Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4bAgn6Jum8CiTN1NZKzUGh7dNy4.roa
File: 4bAgn6Jum8CiTN1NZKzUGh7dNy4.roa (raw, json)
Hash identifier: Er10nmylsnxqNTz/sHE3dWRWh5nOywxcmztJe+b6Ejk=
Subject key identifier: E1:B0:20:9F:A2:6E:9B:C0:A2:4C:DD:4D:64:AC:D4:1A:1E:DD:37:2E
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018964E98551B376466F60CCB08073041D06
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4bAgn6Jum8CiTN1NZKzUGh7dNy4.roa
Signing time: Mon 17 Jul 2023 17:32:52 +0000
ROA not before: Mon 17 Jul 2023 17:32:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204372
IP address blocks: 163.5.99.0/24 maxlen: 24
163.5.230.0/24 maxlen: 24
163.5.31.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.202.0/24 maxlen: 24
163.5.210.0/24 maxlen: 24
163.5.211.0/24 maxlen: 24
163.5.216.0/24 maxlen: 24
163.5.226.0/24 maxlen: 24
163.5.221.0/24 maxlen: 24
163.5.127.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:e9:85:51:b3:76:46:6f:60:cc:b0:80:73:04:1d:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 17 17:32:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1b0209fa26e9bc0a24cdd4d64acd41a1edd372e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ea:7d:90:1e:c6:af:f4:7c:2d:21:16:f1:1b:
14:39:e7:20:70:43:ae:a6:7c:a0:74:23:fb:17:98:
ce:4e:69:16:13:05:c0:c5:b2:b4:ff:fe:d4:b9:0d:
f0:62:63:9a:be:c8:c6:f3:ab:d5:1e:a5:39:cb:ac:
c4:6d:c6:54:d2:a9:92:79:3a:ce:ea:93:50:5b:53:
1e:30:a8:ae:70:f2:8d:5a:21:dd:b7:83:3d:cd:85:
7a:98:07:85:1f:eb:32:14:46:36:2b:60:bc:a8:56:
57:e1:57:c9:74:09:4d:d9:48:77:f3:65:ad:bf:68:
75:68:a5:41:0b:b9:09:4f:5f:e8:24:4a:4b:42:d8:
b5:ef:54:7f:c0:2b:75:10:6f:4a:2b:ff:67:c2:b6:
c5:d9:1c:98:07:27:fe:07:7d:bf:8c:b7:5f:86:28:
34:9a:f2:36:64:d6:bc:66:eb:8c:64:79:63:f0:e7:
44:24:fc:b9:3d:fc:41:5f:07:d8:ee:36:0c:54:94:
b1:7f:77:98:bb:9c:1b:5f:4d:21:39:71:98:39:5f:
fb:02:24:db:53:4c:e4:52:b4:07:32:f9:f3:7b:76:
85:5e:11:eb:ac:09:4e:4a:f3:2a:8c:9e:9a:cf:a9:
df:61:fa:be:6f:4c:25:75:34:9d:ec:b5:ec:7e:60:
14:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B0:20:9F:A2:6E:9B:C0:A2:4C:DD:4D:64:AC:D4:1A:1E:DD:37:2E
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4bAgn6Jum8CiTN1NZKzUGh7dNy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.31.0/24
163.5.35.0/24
163.5.62.0/24
163.5.99.0/24
163.5.127.0/24
163.5.136.0/24
163.5.138.0/24
163.5.161.0/24
163.5.202.0/24
163.5.210.0/23
