Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ytJxi8ykEMVjhJ4V0yg9drSWUGE.roa
File: ytJxi8ykEMVjhJ4V0yg9drSWUGE.roa (raw, json)
Hash identifier: Mq3QL9cvKIA6AxAUK5upaQ52R2+zfjT6DkaaTBpXCik=
Subject key identifier: CA:D2:71:8B:CC:A4:10:C5:63:84:9E:15:D3:28:3D:76:B4:96:50:61
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0192BD337090051CE8499C69EB3499C4C499
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ytJxi8ykEMVjhJ4V0yg9drSWUGE.roa
Signing time: Thu 24 Oct 2024 06:25:17 +0000
ROA not before: Thu 24 Oct 2024 06:25:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30058
IP address blocks: 163.5.175.0/24 maxlen: 24
163.5.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 27 Oct 2024 08:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:bd:33:70:90:05:1c:e8:49:9c:69:eb:34:99:c4:c4:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 24 06:25:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cad2718bcca410c563849e15d3283d76b4965061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e1:d4:9e:d6:4f:5a:44:6f:33:7f:78:8e:82:
36:93:0b:db:c8:8b:82:d1:34:e1:67:46:14:e6:46:
21:9b:cf:31:c0:f4:44:f0:2b:e4:d6:ad:ba:86:b2:
ca:a5:74:cc:16:ff:1d:25:f4:44:ac:01:41:d3:c2:
fb:93:d0:99:91:4c:b3:4b:5f:34:6d:c6:65:a5:a6:
b4:ec:d5:54:5c:a6:d3:8a:d8:b5:88:23:69:d8:8c:
90:52:ea:97:58:cb:36:29:52:1d:2d:0e:e7:ef:05:
f2:8f:a1:f6:8f:af:b1:ea:33:d4:f5:14:f2:5f:46:
67:3a:bc:cd:ef:00:a9:8f:29:70:58:87:3d:d8:7c:
56:a1:48:ed:15:0c:d7:d4:aa:80:f9:7b:e9:10:32:
3d:f2:e1:a7:9e:23:09:5b:2f:f1:75:83:8b:18:c2:
19:7a:ed:6a:35:31:98:a0:5f:48:36:13:45:dd:3e:
83:ab:9c:6c:1a:b4:b6:dd:82:30:b1:62:58:5a:7d:
60:d4:05:e2:e3:9b:ad:62:21:7b:ef:0c:64:e0:84:
2d:68:d7:e5:84:79:9b:dc:5a:bc:17:81:54:1f:4b:
90:99:ee:7a:ae:9d:bb:36:cb:86:c3:b9:a7:99:31:
3a:9e:b4:bd:18:59:23:4c:16:42:d9:5b:db:ea:69:
92:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D2:71:8B:CC:A4:10:C5:63:84:9E:15:D3:28:3D:76:B4:96:50:61
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ytJxi8ykEMVjhJ4V0yg9drSWUGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.175.0/24
163.5.209.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:0e:d1:27:8c:e0:19:2a:ee:10:8c:b4:d8:90:dc:6b:3e:7d:
3b:4c:02:6d:c5:cf:15:b2:d9:4a:29:3b:b8:33:e7:bd:f9:4e:
52:7d:a0:c7:c9:fb:97:92:44:63:ef:c1:2e:89:4f:67:7c:65:
c3:61:da:58:0c:46:2a:06:22:28:46:e5:43:23:94:67:5b:16:
39:dc:9b:b0:0a:9b:90:1b:44:26:75:92:94:ea:a0:97:54:32:
ff:05:cc:50:00:7c:3a:02:09:4a:0f:7f:df:2d:f9:8a:06:f4:
2c:77:e0:f2:6f:00:a6:61:c1:16:d4:43:e9:82:b6:ad:95:0e:
8e:94:e9:3e:58:50:ec:49:a5:e4:47:c1:94:90:e4:01:ff:6b:
4d:c9:8f:6f:00:05:1c:9b:0a:5c:58:6e:88:c6:3f:a3:ca:40:
03:c8:49:e4:fa:1e:63:08:12:01:db:62:e8:3d:bc:3a:4b:41:
2c:45:b9:ed:c3:85:b5:64:ce:38:59:15:33:ea:62:ee:de:4d:
7b:27:f9:e6:c3:c9:69:7a:6e:23:df:56:67:a0:bb:b6:75:6c:
ba:69:9e:e0:ae:9d:82:1c:49:c9:c8:2e:7c:ff:d9:43:36:1d:
71:aa:08:16:ad:54:f5:b6:09:1c:63:4c:9e:dc:f3:88:df:73:
5f:1f:7a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 27 10:02:23 2024 by rpki-client on console-fra.rpki-client.org