Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/FokvUCaEN67ovwOHLNEap-vtrFk.roa
File: FokvUCaEN67ovwOHLNEap-vtrFk.roa (raw, json)
Hash identifier: o/Uf1l5go94mCxpNi+hrOPPhAHGSUlDoVDVTV5Kgz5I=
Subject key identifier: 16:89:2F:50:26:84:37:AE:E8:BF:03:87:2C:D1:1A:A7:EB:ED:AC:59
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018870F4646CF764F0FB43D9CB0440F74C8A
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/FokvUCaEN67ovwOHLNEap-vtrFk.roa
Signing time: Wed 31 May 2023 08:37:24 +0000
ROA not before: Wed 31 May 2023 08:37:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 163.5.71.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.229.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.38.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.60.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.187.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:70:f4:64:6c:f7:64:f0:fb:43:d9:cb:04:40:f7:4c:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 31 08:37:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16892f50268437aee8bf03872cd11aa7ebedac59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ac:04:2c:61:14:53:ad:97:04:89:5e:89:99:
eb:93:ef:15:00:7e:65:e9:d5:cf:cc:b9:72:b8:1b:
03:fc:87:d4:42:df:9f:b0:2f:fe:49:69:94:92:87:
22:fc:64:c6:81:e0:ab:a1:cc:78:69:c7:22:37:96:
6c:a6:df:ca:0d:e4:64:fb:6f:64:78:9b:6d:40:1f:
ae:5c:3f:7d:61:de:78:8d:69:3c:41:33:cf:3a:71:
56:9d:a2:e3:35:c3:6a:7e:7a:5b:0c:20:a0:f3:c2:
11:c0:9d:e0:76:f5:79:66:4e:6b:b2:2d:e3:e2:90:
6e:5e:8e:ea:1b:43:21:f6:00:66:fe:72:67:23:05:
d1:50:f5:a6:e0:e9:90:39:54:53:40:0a:a8:d1:67:
9e:7f:35:7b:13:f2:83:68:c2:2f:3c:3d:b3:ae:f4:
b4:c2:32:0f:a5:5f:40:4f:ed:10:89:6d:6c:39:98:
65:9c:eb:f8:d4:12:63:81:6a:0f:ac:75:6d:0e:97:
46:0e:66:b9:98:df:ee:64:97:b3:87:b6:3a:b6:8d:
63:ce:97:c3:8a:2d:43:02:37:d4:89:16:50:1e:62:
79:d5:41:ee:85:62:4e:5b:bf:1b:a9:2e:2e:fc:53:
87:2b:8b:1d:44:25:e0:b2:58:26:0c:9a:39:ef:56:
21:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:89:2F:50:26:84:37:AE:E8:BF:03:87:2C:D1:1A:A7:EB:ED:AC:59
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/FokvUCaEN67ovwOHLNEap-vtrFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.38.0/23
163.5.60.0/24
163.5.71.0/24
163.5.93.0/24
163.5.101.0-163.5.102.255
163.5.108.0/23
163.5.116.0/24
163.5.131.0/24
163.5.134.0/24
163.5.171.0/24
163.5.174.0/24
163.5.187.0/24
163.5.189.0/24
163.5.192.0/24
163.5.225.0/24
163.5.228.0/23
163.5.240.0/24
163.5.246.0/24
163.5.249.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:cf:d2:38:8e:75:40:24:d9:a6:fd:fe:b9:43:94:1c:c5:72:
54:3a:00:e0:d3:33:3e:cb:98:e2:76:bb:10:9c:3e:0d:dd:ba:
d4:82:1d:2c:03:7e:93:0d:2a:fb:8a:1c:6a:5d:33:25:4b:f4:
c5:7d:73:6e:3c:d8:b2:09:81:a2:0b:c7:cc:a5:1d:68:ce:82:
c7:46:2f:91:f2:7d:25:f4:89:c4:92:37:d9:53:d4:a5:eb:37:
37:7d:67:37:ae:44:45:a1:79:b8:a4:72:ef:af:2b:06:bc:bb:
c4:fd:d0:e6:52:94:24:8e:07:6c:ab:87:6f:aa:ce:f9:bb:5d:
fb:14:29:69:9c:82:79:b0:ee:15:43:b3:05:27:6f:6a:18:72:
e1:b5:71:f1:01:4b:76:b9:34:29:cd:c9:a9:c1:2e:41:14:01:
b3:9b:57:90:ea:78:c3:e6:15:f7:cd:34:7a:71:dc:67:a5:1c:
c7:1b:f4:11:30:90:ec:3b:1b:6e:36:ad:88:6f:bb:f3:4c:a5:
55:d3:2c:23:95:db:47:b6:40:41:b2:55:65:e7:f3:73:4c:27:
aa:44:cf:92:9f:3a:63:20:66:f3:87:15:87:1d:11:15:12:50:
95:b4:a5:f6:80:98:96:94:70:7d:1e:99:da:a4:66:a6:54:55:
96:63:9c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:20 2023 by rpki-client on console-fra.rpki-client.org