Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8jIAvYOaGBhmQgVMp7H3uQLot_Q.roa
File: 8jIAvYOaGBhmQgVMp7H3uQLot_Q.roa (raw, json)
Hash identifier: hKewYC9t8ZpSUDaPu4nCvoYvoB6IkD+CKWrHl/Ggy1M=
Subject key identifier: F2:32:00:BD:83:9A:18:18:66:42:05:4C:A7:B1:F7:B9:02:E8:B7:F4
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01857042BBDCF7191042611EE2DC9B5A8A27
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8jIAvYOaGBhmQgVMp7H3uQLot_Q.roa
Signing time: Mon 02 Jan 2023 02:14:59 +0000
ROA not before: Mon 02 Jan 2023 02:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43350
IP address blocks: 163.5.182.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:bb:dc:f7:19:10:42:61:1e:e2:dc:9b:5a:8a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 02:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f23200bd839a18186642054ca7b1f7b902e8b7f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ec:f5:ac:5d:77:c4:45:e4:d0:bc:99:c0:06:
d0:0d:f2:c6:01:da:80:97:a3:8b:5a:5a:38:38:9d:
9e:0d:e3:82:72:30:34:04:a5:90:06:45:23:c7:91:
57:63:b2:00:0b:15:13:90:78:bd:c5:23:5b:4b:2e:
b6:cf:1d:81:9b:6a:5a:e6:96:0a:69:cd:b1:6a:c9:
b4:74:d9:5f:6e:04:12:ca:57:30:b2:91:a6:24:fb:
fe:b8:13:d6:5e:44:12:d8:e4:20:cf:38:9d:03:26:
6a:be:32:ba:5c:f1:0e:cd:af:62:be:83:bf:9b:d9:
8c:40:7d:87:3a:b5:3d:b6:fc:ca:00:36:1d:ee:9d:
2c:9a:57:18:f5:39:5f:34:7a:05:cc:7b:73:b7:dd:
db:33:21:2d:08:c9:11:77:7c:fe:2f:11:d0:56:7d:
75:e5:b6:b9:8b:73:78:97:b4:41:2d:8a:62:7c:b3:
d2:6c:f8:5d:58:c7:2d:af:41:13:e4:de:f5:54:24:
44:3f:04:a9:68:63:50:58:9c:68:c3:ff:58:0f:00:
69:69:80:45:83:ef:e9:c3:17:6e:11:1c:c0:c1:6c:
96:27:f2:0c:be:23:d4:88:e7:4c:ac:bf:60:d6:64:
ee:d4:34:d7:76:09:33:8f:e5:d2:23:d6:61:a6:a5:
bd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:32:00:BD:83:9A:18:18:66:42:05:4C:A7:B1:F7:B9:02:E8:B7:F4
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8jIAvYOaGBhmQgVMp7H3uQLot_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.182.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:7f:90:bd:a4:4d:3d:9d:a6:85:03:47:52:62:79:b1:3c:1a:
c7:62:0a:37:c1:d3:eb:a0:8d:87:70:47:70:ac:21:79:46:04:
e9:28:d0:49:42:39:5a:be:97:a2:a0:09:ba:a3:32:94:51:4f:
92:20:ca:65:0e:35:7c:60:ef:39:01:4f:da:b8:cf:7a:19:f9:
71:57:6c:89:14:04:85:d8:22:5a:2c:8a:5b:d1:6c:57:f8:6b:
53:7e:b0:03:37:27:a8:f9:55:d4:e2:1f:a3:ba:4d:52:3d:31:
ac:9e:44:e6:d3:bd:22:9b:c8:42:40:bd:4b:24:08:fb:33:98:
b6:87:c1:7d:2e:00:0f:33:7e:cd:db:51:91:f5:0a:42:9f:e0:
e4:98:a1:eb:fd:ef:17:67:e1:30:51:fe:c7:22:ad:ac:19:d4:
01:08:06:36:1f:ce:97:8e:6e:e5:db:17:ac:70:2b:0e:74:8a:
6a:0e:52:19:c3:aa:b9:0d:bb:96:76:3b:bf:2b:c0:04:37:b9:
6b:8f:93:35:7f:68:db:76:65:8a:d4:b6:ff:9d:68:99:c4:cc:
57:70:1d:1f:c7:4f:35:a0:3c:35:70:41:f5:5a:57:18:dd:00:
7a:2f:79:cf:a1:33:65:63:a3:10:b5:17:3e:e5:10:6e:f1:7a:
28:b5:4e:6b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwQrvc9xkQQmEe4tybWoonMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwMTAyMDIxNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjMyMDBiZDgzOWExODE4NjY0MjA1NGNhN2IxZjdiOTAyZThiN2Y0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+z1rF13xEXk0LyZwAbQDfLGAdqA
l6OLWlo4OJ2eDeOCcjA0BKWQBkUjx5FXY7IACxUTkHi9xSNbSy62zx2Bm2pa5pYK
ac2xasm0dNlfbgQSylcwspGmJPv+uBPWXkQS2OQgzzidAyZqvjK6XPEOza9ivoO/
m9mMQH2HOrU9tvzKADYd7p0smlcY9TlfNHoFzHtzt93bMyEtCMkRd3z+LxHQVn11
5ba5i3N4l7RBLYpifLPSbPhdWMctr0ET5N71VCREPwSpaGNQWJxow/9YDwBpaYBF
g+/pwxduERzAwWyWJ/IMviPUiOdMrL9g1mTu1DTXdgkzj+XSI9ZhpqW9gwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPIyAL2DmhgYZkIFTKex97kC6Lf0MB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvOGpJQXZZT2FHQmhtUWdWTXA3SDN1UUxvdF9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowW2MA0G
CSqGSIb3DQEBCwUAA4IBAQCzf5C9pE09naaFA0dSYnmxPBrHYgo3wdProI2HcEdw
rCF5RgTpKNBJQjlavpeioAm6ozKUUU+SIMplDjV8YO85AU/auM96GflxV2yJFASF
2CJaLIpb0WxX+GtTfrADNyeo+VXU4h+juk1SPTGsnkTm070im8hCQL1LJAj7M5i2
h8F9LgAPM37N21GR9QpCn+DkmKHr/e8XZ+EwUf7HIq2sGdQBCAY2H86Xjm7l2xes
cCsOdIpqDlIZw6q5DbuWdju/K8AEN7lrj5M1f2jbdmWK1Lb/nWiZxMxXcB0fx081
oDw1cEH1WlcY3QB6L3nPoTNlY6MQtRc+5RBu8XootU5r
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:19 2024 by rpki-client on console-fra.rpki-client.org