Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/39081f-5003-41ed-b80a-3fae034c489e/1/5CuhqZ0KdblruRkPYaf9aYBxu18.roa
File: 5CuhqZ0KdblruRkPYaf9aYBxu18.roa (raw, json)
Hash identifier: mAgD4Tkza2UFN3FQvo4LbLWAy094hwWFn8euY+h4zr0=
Subject key identifier: E4:2B:A1:A9:9D:0A:75:B9:6B:B9:19:0F:61:A7:FD:69:80:71:BB:5F
Certificate issuer: /CN=b169a49700e0c3b8e39a79130c987a5000ccffe2
Certificate serial: 018B3E1052F367C1A33332FEBC07F01D4E48
Authority key identifier: B1:69:A4:97:00:E0:C3:B8:E3:9A:79:13:0C:98:7A:50:00:CC:FF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sWmklwDgw7jjmnkTDJh6UADM_-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/39081f-5003-41ed-b80a-3fae034c489e/1/5CuhqZ0KdblruRkPYaf9aYBxu18.roa
Signing time: Tue 17 Oct 2023 14:35:39 +0000
ROA not before: Tue 17 Oct 2023 14:35:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206364
IP address blocks: 185.163.13.0/24 maxlen: 24
2a00:1197::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3e:10:52:f3:67:c1:a3:33:32:fe:bc:07:f0:1d:4e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b169a49700e0c3b8e39a79130c987a5000ccffe2
Validity
Not Before: Oct 17 14:35:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e42ba1a99d0a75b96bb9190f61a7fd698071bb5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:74:b1:37:0a:44:3d:31:97:7e:47:f0:4d:ca:
db:68:0f:28:6f:4a:e1:49:ce:0a:4f:26:f4:f1:52:
58:eb:6c:3b:65:a6:d4:ad:80:87:c2:77:28:2a:e6:
b0:57:52:33:79:fa:b9:5f:2c:8e:59:af:b6:48:30:
df:7f:54:e5:46:a5:62:97:10:75:01:81:a7:f2:82:
c2:e9:8f:6a:e4:50:c6:2a:9d:89:2d:4c:c0:4a:d8:
1c:6e:01:c9:78:47:2c:0d:b0:a8:58:3e:56:16:26:
cd:82:a9:9b:96:57:32:94:5c:7f:3c:6e:d4:78:cc:
40:b0:5d:88:01:d6:c3:bc:87:f2:50:e9:4a:f7:d7:
db:78:bd:ce:2a:35:aa:39:a1:bd:52:9b:d2:21:d4:
7e:92:fc:e6:69:6f:94:04:bc:97:44:fa:b5:4c:72:
f4:75:8e:8a:2e:1f:c0:33:a2:08:ed:bb:ba:e6:e4:
71:a9:97:29:96:79:4e:be:0d:4b:92:bd:df:8a:e3:
30:ff:09:19:76:fd:f1:68:eb:41:b8:9e:ad:c8:f4:
2a:ae:08:0d:b4:9e:a7:b5:38:2f:e1:cc:75:5e:14:
86:73:c1:4c:fd:4b:dd:a7:18:b8:2c:60:f7:ac:5c:
3e:d0:65:58:ab:9c:8e:aa:4c:94:ce:8e:a4:ba:16:
a2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:2B:A1:A9:9D:0A:75:B9:6B:B9:19:0F:61:A7:FD:69:80:71:BB:5F
X509v3 Authority Key Identifier:
keyid:B1:69:A4:97:00:E0:C3:B8:E3:9A:79:13:0C:98:7A:50:00:CC:FF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sWmklwDgw7jjmnkTDJh6UADM_-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/39081f-5003-41ed-b80a-3fae034c489e/1/5CuhqZ0KdblruRkPYaf9aYBxu18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/39081f-5003-41ed-b80a-3fae034c489e/1/sWmklwDgw7jjmnkTDJh6UADM_-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.13.0/24
IPv6:
2a00:1197::/32
Signature Algorithm: sha256WithRSAEncryption
00:24:c9:e3:89:a6:7f:5d:d7:69:ca:37:dd:b0:44:44:6f:d8:
21:3f:c7:c9:53:ad:48:ce:a7:94:3e:9a:ab:84:00:ee:6b:df:
05:b8:8a:f9:4c:73:65:c2:bc:f3:bb:5f:d9:84:54:20:41:c7:
67:59:30:ec:db:74:82:2c:d3:c7:cc:f8:bd:36:87:6d:ef:7f:
70:16:82:e2:77:80:1d:ee:9b:3e:a5:92:e6:e0:ba:1f:0b:f0:
72:d6:a3:91:49:28:4a:b0:40:1c:7a:7f:50:68:36:03:77:e5:
29:06:0e:c2:b1:40:70:17:e0:29:36:34:6f:04:ba:12:b1:1c:
c8:64:4e:ad:f6:e1:ad:f8:5c:b6:0f:dc:88:7e:d3:cb:a2:bd:
82:6d:3d:00:0e:8b:f9:bc:30:bf:a8:61:87:73:5d:eb:17:24:
be:0b:01:6f:e2:32:f6:e4:71:df:72:f6:d8:5c:52:d9:fc:a0:
0c:26:14:b7:1a:a8:ea:7f:3d:7e:1e:27:ab:d8:62:8f:24:11:
d0:7c:f2:33:00:d5:5a:88:78:59:97:fc:30:49:2b:89:b7:a1:
5d:17:ac:8e:05:0a:52:72:a0:b1:79:be:14:57:66:dc:a2:88:
63:9a:5e:74:da:5e:3c:af:70:ae:2c:b9:5a:ac:c0:7a:db:2d:
8a:53:1f:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:00 2024 by rpki-client on console-ams.rpki-client.org