Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/M8u1ksSf5eWfAEiyGI973BCzadQ.roa
File: M8u1ksSf5eWfAEiyGI973BCzadQ.roa (raw, json)
Hash identifier: Jj581nzh98g7cvbubOwUrpfaMyQ3JoGlqifRNHX/2Nw=
Subject key identifier: 33:CB:B5:92:C4:9F:E5:E5:9F:00:48:B2:18:8F:7B:DC:10:B3:69:D4
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018964EA6E27A0C791F7D2F597BC5CD5043E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/M8u1ksSf5eWfAEiyGI973BCzadQ.roa
Signing time: Mon 17 Jul 2023 17:33:52 +0000
ROA not before: Mon 17 Jul 2023 17:33:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 163.5.75.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:ea:6e:27:a0:c7:91:f7:d2:f5:97:bc:5c:d5:04:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 17 17:33:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33cbb592c49fe5e59f0048b2188f7bdc10b369d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b5:ca:55:88:d9:64:30:7e:0b:a8:27:93:39:
83:c6:f2:0d:53:fc:44:cf:86:7c:33:de:49:1d:79:
6d:b0:e9:a0:d2:a6:df:b8:93:40:38:9b:cd:4c:0b:
4f:a9:53:1e:d3:0e:16:6b:be:d1:7a:e3:fc:60:38:
e6:fb:c6:69:ac:22:8b:0f:7d:26:a5:bf:01:56:1b:
2b:1f:c9:83:62:17:24:5a:d3:81:02:89:c3:40:84:
3d:a5:1c:c3:59:50:1f:e4:24:6d:0b:70:fc:a8:20:
e5:89:e9:d4:f5:c2:83:4b:28:9b:fb:1d:a3:32:6e:
47:21:28:86:33:82:6a:5a:41:4f:86:a5:76:45:78:
59:b2:1a:9b:41:a5:a5:50:90:94:aa:e9:c5:87:a8:
5d:8c:e3:a7:f7:99:df:d5:f0:05:8d:74:bf:a3:64:
74:a4:d6:1b:36:ab:03:b6:f3:df:35:d2:68:50:a4:
01:d3:fd:64:67:1a:1c:bf:6b:65:61:f3:09:d9:3f:
d3:ee:a5:0e:bb:d4:30:ba:99:67:b6:bc:88:17:10:
3e:50:03:23:6f:72:c8:d4:e4:d2:0d:55:50:80:ab:
21:15:b9:a8:06:c2:bf:c2:6c:2c:39:97:98:05:ab:
60:94:44:ae:82:cd:34:29:e8:b9:17:01:73:a0:7c:
21:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CB:B5:92:C4:9F:E5:E5:9F:00:48:B2:18:8F:7B:DC:10:B3:69:D4
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/M8u1ksSf5eWfAEiyGI973BCzadQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.75.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:e6:fa:76:41:09:ef:0e:8d:32:bf:cc:60:f2:db:2e:a0:61:
96:22:f3:c7:65:11:5a:b6:a4:19:ca:4d:7d:ca:03:ec:08:d5:
9d:be:a5:d3:51:cd:29:a4:f1:2e:24:b8:6a:10:82:35:0b:59:
6c:15:4c:f2:e3:06:d2:80:3d:c4:72:81:4b:0a:72:53:32:de:
b9:16:47:bc:22:a2:10:bd:9c:3b:11:f8:91:d8:d4:16:cf:ea:
8c:81:2b:60:93:f7:db:58:7a:43:d2:df:80:ab:a7:6e:ee:3c:
ad:e3:2a:47:a7:6a:40:bd:b9:42:c3:77:44:1b:b5:fc:08:f5:
fe:d5:06:a2:e9:c6:fa:07:78:98:b1:fd:88:cb:0b:e5:7e:0b:
17:61:2a:c2:38:3c:03:da:ec:9a:98:77:81:96:04:4e:c2:27:
6f:84:be:4d:a1:16:a8:cf:cf:2f:50:fd:40:8d:de:d9:bc:c2:
d8:c0:ac:55:a6:59:99:9b:65:de:39:9a:5e:31:c4:c4:08:5c:
c1:7e:ed:e9:37:14:5b:c4:1e:64:13:45:5c:07:b0:91:70:97:
16:61:f5:43:9c:62:53:dd:ad:cb:10:42:55:ee:6a:70:f3:7e:
10:e6:9c:69:c3:71:b0:7c:09:bc:4f:5d:42:b0:c5:b6:20:02:
8f:3f:3d:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlk6m4noMeR99L1l7xc1QQ+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwNzE3MTczMzUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2NiYjU5MmM0OWZlNWU1OWYwMDQ4YjIxODhmN2JkYzEwYjM2OWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLXKVYjZZDB+C6gnkzmDxvINU/xE
z4Z8M95JHXltsOmg0qbfuJNAOJvNTAtPqVMe0w4Wa77ReuP8YDjm+8ZprCKLD30m
pb8BVhsrH8mDYhckWtOBAonDQIQ9pRzDWVAf5CRtC3D8qCDlienU9cKDSyib+x2j
Mm5HISiGM4JqWkFPhqV2RXhZshqbQaWlUJCUqunFh6hdjOOn95nf1fAFjXS/o2R0
pNYbNqsDtvPfNdJoUKQB0/1kZxocv2tlYfMJ2T/T7qUOu9QwuplntryIFxA+UAMj
b3LI1OTSDVVQgKshFbmoBsK/wmwsOZeYBatglESugs00Kei5FwFzoHwhlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDPLtZLEn+XlnwBIshiPe9wQs2nUMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvTTh1MWtzU2Y1ZVdmQUVpeUdJOTczQkN6YWRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowVLMA0G
CSqGSIb3DQEBCwUAA4IBAQAf5vp2QQnvDo0yv8xg8tsuoGGWIvPHZRFatqQZyk19
ygPsCNWdvqXTUc0ppPEuJLhqEII1C1lsFUzy4wbSgD3EcoFLCnJTMt65Fke8IqIQ
vZw7EfiR2NQWz+qMgStgk/fbWHpD0t+Aq6du7jyt4ypHp2pAvblCw3dEG7X8CPX+
1Qai6cb6B3iYsf2IywvlfgsXYSrCODwD2uyamHeBlgROwidvhL5NoRaoz88vUP1A
jd7ZvMLYwKxVplmZm2XeOZpeMcTECFzBfu3pNxRbxB5kE0VcB7CRcJcWYfVDnGJT
3a3LEEJV7mpw834Q5pxpw3GwfAm8T11CsMW2IAKPPz2m
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:20 2023 by rpki-client on console-fra.rpki-client.org