Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/COz5V7hZNT-qktlFnseAGUa4ZjE.roa
File: COz5V7hZNT-qktlFnseAGUa4ZjE.roa (raw, json)
Hash identifier: fWgMcv8luFNpythGrKfrkMBlqdwcPRoC14C77DNq2gQ=
Subject key identifier: 08:EC:F9:57:B8:59:35:3F:AA:92:D9:45:9E:C7:80:19:46:B8:66:31
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01856F02334C07A19E6D5CC19B08533A0B59
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/COz5V7hZNT-qktlFnseAGUa4ZjE.roa
Signing time: Sun 01 Jan 2023 20:24:53 +0000
ROA not before: Sun 01 Jan 2023 20:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15483
IP address blocks: 159.148.160.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:33:4c:07:a1:9e:6d:5c:c1:9b:08:53:3a:0b:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 20:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08ecf957b859353faa92d9459ec7801946b86631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b8:3d:5d:ed:c1:1d:a9:6c:c3:21:8c:87:90:
40:5c:31:c4:fe:9b:11:84:59:11:d5:b2:77:10:c9:
93:28:a5:29:35:1f:c7:f3:72:d7:99:c1:69:d7:3a:
0a:96:1a:a7:20:a3:e5:5c:55:fe:e7:ce:48:09:3d:
3a:50:78:6a:e5:52:ab:b6:c2:48:e0:59:a6:e2:31:
95:1c:2a:f9:88:6d:ff:4b:96:e5:5c:40:28:1b:ee:
8a:66:22:3c:a6:66:fb:0a:1d:42:3e:6f:c9:dd:11:
66:ce:1e:99:0b:15:25:3a:74:e5:39:15:e5:72:8d:
03:0f:b3:3e:2a:f3:75:8a:78:ac:55:2c:7b:ec:d8:
b3:30:37:83:e5:5d:76:c3:10:73:35:19:30:09:9b:
87:23:28:2b:8c:ab:32:24:dd:7e:71:43:6e:42:70:
97:a2:14:ad:13:a5:a2:2e:dc:e8:97:62:bc:bd:39:
2d:43:51:8a:b5:02:9f:74:3c:57:08:17:dd:ab:c1:
b4:2e:56:72:ea:ee:a5:01:8c:eb:c2:bf:3d:6b:74:
ea:33:52:24:c9:b6:de:36:8e:54:b4:0a:08:ad:6d:
49:03:9d:3a:7b:97:95:ad:95:d9:a8:21:c3:e5:92:
19:58:1d:47:63:06:60:69:4d:77:19:28:27:bd:92:
fa:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:EC:F9:57:B8:59:35:3F:AA:92:D9:45:9E:C7:80:19:46:B8:66:31
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/COz5V7hZNT-qktlFnseAGUa4ZjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.160.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c7:4b:ba:2a:86:e1:a0:5c:cf:ab:18:ae:da:28:44:cf:7d:
66:59:7c:d4:ce:5f:19:0c:d7:76:a0:04:b2:1d:ee:15:80:9f:
a6:44:74:96:19:2a:5a:5c:66:04:47:db:a6:39:82:98:89:2a:
a6:fb:0c:ae:41:51:70:dd:0a:34:7d:20:ae:e3:12:6a:7a:75:
74:65:a8:85:42:6d:c3:d2:40:63:6f:63:0a:ad:ae:91:2c:47:
4e:1a:80:69:30:b0:77:2b:09:ef:d9:21:49:4a:83:04:49:10:
15:b8:66:8c:58:58:6c:7c:b3:9c:48:15:a3:a6:52:0c:a4:da:
d1:e8:52:f2:3f:d9:d0:a8:c6:cd:0a:20:f0:00:29:c7:6b:4a:
5f:74:db:45:58:4d:bf:48:48:49:2e:6b:da:80:e6:f4:7f:2e:
2d:ae:86:8d:d3:83:ac:8d:17:13:f3:ff:a3:55:a6:a8:ca:5e:
01:7e:de:bf:c3:07:3e:b1:be:62:df:37:99:99:e1:9a:f7:7d:
d8:1d:7b:f2:43:aa:28:57:aa:35:95:eb:20:e3:4c:60:9d:05:
b7:76:cc:b6:3f:dc:bd:8b:d7:be:a0:65:69:80:13:3c:b8:7d:
f6:d0:48:81:fb:fe:42:d7:7b:44:96:a7:3e:08:78:fc:3d:8d:
b9:3f:8b:3b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvAjNMB6GebVzBmwhTOgtZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm
YzQxZWMwHhcNMjMwMTAxMjAyNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOGVjZjk1N2I4NTkzNTNmYWE5MmQ5NDU5ZWM3ODAxOTQ2Yjg2NjMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzrg9Xe3BHalswyGMh5BAXDHE/psR
hFkR1bJ3EMmTKKUpNR/H83LXmcFp1zoKlhqnIKPlXFX+585ICT06UHhq5VKrtsJI
4Fmm4jGVHCr5iG3/S5blXEAoG+6KZiI8pmb7Ch1CPm/J3RFmzh6ZCxUlOnTlORXl
co0DD7M+KvN1inisVSx77NizMDeD5V12wxBzNRkwCZuHIygrjKsyJN1+cUNuQnCX
ohStE6WiLtzol2K8vTktQ1GKtQKfdDxXCBfdq8G0LlZy6u6lAYzrwr89a3TqM1Ik
ybbeNo5UtAoIrW1JA506e5eVrZXZqCHD5ZIZWB1HYwZgaU13GSgnvZL63QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAjs+Ve4WTU/qpLZRZ7HgBlGuGYxMB8GA1UdIwQY
MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt
NTU1NGQ2ZTE2ODZmLzEvQ096NVY3aFpOVC1xa3RsRm5zZUFHVWE0WmpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm
LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAn5SgMA0G
CSqGSIb3DQEBCwUAA4IBAQCTx0u6KobhoFzPqxiu2ihEz31mWXzUzl8ZDNd2oASy
He4VgJ+mRHSWGSpaXGYER9umOYKYiSqm+wyuQVFw3Qo0fSCu4xJqenV0ZaiFQm3D
0kBjb2MKra6RLEdOGoBpMLB3Kwnv2SFJSoMESRAVuGaMWFhsfLOcSBWjplIMpNrR
6FLyP9nQqMbNCiDwACnHa0pfdNtFWE2/SEhJLmvagOb0fy4troaN04OsjRcT8/+j
Vaaoyl4Bft6/wwc+sb5i3zeZmeGa933YHXvyQ6ooV6o1lesg40xgnQW3dsy2P9y9
i9e+oGVpgBM8uH320EiB+/5C13tElqc+CHj8PY25P4s7
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:38 2024 by rpki-client on console-fra.rpki-client.org