Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zhbCn4R61pLeP-6O3kuVSSC4Wow.roa
File: zhbCn4R61pLeP-6O3kuVSSC4Wow.roa (raw, json)
Hash identifier: pHgqdgIjErRAVIQjueQFdQlL6zzUsFxSsi5RXqtwiaY=
Subject key identifier: CE:16:C2:9F:84:7A:D6:92:DE:3F:EE:8E:DE:4B:95:49:20:B8:5A:8C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0191EC0A61D3BAE3BA35158511FA2DD0773E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zhbCn4R61pLeP-6O3kuVSSC4Wow.roa
Signing time: Fri 13 Sep 2024 15:39:48 +0000
ROA not before: Fri 13 Sep 2024 15:39:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56339
IP address blocks: 163.5.2.0/24 maxlen: 24
163.5.5.0/24 maxlen: 24
163.5.10.0/24 maxlen: 24
163.5.11.0/24 maxlen: 24
163.5.12.0/24 maxlen: 24
163.5.20.0/24 maxlen: 24
163.5.21.0/24 maxlen: 24
163.5.23.0/24 maxlen: 24
163.5.24.0/24 maxlen: 24
163.5.40.0/24 maxlen: 24
163.5.41.0/24 maxlen: 24
163.5.42.0/24 maxlen: 24
163.5.43.0/24 maxlen: 24
163.5.45.0/24 maxlen: 24
163.5.48.0/24 maxlen: 24
163.5.50.0/24 maxlen: 24
163.5.52.0/24 maxlen: 24
163.5.55.0/24 maxlen: 24
163.5.57.0/24 maxlen: 24
163.5.68.0/24 maxlen: 24
163.5.69.0/24 maxlen: 24
163.5.80.0/24 maxlen: 24
163.5.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Oct 2024 14:57:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ec:0a:61:d3:ba:e3:ba:35:15:85:11:fa:2d:d0:77:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 13 15:39:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce16c29f847ad692de3fee8ede4b954920b85a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a8:5c:2e:d0:f5:d1:e5:a2:ba:3d:ed:b1:32:
53:97:d8:a6:bc:aa:08:49:e8:35:df:6c:35:16:36:
cf:e2:b1:5f:b0:2d:42:2f:43:3f:dc:70:b0:a8:16:
9b:9f:51:41:c6:11:62:05:53:3d:ea:ec:cf:47:4d:
58:7c:61:84:ca:0f:01:aa:dc:ba:a2:3f:29:c2:e7:
38:50:69:19:36:07:54:02:01:04:4c:fb:12:d6:c8:
a8:e9:50:53:e0:8a:94:66:7e:38:f9:db:4c:ed:33:
b6:5f:1e:0e:1b:af:59:a5:29:37:3d:51:f3:68:b2:
fe:49:a9:a0:d3:1d:73:45:88:cb:88:97:23:04:e5:
e5:1f:e1:e8:94:0c:af:e7:7e:17:31:61:67:49:ad:
9b:9d:fa:1b:55:6b:a3:42:32:20:6f:03:01:83:a4:
c7:df:dc:c4:3c:5e:5d:11:f4:66:f9:27:58:8a:4b:
a5:b1:e6:56:f3:ab:f1:4f:ae:43:7e:da:25:56:03:
34:92:f4:74:64:a2:ed:b6:99:20:41:49:b0:04:2c:
3b:63:63:20:72:0f:57:53:f2:67:80:6d:b5:6f:5d:
22:f2:3f:e9:cf:ff:f7:ae:91:0d:88:fe:bb:01:6b:
24:6f:28:37:45:5a:7d:8e:70:9e:5d:a6:5c:da:e5:
6e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:16:C2:9F:84:7A:D6:92:DE:3F:EE:8E:DE:4B:95:49:20:B8:5A:8C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zhbCn4R61pLeP-6O3kuVSSC4Wow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.2.0/24
163.5.5.0/24
163.5.10.0-163.5.12.255
163.5.20.0/23
163.5.23.0-163.5.24.255
163.5.40.0/22
163.5.45.0/24
163.5.48.0/24
163.5.50.0/24
163.5.52.0/24
163.5.55.0/24
163.5.57.0/24
163.5.68.0/23
163.5.80.0/23
Signature Algorithm: sha256WithRSAEncryption
76:d5:9f:c5:58:82:1f:ff:d3:37:e0:e9:a6:18:6f:0e:db:12:
97:ac:4f:f1:72:ca:26:55:30:a9:fb:f2:07:25:fc:a7:04:94:
e0:b8:2a:7b:e1:99:19:62:ac:63:d7:ea:ae:4a:28:bc:70:98:
ca:03:82:4a:35:eb:9b:3e:e7:f6:af:24:14:d8:21:cf:b5:50:
37:cd:00:de:fd:46:41:94:10:a2:30:17:98:a6:f0:66:21:16:
f5:cb:27:20:79:79:10:25:8c:38:2e:96:51:5d:af:42:60:e5:
ee:0f:3e:a1:6c:8d:fd:de:fd:70:e5:2b:d5:64:4f:07:e1:1c:
3d:5e:50:8b:0b:2a:da:88:1d:e4:0f:1d:f0:03:75:cf:46:25:
1d:d4:60:d0:22:44:1f:56:bf:88:4c:3c:a3:2b:35:97:a6:a9:
ee:4c:0b:59:4b:2d:5d:ed:d8:1d:ef:20:03:ac:0f:d6:59:02:
1f:9b:75:60:be:30:99:aa:c2:44:11:61:53:1a:3f:c3:a6:f8:
44:bc:32:5b:84:53:14:f8:d3:26:fe:98:47:cb:d1:e8:68:93:
02:be:5a:dd:eb:f7:dd:0b:76:32:01:88:cf:14:ad:80:02:08:
28:a8:bb:23:79:4f:01:53:74:55:a2:65:67:d6:0d:0e:de:58:
c4:f1:d7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 17:19:20 2024 by rpki-client on console-fra.rpki-client.org