Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LdXDkvfzHjix4mjDmtTQoyjQEOs.roa
File: LdXDkvfzHjix4mjDmtTQoyjQEOs.roa (raw, json)
Hash identifier: 9dxMM54BP2vzZUaDBGJ+MkWndnHixyxKCsDtobJhJPY=
Subject key identifier: 2D:D5:C3:92:F7:F3:1E:38:B1:E2:68:C3:9A:D4:D0:A3:28:D0:10:EB
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B25252F2692FDA35F477C3B34EA92DAEA
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LdXDkvfzHjix4mjDmtTQoyjQEOs.roa
Signing time: Thu 12 Oct 2023 18:27:55 +0000
ROA not before: Thu 12 Oct 2023 18:27:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205570
IP address blocks: 163.5.74.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:25:25:2f:26:92:fd:a3:5f:47:7c:3b:34:ea:92:da:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 12 18:27:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2dd5c392f7f31e38b1e268c39ad4d0a328d010eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:13:c7:eb:f4:bf:e9:5a:21:70:95:66:0e:d8:
8d:57:21:a0:4c:55:fb:d6:dc:5f:22:52:c8:2a:cf:
03:9a:f1:91:9d:aa:09:ad:ec:f8:bf:54:6a:a2:ce:
9c:a2:a3:1b:e2:74:d5:2d:3c:6c:5f:db:fd:70:81:
06:85:1d:bb:96:43:f7:a3:c4:20:09:a0:00:0f:5b:
2f:c0:f7:e1:34:65:ef:00:72:24:98:59:40:4c:e0:
36:08:e6:a3:a0:09:36:90:2c:8d:f4:97:33:24:b8:
b2:24:e9:ac:9c:a1:89:55:a5:34:15:fc:c9:9c:d8:
8f:ae:0e:ad:ee:04:62:b6:c2:83:e2:79:a2:50:68:
b4:ac:c5:ee:e9:87:81:1e:0c:28:83:74:31:08:33:
6e:e9:ce:12:0e:ce:c9:df:be:77:91:5f:ea:d6:02:
bd:63:17:40:bf:30:ef:ae:84:45:99:5c:7a:a8:ef:
0f:6d:c3:a1:ba:41:84:82:fe:93:b4:8b:15:77:30:
67:1d:20:59:d7:de:75:8a:d5:1d:ee:68:56:56:86:
fd:cc:1f:e9:c4:73:45:48:94:be:f0:3a:3d:f4:58:
6d:84:79:08:3e:8a:1a:bf:f2:62:20:30:2d:22:06:
04:b6:a2:6a:b8:ea:cf:63:8f:e6:07:6d:85:82:e4:
ed:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D5:C3:92:F7:F3:1E:38:B1:E2:68:C3:9A:D4:D0:A3:28:D0:10:EB
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LdXDkvfzHjix4mjDmtTQoyjQEOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.74.0/24
Signature Algorithm: sha256WithRSAEncryption
62:aa:86:fa:bb:3e:90:da:df:95:62:54:49:57:99:07:11:fb:
9c:a1:31:f4:97:88:e4:8a:c3:22:9a:0c:b4:a7:56:2a:0e:6c:
7e:f4:3b:5c:4f:7d:1a:59:ba:d5:bb:04:f2:7e:7c:60:51:1d:
e4:31:c9:ac:0b:82:4c:cd:79:83:c3:05:fc:c7:c0:1b:5c:b1:
a0:91:e7:aa:d0:bf:c9:05:d2:d6:6c:fd:8c:cd:32:e1:62:35:
9a:76:bf:9e:92:14:fc:fb:fb:c4:08:cd:fa:95:ea:08:d5:89:
74:2e:c4:80:b6:da:c9:23:b3:58:be:7b:ef:13:aa:99:7f:f7:
c6:0c:3f:36:ab:85:6e:46:5c:a3:88:01:fe:58:d6:09:9c:07:
2c:9a:c9:2a:f7:83:db:3e:fb:fb:dd:5e:a8:b8:da:13:fd:41:
8c:2a:fc:03:eb:ee:27:e2:46:1e:84:56:2e:a7:ec:c2:cb:34:
ac:ef:70:56:0c:99:3a:ef:6c:0d:8f:21:60:1e:2b:af:bd:00:
30:40:4d:6a:3c:a8:ef:33:41:28:00:53:21:3c:e4:eb:3d:72:
83:dd:d1:0d:94:20:f9:c7:fc:a1:f4:b4:0c:0e:55:ee:39:5d:
78:7e:86:31:d9:74:85:94:d8:ca:ce:e0:14:04:f8:f4:26:23:
c3:04:4f:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYslJS8mkv2jX0d8OzTqktrqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMxMDEyMTgyNzU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGQ1YzM5MmY3ZjMxZTM4YjFlMjY4YzM5YWQ0ZDBhMzI4ZDAxMGViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBPH6/S/6VohcJVmDtiNVyGgTFX7
1txfIlLIKs8DmvGRnaoJrez4v1Rqos6coqMb4nTVLTxsX9v9cIEGhR27lkP3o8Qg
CaAAD1svwPfhNGXvAHIkmFlATOA2COajoAk2kCyN9JczJLiyJOmsnKGJVaU0FfzJ
nNiPrg6t7gRitsKD4nmiUGi0rMXu6YeBHgwog3QxCDNu6c4SDs7J3753kV/q1gK9
YxdAvzDvroRFmVx6qO8PbcOhukGEgv6TtIsVdzBnHSBZ1951itUd7mhWVob9zB/p
xHNFSJS+8Do99FhthHkIPooav/JiIDAtIgYEtqJquOrPY4/mB22FguTteQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC3Vw5L38x44seJow5rU0KMo0BDrMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvTGRYRGt2ZnpIaml4NG1qRG10VFFveWpRRU9zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowVKMA0G
CSqGSIb3DQEBCwUAA4IBAQBiqob6uz6Q2t+VYlRJV5kHEfucoTH0l4jkisMimgy0
p1YqDmx+9DtcT30aWbrVuwTyfnxgUR3kMcmsC4JMzXmDwwX8x8AbXLGgkeeq0L/J
BdLWbP2MzTLhYjWadr+ekhT8+/vECM36leoI1Yl0LsSAttrJI7NYvnvvE6qZf/fG
DD82q4VuRlyjiAH+WNYJnAcsmskq94PbPvv73V6ouNoT/UGMKvwD6+4n4kYehFYu
p+zCyzSs73BWDJk672wNjyFgHiuvvQAwQE1qPKjvM0EoAFMhPOTrPXKD3dENlCD5
x/yh9LQMDlXuOV14foYx2XSFlNjKzuAUBPj0JiPDBE98
-----END CERTIFICATE-----
Generated at Tue Nov 14 22:59:53 2023 by rpki-client on console-ams.rpki-client.org