Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GIuwhmdB_PYOXIrwQI7Dyqasw0o.roa
File: GIuwhmdB_PYOXIrwQI7Dyqasw0o.roa (raw, json)
Hash identifier: r4yEUA8jJjF0fkvYj4HX4Wy8BmKUFa6PdX5Yd0Raw0U=
Subject key identifier: 18:8B:B0:86:67:41:FC:F6:0E:5C:8A:F0:40:8E:C3:CA:A6:AC:C3:4A
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01899BE64522BF0D29BA5D627976594BF80B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GIuwhmdB_PYOXIrwQI7Dyqasw0o.roa
Signing time: Fri 28 Jul 2023 09:48:26 +0000
ROA not before: Fri 28 Jul 2023 09:48:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399448
IP address blocks: 163.5.158.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:e6:45:22:bf:0d:29:ba:5d:62:79:76:59:4b:f8:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 28 09:48:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=188bb0866741fcf60e5c8af0408ec3caa6acc34a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:30:c5:c5:48:be:3c:48:dc:53:ab:4c:7f:00:
c9:07:d5:9e:1b:65:b1:5f:15:f7:d2:f4:f7:64:51:
d6:f3:5e:dc:fa:e6:de:18:8c:65:ba:07:0b:04:eb:
48:40:1d:a6:2a:4b:59:28:9d:b1:a4:f6:a6:65:d6:
74:fb:2f:78:1a:db:da:9a:28:c0:8d:b2:26:d7:a5:
8a:49:6e:5a:63:74:17:a3:71:02:b6:ee:f8:76:de:
92:09:ab:a9:15:40:24:67:c1:20:15:89:55:1c:ac:
cb:58:90:9d:eb:f0:b1:13:0b:e5:c5:46:69:6a:ec:
a0:51:5f:de:25:44:23:45:f5:91:2e:26:10:18:69:
4e:a7:a1:4d:bb:16:a7:f9:b6:45:8e:48:8f:da:6d:
42:d8:b1:a3:0f:fb:ac:7a:4a:e3:8b:ef:b9:07:bf:
eb:d2:1d:d9:b0:08:47:f8:9f:65:55:5b:79:85:78:
fa:04:52:cf:f9:ae:15:17:5d:56:96:2f:8d:3b:04:
f4:b7:22:3f:6f:8b:89:92:65:13:0a:10:c1:9e:84:
a1:b7:ab:8a:61:b4:42:af:30:e8:84:64:78:0e:96:
34:33:ab:29:b1:bf:93:dc:11:b1:ad:3c:dd:bc:0a:
f6:9b:14:3f:9a:44:30:ea:e7:cb:66:ff:b5:a0:c2:
87:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:8B:B0:86:67:41:FC:F6:0E:5C:8A:F0:40:8E:C3:CA:A6:AC:C3:4A
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GIuwhmdB_PYOXIrwQI7Dyqasw0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.158.0/24
Signature Algorithm: sha256WithRSAEncryption
01:0f:54:6d:7c:a6:ed:00:f7:2d:3f:86:93:1c:5f:8a:d7:70:
48:30:92:56:78:65:ec:db:b1:33:e3:8e:25:0a:ca:07:52:75:
21:4b:6c:b1:b0:fe:ef:27:00:7a:d3:e0:11:0c:4c:3b:ab:ec:
3b:e5:3d:d6:a6:5d:12:0c:b2:56:c4:31:7a:bb:92:c5:3c:b0:
11:98:14:59:aa:db:53:28:c7:db:e2:02:0a:e4:95:0e:1e:29:
4c:28:1a:04:55:de:32:84:8d:45:77:3d:69:97:5c:30:71:75:
e6:b1:d2:28:b7:0c:0c:f7:32:3c:77:02:8e:32:47:fc:dc:dd:
47:cd:6d:29:e2:ee:d3:23:6c:7d:0b:a5:0a:c4:8f:9f:e5:0d:
b3:f5:55:21:3a:5c:d3:21:44:f6:7a:46:5e:57:c7:21:13:75:
9d:2a:0a:65:75:55:93:19:d7:f8:09:cb:91:f9:51:57:37:24:
64:be:bf:3c:dd:38:72:43:6c:be:1a:70:d2:83:b3:d4:62:6e:
6f:6b:5b:55:d0:cb:1b:aa:85:07:33:37:61:14:82:f3:58:2c:
84:87:9a:97:64:17:fe:67:96:0c:c7:48:71:35:c4:5b:8f:e3:
8f:fa:b1:a2:bf:df:3b:f5:70:e9:fa:df:0b:ca:c4:ce:bf:88:
44:32:8a:f6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmb5kUivw0pul1ieXZZS/gLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwNzI4MDk0ODI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODhiYjA4NjY3NDFmY2Y2MGU1YzhhZjA0MDhlYzNjYWE2YWNjMzRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiDDFxUi+PEjcU6tMfwDJB9WeG2Wx
XxX30vT3ZFHW817c+ubeGIxlugcLBOtIQB2mKktZKJ2xpPamZdZ0+y94GtvamijA
jbIm16WKSW5aY3QXo3ECtu74dt6SCaupFUAkZ8EgFYlVHKzLWJCd6/CxEwvlxUZp
auygUV/eJUQjRfWRLiYQGGlOp6FNuxan+bZFjkiP2m1C2LGjD/usekrji++5B7/r
0h3ZsAhH+J9lVVt5hXj6BFLP+a4VF11Wli+NOwT0tyI/b4uJkmUTChDBnoSht6uK
YbRCrzDohGR4DpY0M6spsb+T3BGxrTzdvAr2mxQ/mkQw6ufLZv+1oMKHxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBiLsIZnQfz2DlyK8ECOw8qmrMNKMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvR0l1d2htZEJfUFlPWElyd1FJN0R5cWFzdzBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowWeMA0G
CSqGSIb3DQEBCwUAA4IBAQABD1RtfKbtAPctP4aTHF+K13BIMJJWeGXs27Ez444l
CsoHUnUhS2yxsP7vJwB60+ARDEw7q+w75T3Wpl0SDLJWxDF6u5LFPLARmBRZqttT
KMfb4gIK5JUOHilMKBoEVd4yhI1Fdz1pl1wwcXXmsdIotwwM9zI8dwKOMkf83N1H
zW0p4u7TI2x9C6UKxI+f5Q2z9VUhOlzTIUT2ekZeV8chE3WdKgpldVWTGdf4CcuR
+VFXNyRkvr883ThyQ2y+GnDSg7PUYm5va1tV0MsbqoUHMzdhFILzWCyEh5qXZBf+
Z5YMx0hxNcRbj+OP+rGiv9879XDp+t8LysTOv4hEMor2
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:19 2024 by rpki-client on console-fra.rpki-client.org