163.5.216.0/24
163.5.221.0/24
163.5.226.0/24
163.5.230.0/24
Signature Algorithm: sha256WithRSAEncryption
75:3e:d6:b3:02:56:08:14:6c:d0:45:90:d4:ea:da:31:09:61:
36:1c:35:84:db:fb:82:2b:1f:94:eb:dd:b9:71:71:0f:48:cd:
06:c0:89:55:4b:d0:0a:d6:20:77:5b:4f:75:c9:51:7e:af:09:
db:0c:b1:80:63:0b:66:9b:01:0c:2c:42:bd:21:e4:3a:93:34:
26:34:1d:a3:9a:aa:90:f1:95:ea:07:ea:14:a2:24:b9:ca:45:
ba:0f:65:58:08:dd:6d:b4:37:15:f4:a2:ac:bf:e0:64:04:dc:
a9:cc:e0:cb:7b:72:64:0b:61:3e:33:09:52:e0:37:96:18:83:
5b:69:3e:86:0b:8c:58:2e:2a:9e:60:3a:d5:4d:08:95:8b:f4:
ad:06:4c:b9:32:73:7f:0e:2c:2a:1e:fa:4d:28:84:2b:40:55:
2c:92:a5:53:43:ca:ed:55:11:2e:54:04:03:16:00:06:2c:40:
e7:54:00:a5:0c:4b:fd:94:f4:20:3b:a3:15:37:05:83:6b:6b:
68:91:3c:18:a7:85:00:bb:52:26:4b:84:ff:59:31:d6:65:b4:
60:12:d7:17:8e:cd:90:15:1d:7d:b6:5e:b9:b2:5e:7c:2c:10:
d4:f3:66:d3:fe:a4:36:6d:22:f4:61:61:fb:09:05:f7:55:e9:
d8:a3:40:15
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAYlk6YVRs3ZGb2DMsIBzBB0GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwNzE3MTczMjUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMWIwMjA5ZmEyNmU5YmMwYTI0Y2RkNGQ2NGFjZDQxYTFlZGQzNzJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApup9kB7Gr/R8LSEW8RsUOecgcEOu
pnygdCP7F5jOTmkWEwXAxbK0//7UuQ3wYmOavsjG86vVHqU5y6zEbcZU0qmSeTrO
6pNQW1MeMKiucPKNWiHdt4M9zYV6mAeFH+syFEY2K2C8qFZX4VfJdAlN2Uh382Wt
v2h1aKVBC7kJT1/oJEpLQti171R/wCt1EG9KK/9nwrbF2RyYByf+B32/jLdfhig0
mvI2ZNa8ZuuMZHlj8OdEJPy5PfxBXwfY7jYMVJSxf3eYu5wbX00hOXGYOV/7AiTb
U0zkUrQHMvnze3aFXhHrrAlOSvMqjJ6az6nfYfq+b0wldTSd7LXsfmAUkQIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFOGwIJ+ibpvAokzdTWSs1Boe3TcuMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvNGJBZ242SnVtOENpVE4xTlpLelVHaDdkTnk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQAowUfAwQA
owUjAwQAowU+AwQAowVjAwQAowV/AwQAowWIAwQAowWKAwQAowWhAwQAowXKAwQB
owXSAwQAowXYAwQAowXdAwQAowXiAwQAowXmMA0GCSqGSIb3DQEBCwUAA4IBAQB1
PtazAlYIFGzQRZDU6toxCWE2HDWE2/uCKx+U6925cXEPSM0GwIlVS9AK1iB3W091
yVF+rwnbDLGAYwtmmwEMLEK9IeQ6kzQmNB2jmqqQ8ZXqB+oUoiS5ykW6D2VYCN1t
tDcV9KKsv+BkBNypzODLe3JkC2E+MwlS4DeWGINbaT6GC4xYLiqeYDrVTQiVi/St
Bky5MnN/DiwqHvpNKIQrQFUskqVTQ8rtVREuVAQDFgAGLEDnVAClDEv9lPQgO6MV
NwWDa2tokTwYp4UAu1ImS4T/WTHWZbRgEtcXjs2QFR19tl65sl58LBDU82bT/qQ2
bSL0YWH7CQX3VenYo0AV
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:19 2023 by rpki-client on console-fra.rpki-client.org