Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-pTol4Rf8cUUc-AszjOjIXV1J1E.roa
File: 1-pTol4Rf8cUUc-AszjOjIXV1J1E.roa (raw, json)
Hash identifier: +5yC/TG3Gw7IlxS61SOua0Ts5RZIXeGpvwJ1N/uH3QA=
Subject key identifier: FA:94:E8:97:84:5F:F1:C5:14:73:E0:2C:CE:33:A3:21:75:75:27:51
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B96C94AEBF37F20CEC8A2FFF7E71E35AF
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-pTol4Rf8cUUc-AszjOjIXV1J1E.roa
Signing time: Fri 03 Nov 2023 20:04:16 +0000
ROA not before: Fri 03 Nov 2023 20:04:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216075
IP address blocks: 163.5.242.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:96:c9:4a:eb:f3:7f:20:ce:c8:a2:ff:f7:e7:1e:35:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 3 20:04:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa94e897845ff1c51473e02cce33a32175752751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:cd:2d:6f:70:f6:a9:e4:f6:f3:9a:f4:6c:16:
76:62:50:86:75:72:79:16:e1:93:ed:6f:c8:39:ed:
55:7f:cd:65:c5:66:ed:3b:5b:7a:d3:e1:1c:a6:62:
a9:6d:3d:40:4b:ff:cf:99:da:bf:b3:0b:2e:a6:84:
7d:46:99:2a:9b:df:b5:94:4b:97:15:f6:7f:ca:58:
22:ad:27:fc:66:8a:75:60:b9:db:ec:3a:19:5b:00:
d8:75:6b:c5:d9:a9:20:72:c9:11:d0:be:b0:87:67:
42:f8:5d:52:ae:6c:c9:40:74:60:17:1f:a2:91:0b:
56:20:3a:7c:05:3d:15:1c:41:65:2d:44:6d:ff:82:
6b:43:e8:68:63:f0:66:3c:22:f3:28:e3:27:9f:66:
ce:fd:7b:ea:89:ae:b2:74:2e:b1:1f:d1:24:fb:4c:
6e:d3:61:c8:db:a3:f6:04:d3:15:6a:6a:b8:e5:40:
99:48:f4:4c:ef:6e:28:26:b3:40:6a:21:dd:15:ec:
be:78:58:5d:7d:19:0e:88:f0:41:d2:ac:0a:a2:4f:
5c:b5:e9:31:45:3f:d3:12:cf:28:37:42:f1:bc:19:
e0:ec:ac:0e:59:92:3d:1f:e5:db:b9:ac:d7:7b:88:
6d:e5:d8:d7:46:7d:9f:7c:dd:1c:9f:8d:a1:27:c1:
de:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:94:E8:97:84:5F:F1:C5:14:73:E0:2C:CE:33:A3:21:75:75:27:51
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-pTol4Rf8cUUc-AszjOjIXV1J1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.242.0/24
Signature Algorithm: sha256WithRSAEncryption
62:b7:52:94:c4:0b:42:78:2c:2c:5d:d4:ef:ad:3f:8d:21:e9:
34:18:fc:55:6b:1b:2a:16:fb:53:ff:e5:b1:16:a6:c2:9e:eb:
ab:9b:8d:d4:8d:93:3f:bc:0b:1e:30:71:d4:bf:76:f6:eb:2f:
5a:d5:45:fc:ac:be:80:32:f3:3a:17:63:68:eb:46:c5:db:d8:
f3:f6:ba:c8:03:ad:69:be:b9:93:d2:ed:1e:62:62:81:00:06:
66:59:e9:0b:96:97:20:01:25:e7:d0:9b:95:2e:71:f1:e4:95:
c6:91:4b:30:d1:12:dd:2b:34:13:62:a9:1f:01:8c:7d:51:33:
b7:83:8d:de:08:79:5b:5d:1a:5d:69:d0:f9:d0:57:b6:63:6e:
12:cf:4b:0e:cd:11:b7:62:7e:d7:c5:b3:a6:3a:65:63:34:90:
94:5c:e8:af:ab:31:c4:de:e1:8c:50:bd:ca:45:82:f5:40:f4:
95:1e:1a:51:e0:44:fe:34:b7:ac:b1:42:3c:e5:91:c3:eb:91:
b3:57:f2:16:95:60:7d:72:97:a4:5d:9f:de:87:a7:68:78:a4:
fb:c5:af:ed:97:ea:a5:74:55:cc:30:b5:07:6f:1f:50:09:60:
e1:85:d2:ec:b4:5c:fe:ac:56:04:1d:3b:40:48:82:b6:e2:1f:
52:09:2c:9e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYuWyUrr838gzsii//fnHjWvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMxMTAzMjAwNDE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYTk0ZTg5Nzg0NWZmMWM1MTQ3M2UwMmNjZTMzYTMyMTc1NzUyNzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjc0tb3D2qeT285r0bBZ2YlCGdXJ5
FuGT7W/IOe1Vf81lxWbtO1t60+EcpmKpbT1AS//Pmdq/swsupoR9Rpkqm9+1lEuX
FfZ/ylgirSf8Zop1YLnb7DoZWwDYdWvF2akgcskR0L6wh2dC+F1SrmzJQHRgFx+i
kQtWIDp8BT0VHEFlLURt/4JrQ+hoY/BmPCLzKOMnn2bO/Xvqia6ydC6xH9Ek+0xu
02HI26P2BNMVamq45UCZSPRM724oJrNAaiHdFey+eFhdfRkOiPBB0qwKok9ctekx
RT/TEs8oN0LxvBng7KwOWZI9H+XbuazXe4ht5djXRn2ffN0cn42hJ8HeIwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPqU6JeEX/HFFHPgLM4zoyF1dSdRMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvMS1wVG9sNFJmOGNVVWMtQXN6ak9qSVhWMUoxRS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMTMvZDAyZGZiLTk2NzMtNDlhOC05NzFjLTlmZTk0MTA4ZmYw
MS8xL0RPaFJ0dDFkTms3aG5nczRJQnMtamZKaVM4cy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKMF8jAN
BgkqhkiG9w0BAQsFAAOCAQEAYrdSlMQLQngsLF3U760/jSHpNBj8VWsbKhb7U//l
sRamwp7rq5uN1I2TP7wLHjBx1L929usvWtVF/Ky+gDLzOhdjaOtGxdvY8/a6yAOt
ab65k9LtHmJigQAGZlnpC5aXIAEl59CblS5x8eSVxpFLMNES3Ss0E2KpHwGMfVEz
t4ON3gh5W10aXWnQ+dBXtmNuEs9LDs0Rt2J+18WzpjplYzSQlFzor6sxxN7hjFC9
ykWC9UD0lR4aUeBE/jS3rLFCPOWRw+uRs1fyFpVgfXKXpF2f3oenaHik+8Wv7Zfq
pXRVzDC1B28fUAlg4YXS7LRc/qxWBB07QEiCtuIfUgksng==
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:18 2024 by rpki-client on console-fra.rpki-client.org