Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/5Zs7tVVZb9djpnEuCDT0WsLQmAE.roa
File: 5Zs7tVVZb9djpnEuCDT0WsLQmAE.roa (raw, json)
Hash identifier: wmo2mrB8Ol+KMPEU/kRA5wBHgklbe57hAKHljTcbhhY=
Subject key identifier: E5:9B:3B:B5:55:59:6F:D7:63:A6:71:2E:08:34:F4:5A:C2:D0:98:01
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018BDEB0F86F3BD9CF6462BD6E2F61BE8883
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/5Zs7tVVZb9djpnEuCDT0WsLQmAE.roa
Signing time: Fri 17 Nov 2023 19:10:21 +0000
ROA not before: Fri 17 Nov 2023 19:10:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 163.5.220.0/24 maxlen: 24
163.5.155.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:de:b0:f8:6f:3b:d9:cf:64:62:bd:6e:2f:61:be:88:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 17 19:10:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e59b3bb555596fd763a6712e0834f45ac2d09801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:27:ac:01:aa:bf:cb:3a:73:26:76:a2:13:0e:
47:c2:e0:a1:58:4e:2b:b8:bd:df:46:44:f1:05:5f:
ce:95:de:93:58:f5:37:9c:e2:00:0c:8a:ce:31:da:
de:8c:31:e5:aa:cc:ad:49:66:94:fc:a7:cc:3a:56:
d2:ea:6d:b9:69:8a:00:bf:2b:21:c6:32:78:46:44:
02:c7:5b:41:95:26:9d:1a:c5:bc:86:ed:15:c3:da:
d8:4b:b6:05:9d:17:85:13:0f:6a:17:63:75:55:55:
be:0c:14:a7:3c:f3:f9:23:cb:f2:e5:0c:50:1c:ab:
ed:79:ae:04:4d:8d:ae:e6:a4:59:ec:85:02:be:b1:
2a:ba:19:70:98:6b:38:8d:d1:d0:67:b2:0f:fe:48:
62:bc:b3:ad:3c:d8:7a:92:35:ab:0d:51:3f:5e:9e:
84:89:99:7d:02:aa:10:3b:b6:81:d5:6d:1b:03:ba:
01:e6:8d:31:3b:14:d6:85:34:5c:3a:2e:8e:00:b3:
12:d2:58:95:ee:c3:f1:e7:77:49:b7:31:e5:da:f5:
42:01:08:1c:43:94:4f:46:cf:b0:a8:e9:2b:e1:42:
c3:84:fa:70:a8:7d:cc:0a:89:a6:b3:7c:a4:3a:11:
05:58:15:e2:c1:01:1e:cf:e1:82:f8:a9:7d:1e:85:
8d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:9B:3B:B5:55:59:6F:D7:63:A6:71:2E:08:34:F4:5A:C2:D0:98:01
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/5Zs7tVVZb9djpnEuCDT0WsLQmAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.155.0/24
163.5.220.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:2e:00:d1:75:d9:63:af:2b:53:06:9d:fe:4d:bb:e2:1b:20:
16:68:9f:60:10:2c:69:2c:c9:64:47:46:ae:dc:2d:9e:88:f0:
bb:93:b2:d4:0e:ee:53:51:0d:77:12:74:fa:ab:29:14:a3:77:
b8:61:56:b3:35:2a:1d:12:fb:54:a2:c5:2d:9c:68:63:1c:a8:
db:93:cc:64:b5:f6:a3:1d:0c:60:9c:f5:fd:fb:49:c0:de:e8:
fd:1a:77:95:2b:5a:d3:3a:aa:2a:2a:6a:a6:34:c6:6b:ee:46:
07:51:ab:8a:05:d5:ae:ca:d4:0b:b7:91:a5:cd:52:29:a9:e5:
88:c4:15:b0:5c:cb:e7:4b:f1:b7:29:de:78:e7:6b:fb:70:ef:
ca:b1:60:4f:68:d4:36:7d:0e:f7:e7:04:75:8b:b4:46:86:ce:
81:d9:e7:af:09:ea:53:30:00:b9:e9:a7:ed:91:4a:0f:67:8b:
34:eb:76:99:a9:80:41:ed:78:c2:86:ff:e9:d4:0f:13:ae:ff:
ab:50:6f:7b:e2:d7:37:04:f1:fe:57:cc:76:b4:ef:fc:d5:7a:
03:a8:a9:e6:97:22:f7:a5:7e:72:45:18:e3:ca:42:80:fe:e9:
4e:05:53:ab:99:b8:f4:e6:e0:46:0d:9a:13:4e:5b:eb:cd:cf:
51:e4:1a:0b
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYvesPhvO9nPZGK9bi9hvoiDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMxMTE3MTkxMDIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTliM2JiNTU1NTk2ZmQ3NjNhNjcxMmUwODM0ZjQ1YWMyZDA5ODAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CesAaq/yzpzJnaiEw5HwuChWE4r
uL3fRkTxBV/Old6TWPU3nOIADIrOMdrejDHlqsytSWaU/KfMOlbS6m25aYoAvysh
xjJ4RkQCx1tBlSadGsW8hu0Vw9rYS7YFnReFEw9qF2N1VVW+DBSnPPP5I8vy5QxQ
HKvtea4ETY2u5qRZ7IUCvrEquhlwmGs4jdHQZ7IP/khivLOtPNh6kjWrDVE/Xp6E
iZl9AqoQO7aB1W0bA7oB5o0xOxTWhTRcOi6OALMS0liV7sPx53dJtzHl2vVCAQgc
Q5RPRs+wqOkr4ULDhPpwqH3MComms3ykOhEFWBXiwQEez+GC+Kl9HoWNrQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOWbO7VVWW/XY6ZxLgg09FrC0JgBMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvNVpzN3RWVlpiOWRqcG5FdUNEVDBXc0xRbUFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAowWbAwQA
owXcMA0GCSqGSIb3DQEBCwUAA4IBAQBeLgDRddljrytTBp3+TbviGyAWaJ9gECxp
LMlkR0au3C2eiPC7k7LUDu5TUQ13EnT6qykUo3e4YVazNSodEvtUosUtnGhjHKjb
k8xktfajHQxgnPX9+0nA3uj9GneVK1rTOqoqKmqmNMZr7kYHUauKBdWuytQLt5Gl
zVIpqeWIxBWwXMvnS/G3Kd5452v7cO/KsWBPaNQ2fQ735wR1i7RGhs6B2eevCepT
MAC56aftkUoPZ4s063aZqYBB7XjChv/p1A8Trv+rUG974tc3BPH+V8x2tO/81XoD
qKnmlyL3pX5yRRjjykKA/ulOBVOrmbj05uBGDZoTTlvrzc9R5BoL
-----END CERTIFICATE-----
Generated at Sat Nov 18 13:21:07 2023 by rpki-client on console-fra.rpki-client.org