Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8QRGJcQ_TvcP726fmpABjKA9FyU.roa
File: 8QRGJcQ_TvcP726fmpABjKA9FyU.roa (raw, json)
Hash identifier: HpJwjb18I4CCIZFCuC98TlyOGNEsWa28ZybITx2Oh3Y=
Subject key identifier: F1:04:46:25:C4:3F:4E:F7:0F:EF:6E:9F:9A:90:01:8C:A0:3D:17:25
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018D7E71AD1C580359C1C18549E9C31FF46B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8QRGJcQ_TvcP726fmpABjKA9FyU.roa
Signing time: Tue 06 Feb 2024 12:43:15 +0000
ROA not before: Tue 06 Feb 2024 12:43:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210164
IP address blocks: 163.5.65.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Mar 2024 15:55:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7e:71:ad:1c:58:03:59:c1:c1:85:49:e9:c3:1f:f4:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 6 12:43:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1044625c43f4ef70fef6e9f9a90018ca03d1725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:18:8d:f8:47:6a:8a:93:fa:7f:7c:dc:9e:89:
f1:84:52:7c:3a:d5:b5:52:0a:24:69:7a:69:f6:db:
2e:94:55:c2:06:33:e2:68:47:db:79:0f:fa:d0:90:
02:c7:d3:0b:2f:45:68:b2:ea:fa:5e:7e:50:dd:f2:
42:de:1c:02:0e:76:1f:f3:0b:d1:36:22:c4:7a:02:
6d:5e:67:2f:a3:7d:df:4b:c8:9f:74:2d:97:a2:97:
5b:de:5f:ff:97:3b:66:a9:5b:40:88:bc:57:a5:0d:
bd:3c:6f:0d:7a:c7:4d:cf:ca:5c:d4:f9:aa:f9:15:
a2:82:93:1c:d1:aa:a7:5c:a7:68:f2:19:0f:66:24:
cc:bb:4b:37:14:f3:65:d7:e1:24:0c:c9:71:14:15:
ff:c7:5c:6c:f7:07:cd:87:a2:47:42:38:ce:f5:97:
ee:67:93:87:95:31:f1:3a:4c:3f:6b:68:03:fc:8d:
0d:e2:f4:ed:4e:4d:10:1e:49:3f:f8:24:da:50:fa:
bd:67:80:a8:95:f8:02:7e:8a:2f:b7:70:d4:9a:ff:
b3:3f:9e:aa:db:ef:05:00:e8:5e:e8:49:19:88:9b:
12:90:9c:5f:49:46:46:2a:b9:55:a4:75:33:be:94:
5e:84:90:62:57:b4:29:76:b8:e3:f5:09:b9:05:91:
4a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:04:46:25:C4:3F:4E:F7:0F:EF:6E:9F:9A:90:01:8C:A0:3D:17:25
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8QRGJcQ_TvcP726fmpABjKA9FyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.65.0/24
163.5.73.0/24
163.5.82.0/24
Signature Algorithm: sha256WithRSAEncryption
43:69:2f:76:1e:f5:3d:5f:c7:08:e2:95:df:e6:44:c9:7e:28:
58:28:cb:21:c6:29:eb:00:26:af:e8:dc:09:ca:86:da:ce:65:
3b:7a:34:f1:78:b3:72:6e:c1:fb:0b:6d:8e:b5:ec:ae:00:a0:
93:c0:dd:11:1e:2a:a0:88:16:0c:8f:5f:2e:61:63:b0:b7:e1:
20:bf:23:eb:78:09:a2:49:d8:24:65:0d:a2:90:1c:7b:e0:0a:
3f:a8:01:b3:2a:be:be:29:a6:09:b2:6e:77:20:8c:05:b0:b1:
0d:0d:f0:b5:ab:10:7c:4b:9e:f1:45:8a:c6:90:f1:09:0e:47:
11:fd:23:cd:56:55:b4:6f:db:b3:11:9d:71:c6:3a:8a:73:2a:
6b:11:de:75:bb:1f:ac:0d:67:23:4d:db:11:2a:b2:c0:3c:64:
0f:46:3d:9e:4e:2f:05:7e:45:19:8a:e9:7e:73:15:c4:e3:a6:
80:da:a4:19:53:14:05:d6:b2:f7:d2:0b:48:82:3b:43:18:ad:
7d:14:89:d1:aa:39:ff:9a:db:33:3a:13:bf:06:66:60:43:59:
93:cb:1b:9f:01:d2:93:b7:94:b1:81:8c:80:1e:85:7e:92:e2:
40:63:86:d5:b0:70:cf:53:97:99:9c:e9:73:fb:2b:13:ff:3b:
f8:c5:2a:89
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY1+ca0cWANZwcGFSenDH/RrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwMjA2MTI0MzE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTA0NDYyNWM0M2Y0ZWY3MGZlZjZlOWY5YTkwMDE4Y2EwM2QxNzI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlBiN+EdqipP6f3zcnonxhFJ8OtW1
UgokaXpp9tsulFXCBjPiaEfbeQ/60JACx9MLL0Vosur6Xn5Q3fJC3hwCDnYf8wvR
NiLEegJtXmcvo33fS8ifdC2Xopdb3l//lztmqVtAiLxXpQ29PG8NesdNz8pc1Pmq
+RWigpMc0aqnXKdo8hkPZiTMu0s3FPNl1+EkDMlxFBX/x1xs9wfNh6JHQjjO9Zfu
Z5OHlTHxOkw/a2gD/I0N4vTtTk0QHkk/+CTaUPq9Z4ColfgCfoovt3DUmv+zP56q
2+8FAOhe6EkZiJsSkJxfSUZGKrlVpHUzvpRehJBiV7Qpdrjj9Qm5BZFKgwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFPEERiXEP073D+9un5qQAYygPRclMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvOFFSR0pjUV9UdmNQNzI2Zm1wQUJqS0E5RnlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAowVBAwQA
owVJAwQAowVSMA0GCSqGSIb3DQEBCwUAA4IBAQBDaS92HvU9X8cI4pXf5kTJfihY
KMshxinrACav6NwJyobazmU7ejTxeLNybsH7C22OteyuAKCTwN0RHiqgiBYMj18u
YWOwt+EgvyPreAmiSdgkZQ2ikBx74Ao/qAGzKr6+KaYJsm53IIwFsLENDfC1qxB8
S57xRYrGkPEJDkcR/SPNVlW0b9uzEZ1xxjqKcyprEd51ux+sDWcjTdsRKrLAPGQP
Rj2eTi8FfkUZiul+cxXE46aA2qQZUxQF1rL30gtIgjtDGK19FInRqjn/mtszOhO/
BmZgQ1mTyxufAdKTt5SxgYyAHoV+kuJAY4bVsHDPU5eZnOlz+ysT/zv4xSqJ
-----END CERTIFICATE-----
Generated at Sun Mar 31 17:36:15 2024 by rpki-client on console-ams.rpki-client.org