Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-4OU0q-AEFDqkF6qhkasl_0LIM0.roa
File: 1-4OU0q-AEFDqkF6qhkasl_0LIM0.roa (raw, json)
Hash identifier: l50RPgF8lQCslVZ30UcU1ldJU0lNh5ea6EWkFemeqcI=
Subject key identifier: FB:83:94:D2:AF:80:10:50:EA:90:5E:AA:86:46:AC:97:FD:0B:20:CD
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01876FAC86E2113CC92E18D94C28720950F8
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-4OU0q-AEFDqkF6qhkasl_0LIM0.roa
Signing time: Tue 11 Apr 2023 09:36:30 +0000
ROA not before: Tue 11 Apr 2023 09:36:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 163.5.67.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6f:ac:86:e2:11:3c:c9:2e:18:d9:4c:28:72:09:50:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Apr 11 09:36:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb8394d2af801050ea905eaa8646ac97fd0b20cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fd:bc:e6:ed:28:ed:6c:69:fd:d5:b4:fd:b5:
67:c6:84:4a:c0:d0:52:99:c5:f4:d9:3f:51:1b:d7:
2a:7b:fd:ea:bd:9b:de:cc:3a:25:47:65:9a:ea:4d:
1e:73:9a:5a:4c:b2:e1:85:1d:1c:ca:ea:8d:c7:58:
e7:c2:87:bd:05:ea:8b:61:22:07:ef:b1:9f:44:16:
1f:74:34:24:18:22:20:54:dd:37:e0:b0:9d:69:c4:
ee:92:5c:9d:1d:14:6f:41:36:6a:ef:9d:a8:53:d4:
60:6f:68:6d:3e:03:d8:03:a5:cd:65:cc:13:5c:29:
ab:f6:8b:1d:9e:92:5a:5d:32:65:43:04:ce:14:01:
99:a1:32:00:e0:ed:f1:78:4f:8e:a2:89:6b:e3:9a:
b4:1c:a6:25:46:f9:94:57:09:ae:ea:f5:a8:0a:13:
b0:58:91:a7:76:6d:dc:6a:f8:a9:95:d8:cf:5a:73:
c9:a0:c3:3f:a7:0d:61:e1:b3:c7:b0:0f:5e:49:01:
6a:0a:e0:95:66:0b:5b:4e:16:9a:7f:f6:a1:43:2d:
3d:31:77:9d:34:c4:e8:26:fd:a0:55:d6:00:f2:0f:
89:86:43:b8:64:52:84:3e:5a:11:ff:91:ab:e7:99:
5e:35:90:97:ff:22:52:f5:3f:ea:ce:c4:a4:2e:58:
a6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:83:94:D2:AF:80:10:50:EA:90:5E:AA:86:46:AC:97:FD:0B:20:CD
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-4OU0q-AEFDqkF6qhkasl_0LIM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.67.0/24
Signature Algorithm: sha256WithRSAEncryption
14:19:ed:52:80:c1:65:2a:3f:df:08:a2:e1:ef:8d:70:bb:50:
b6:03:c9:97:6a:75:8b:4d:97:07:2d:d3:bb:e8:3a:a8:04:64:
c4:94:90:15:11:12:95:a3:a2:1c:97:e7:23:0a:83:84:36:03:
9d:47:a9:cd:5f:52:16:89:60:0b:a5:f8:d9:17:d5:e2:b5:e8:
d8:b3:7f:c1:9f:c7:cf:38:a5:62:a5:be:9e:f1:d6:89:54:5d:
ec:15:e2:03:8a:8a:ad:fb:29:4a:46:f4:38:d9:d9:ab:4a:2c:
c8:68:b9:91:df:11:f1:59:b6:80:16:5a:b4:88:45:a1:26:56:
09:dc:f9:e8:3c:3d:0e:a7:35:34:b5:60:42:a1:49:60:b4:79:
32:f7:0e:f6:7e:b4:29:a2:20:3b:f2:20:3f:e9:08:27:20:0a:
13:91:f3:5f:1b:79:92:d6:b7:21:a4:f6:bd:7f:6d:4a:05:12:
2e:2f:dc:e9:39:a2:aa:b8:89:6f:70:23:f7:3e:0c:a0:29:34:
c7:a8:82:88:43:02:f6:f3:e0:f7:78:93:29:4d:8e:fd:38:2e:
b3:61:6c:83:62:81:ee:d2:2d:94:e2:7a:c9:1e:77:27:e5:83:
9c:72:b0:0b:4e:1b:18:28:61:92:26:2b:c9:21:af:c6:23:f3:
68:ec:9f:8a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYdvrIbiETzJLhjZTChyCVD4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwNDExMDkzNjMwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYjgzOTRkMmFmODAxMDUwZWE5MDVlYWE4NjQ2YWM5N2ZkMGIyMGNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyP285u0o7Wxp/dW0/bVnxoRKwNBS
mcX02T9RG9cqe/3qvZvezDolR2Wa6k0ec5paTLLhhR0cyuqNx1jnwoe9BeqLYSIH
77GfRBYfdDQkGCIgVN034LCdacTuklydHRRvQTZq752oU9Rgb2htPgPYA6XNZcwT
XCmr9osdnpJaXTJlQwTOFAGZoTIA4O3xeE+Ooolr45q0HKYlRvmUVwmu6vWoChOw
WJGndm3cavipldjPWnPJoMM/pw1h4bPHsA9eSQFqCuCVZgtbThaaf/ahQy09MXed
NMToJv2gVdYA8g+JhkO4ZFKEPloR/5Gr55leNZCX/yJS9T/qzsSkLlimMwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPuDlNKvgBBQ6pBeqoZGrJf9CyDNMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvMS00T1UwcS1BRUZEcWtGNnFoa2FzbF8wTElNMC5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMTMvZDAyZGZiLTk2NzMtNDlhOC05NzFjLTlmZTk0MTA4ZmYw
MS8xL0RPaFJ0dDFkTms3aG5nczRJQnMtamZKaVM4cy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKMFQzAN
BgkqhkiG9w0BAQsFAAOCAQEAFBntUoDBZSo/3wii4e+NcLtQtgPJl2p1i02XBy3T
u+g6qARkxJSQFRESlaOiHJfnIwqDhDYDnUepzV9SFolgC6X42RfV4rXo2LN/wZ/H
zzilYqW+nvHWiVRd7BXiA4qKrfspSkb0ONnZq0osyGi5kd8R8Vm2gBZatIhFoSZW
Cdz56Dw9Dqc1NLVgQqFJYLR5MvcO9n60KaIgO/IgP+kIJyAKE5HzXxt5kta3IaT2
vX9tSgUSLi/c6TmiqriJb3Aj9z4MoCk0x6iCiEMC9vPg93iTKU2O/Tgus2Fsg2KB
7tItlOJ6yR53J+WDnHKwC04bGChhkiYrySGvxiPzaOyfig==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:08 2023 by rpki-client on console-ams.rpki-client.org