:56:8b:50:d1:e9:f2:05:01:46:90:1b:60:
97:1e:ed:4a:5d:2f:2b:7a:5a:c6:b2:a0:fc:ce:58:
ff:2b:d0:12:29:a1:13:b1:28:94:9f:0d:f2:cd:56:
ea:05:d3:03:65:6f:4d:b0:ef:7b:37:c5:02:ac:56:
07:1b:4b:17:fb:4a:7f:ba:9a:21:4b:bc:1b:d7:7d:
14:7a:74:f2:2d:73:ac:7e:1b:b8:62:cd:a6:69:ac:
23:b4:f3:eb:4a:92:76:df:21:e1:41:dc:87:fb:32:
68:fc:0d:f9:aa:6b:76:cf:84:05:25:dc:79:8d:e9:
3e:40:25:41:92:6f:22:82:2a:45:11:16:d4:9d:4b:
45:40:da:6f:d2:c0:3f:b2:8a:c0:3a:f5:23:24:a1:
aa:bb:3d:dc:17:59:8f:1a:09:85:88:f2:34:1b:73:
9c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:C4:CD:38:FD:62:EE:63:09:50:38:16:B9:67:C2:19:45:BF:79:A3
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ysTNOP1i7mMJUDgWuWfCGUW_eaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.147.0/24
163.5.155.0-163.5.156.255
163.5.200.0/24
163.5.206.0/24
163.5.213.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:17:d3:18:36:0c:41:1c:b5:fc:50:55:7a:2a:a6:96:ca:09:
7d:29:27:46:2f:dd:97:50:07:5f:7d:9e:4a:29:f0:96:8a:40:
a6:43:e3:4d:bc:2e:82:41:ac:b2:c8:24:15:8d:0f:5f:bc:b1:
6e:69:09:f7:54:2b:8b:0d:71:d8:b2:86:3a:81:1a:65:6e:ae:
d1:83:d0:8c:43:d7:2d:a6:24:1b:fb:66:3a:54:55:e5:27:e8:
4a:00:39:93:31:d0:24:57:22:c1:23:48:81:5e:b3:06:c6:55:
aa:cb:73:12:fe:6c:62:f6:1d:6c:2f:94:7d:0c:4e:a2:e7:8c:
6c:6e:1d:0c:07:2c:d8:73:05:ac:98:df:64:2f:62:3a:26:7d:
74:65:4a:0c:73:b3:29:46:bb:c0:68:cc:e3:71:53:f8:4b:12:
47:a8:50:87:3c:96:44:62:c9:04:89:75:c8:ac:e7:8d:0f:9a:
00:70:46:ff:f3:59:45:d9:36:6b:7d:7f:9a:f4:1a:99:7c:7a:
c2:6e:1d:9c:93:f2:54:f0:23:c4:dd:68:b7:74:a9:72:a9:31:
7c:37:b3:7a:ca:e1:19:60:c6:68:d8:86:81:61:18:88:3d:2c:
86:53:6c:7d:73:13:ab:60:7b:cb:89:a3:50:26:1a:f0:d2:c0:
43:92:bc:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:09 2024 by rpki-client on console-fra.rpki-client.org