Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/z6IjV3ESoAxmnDpqrb6f7MszO3A.roa
File: z6IjV3ESoAxmnDpqrb6f7MszO3A.roa (raw, json)
Hash identifier: fO8hUXDTq+Z/jGPa3BoBZ8hfg1OkYK3JbKqWfScSpf4=
Subject key identifier: CF:A2:23:57:71:12:A0:0C:66:9C:3A:6A:AD:BE:9F:EC:CB:33:3B:70
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018CC42559BC03EDBF0863EBED01BFACC74E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/z6IjV3ESoAxmnDpqrb6f7MszO3A.roa
Signing time: Mon 01 Jan 2024 08:30:31 +0000
ROA not before: Mon 01 Jan 2024 08:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59538
IP address blocks: 163.5.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Apr 2024 16:34:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:59:bc:03:ed:bf:08:63:eb:ed:01:bf:ac:c7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 08:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cfa223577112a00c669c3a6aadbe9feccb333b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:69:df:fd:3c:53:46:a4:47:32:5b:36:85:52:
51:d8:c7:e4:85:f7:24:8d:30:90:6e:a2:52:32:6e:
57:df:5d:ad:68:fe:b6:ed:bd:f6:6a:2b:37:8c:eb:
be:59:e3:08:43:53:6c:9f:2b:f1:2e:12:e0:e7:91:
c0:ae:d8:d9:f7:b8:a3:31:09:a0:ff:e4:2c:73:17:
13:1e:91:d2:c6:47:c0:56:54:0e:d6:f2:cf:a8:c7:
29:2c:7c:e3:7e:6e:53:74:e7:74:8c:90:39:e6:78:
8f:0d:2f:fc:ba:59:39:35:98:56:d5:56:0d:6a:d0:
57:2f:31:cc:fa:11:3b:80:ab:17:47:24:ed:6e:a4:
65:42:0b:a3:b7:3f:5b:6c:11:d4:f7:92:61:68:9b:
ba:a1:5f:6e:1c:8c:db:a2:b5:ed:f6:89:1f:d4:76:
69:7d:95:89:53:c4:48:d2:dc:fa:c5:7c:81:f6:8a:
08:63:4a:f0:cd:76:be:db:bb:24:91:63:d5:29:d0:
fa:34:43:a2:1d:0e:6c:91:73:6b:91:86:5d:51:61:
51:39:71:14:5a:df:4e:01:e0:da:a8:4e:3f:cf:15:
39:fa:85:4f:a8:a9:93:3e:00:b9:82:b9:6d:ae:43:
12:f2:e7:81:c2:ea:bb:a6:99:0d:69:0c:62:e0:69:
55:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:A2:23:57:71:12:A0:0C:66:9C:3A:6A:AD:BE:9F:EC:CB:33:3B:70
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/z6IjV3ESoAxmnDpqrb6f7MszO3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.92.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:a8:9a:ef:e2:86:fb:db:14:5d:ff:1e:9b:97:a6:0e:95:55:
58:e3:26:89:b6:97:dd:87:a2:d9:16:d1:8f:74:12:d1:03:2b:
5e:82:95:e7:da:f0:24:cb:7e:7a:ff:a0:06:a9:eb:22:97:ba:
e8:7b:f4:65:6c:62:71:8e:38:a0:5b:48:77:0e:41:a4:7b:22:
82:83:6b:91:47:ea:e5:29:d2:55:18:e0:d4:a6:52:b1:3d:d5:
6e:68:e3:fc:51:19:22:2d:3f:1b:6b:f1:79:5f:5b:a9:6f:91:
44:df:bb:a0:b3:93:ea:27:cc:02:c1:95:4d:bb:e6:c5:8e:b9:
8c:22:23:81:96:9f:f7:9f:74:bf:3e:3e:23:4f:2b:fa:a3:0a:
29:e7:f6:4f:37:11:fa:2c:4d:1d:02:06:c9:67:44:59:f3:80:
bc:8c:37:de:c5:54:57:b4:81:7f:45:8a:7f:3f:14:20:5c:73:
c7:92:5c:16:1b:dc:7c:85:fe:f9:f7:b9:9c:46:79:2c:b3:3b:
4e:5b:b6:a6:80:20:3d:5b:a8:4b:eb:ad:3b:9e:15:85:92:28:
d1:5d:66:d4:23:e4:86:37:66:91:c6:02:9c:8f:49:c2:f6:78:
56:ba:19:3a:06:28:d3:57:37:ee:63:50:f9:40:15:f5:49:c4:
87:e4:9d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 7 17:47:25 2024 by rpki-client on console-fra.rpki-client.org