Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3yFGjNu74TNWEZszskO8njbdefI.roa
File: 3yFGjNu74TNWEZszskO8njbdefI.roa (raw, json)
Hash identifier: 0IzKzIObAYy+2MG4pALjHxgbGdB8I2aVqK+LgP0Zalo=
Subject key identifier: DF:21:46:8C:DB:BB:E1:33:56:11:9B:33:B2:43:BC:9E:36:DD:79:F2
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018AED3928A13B1B80CFEAB44FA987DD13D2
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3yFGjNu74TNWEZszskO8njbdefI.roa
Signing time: Sun 01 Oct 2023 21:51:00 +0000
ROA not before: Sun 01 Oct 2023 21:51:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 163.5.137.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ed:39:28:a1:3b:1b:80:cf:ea:b4:4f:a9:87:dd:13:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 1 21:51:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df21468cdbbbe13356119b33b243bc9e36dd79f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:13:f4:3e:82:e7:d2:03:b5:1c:f3:a8:53:da:
85:26:04:4a:72:9e:f1:69:08:74:7e:e3:2f:40:4f:
0e:ac:71:a0:88:21:13:06:67:eb:bb:5f:9d:82:c6:
52:21:d6:f1:50:c0:f3:1c:62:71:56:97:85:52:6c:
a5:e6:32:25:ce:98:50:43:45:41:c8:2d:5d:13:c3:
68:6d:12:34:d3:02:10:e0:ff:92:bb:29:8e:77:10:
ee:d6:fd:55:9d:9e:6d:a7:9e:4c:b3:63:c8:a1:ec:
42:bb:b9:90:c9:03:ad:6c:d7:8f:96:ac:bf:d6:f3:
58:96:53:2f:c6:8c:fa:a0:6b:40:ea:85:14:07:a2:
4c:47:ef:cf:bd:85:c5:ea:15:96:1a:88:d8:04:2d:
3d:cf:d3:f3:11:bf:49:6b:f7:4e:87:a4:e7:a8:df:
e5:10:08:e2:0a:d2:3e:3c:f0:7b:e9:79:7c:3d:c9:
e3:b4:79:08:ba:82:17:b0:d1:20:99:74:2c:18:fc:
cc:e9:bf:9b:64:2a:ef:fe:81:18:6f:d4:32:69:09:
71:96:ac:3b:92:1a:37:e0:e7:6e:81:ee:c6:8e:e3:
e2:af:31:b5:95:72:b3:53:92:d3:95:f9:4a:f3:ed:
e4:c0:0f:73:c4:d7:43:b0:89:64:9e:61:d3:70:bb:
1c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:21:46:8C:DB:BB:E1:33:56:11:9B:33:B2:43:BC:9E:36:DD:79:F2
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/3yFGjNu74TNWEZszskO8njbdefI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.137.0/24
Signature Algorithm: sha256WithRSAEncryption
32:d5:c5:fb:c2:ed:2d:77:b9:66:61:63:db:e5:34:84:8f:ba:
82:aa:7b:0f:4b:a9:54:79:92:6c:ff:3e:c1:f0:ba:79:70:14:
08:6c:55:ee:93:f6:c6:c5:25:fd:20:19:dd:b0:b7:93:fa:79:
1a:b3:90:33:65:2f:59:aa:ae:5a:33:69:d5:c1:1e:2e:04:a0:
4c:2f:8f:1f:6a:12:cc:76:1e:25:ec:de:1e:b1:5b:da:3a:e1:
a1:81:39:a8:f7:e7:bb:5a:fe:6b:a1:ff:45:b0:90:23:be:7c:
61:a0:a0:1a:7b:12:9c:b3:ed:ae:e5:f9:f4:3b:e8:25:d6:78:
65:74:f8:13:c3:85:89:e8:c4:6a:54:1b:0d:ec:58:06:05:2e:
76:06:0f:fa:50:cc:f2:41:6c:db:da:3a:7f:f3:6b:43:e4:69:
40:56:18:c7:f1:49:c6:f6:c7:5d:1e:fa:81:4c:89:02:06:ff:
96:67:1b:f2:b4:bf:ab:d8:1a:e4:de:47:c1:a8:02:ae:74:03:
34:ea:a3:82:1e:5f:8b:0a:ed:c5:ba:f4:be:71:d8:15:c2:dc:
47:cc:fa:08:51:a9:b1:ca:ef:6d:86:fe:62:8f:ed:5d:5e:81:
39:07:f8:8b:4c:f1:22:49:e8:cd:fb:98:64:17:b7:c2:1a:c5:
37:96:b0:60
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrtOSihOxuAz+q0T6mH3RPSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMxMDAxMjE1MTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjIxNDY4Y2RiYmJlMTMzNTYxMTliMzNiMjQzYmM5ZTM2ZGQ3OWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnxP0PoLn0gO1HPOoU9qFJgRKcp7x
aQh0fuMvQE8OrHGgiCETBmfru1+dgsZSIdbxUMDzHGJxVpeFUmyl5jIlzphQQ0VB
yC1dE8NobRI00wIQ4P+SuymOdxDu1v1VnZ5tp55Ms2PIoexCu7mQyQOtbNePlqy/
1vNYllMvxoz6oGtA6oUUB6JMR+/PvYXF6hWWGojYBC09z9PzEb9Ja/dOh6TnqN/l
EAjiCtI+PPB76Xl8PcnjtHkIuoIXsNEgmXQsGPzM6b+bZCrv/oEYb9QyaQlxlqw7
kho34Oduge7GjuPirzG1lXKzU5LTlflK8+3kwA9zxNdDsIlknmHTcLscjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN8hRozbu+EzVhGbM7JDvJ423XnyMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvM3lGR2pOdTc0VE5XRVpzenNrTzhuamJkZWZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowWJMA0G
CSqGSIb3DQEBCwUAA4IBAQAy1cX7wu0td7lmYWPb5TSEj7qCqnsPS6lUeZJs/z7B
8Lp5cBQIbFXuk/bGxSX9IBndsLeT+nkas5AzZS9Zqq5aM2nVwR4uBKBML48fahLM
dh4l7N4esVvaOuGhgTmo9+e7Wv5rof9FsJAjvnxhoKAaexKcs+2u5fn0O+gl1nhl
dPgTw4WJ6MRqVBsN7FgGBS52Bg/6UMzyQWzb2jp/82tD5GlAVhjH8UnG9sddHvqB
TIkCBv+WZxvytL+r2Brk3kfBqAKudAM06qOCHl+LCu3FuvS+cdgVwtxHzPoIUamx
yu9thv5ij+1dXoE5B/iLTPEiSejN+5hkF7fCGsU3lrBg
-----END CERTIFICATE-----
Generated at Fri Oct 27 06:16:28 2023 by rpki-client on console-fra.rpki-client.org