Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MOIUTmD5_L5wo7RQXFvMIMKAFmA.roa
File: MOIUTmD5_L5wo7RQXFvMIMKAFmA.roa (raw, json)
Hash identifier: NBU8nc+RGEiM8F0Gdf+llX/XZw4tuCHd3hE891R8/FE=
Subject key identifier: 30:E2:14:4E:60:F9:FC:BE:70:A3:B4:50:5C:5B:CC:20:C2:80:16:60
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01887620F84A18D8DB88679F30C8878F40B9
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MOIUTmD5_L5wo7RQXFvMIMKAFmA.roa
Signing time: Thu 01 Jun 2023 08:44:12 +0000
ROA not before: Thu 01 Jun 2023 08:44:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2914
IP address blocks: 163.5.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:76:20:f8:4a:18:d8:db:88:67:9f:30:c8:87:8f:40:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 1 08:44:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30e2144e60f9fcbe70a3b4505c5bcc20c2801660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b5:88:9c:94:1c:d9:78:80:dc:d4:8a:01:b0:
ce:ea:8c:67:d1:af:78:0e:bb:6b:92:e5:58:ac:76:
4b:aa:3d:00:c1:7b:cb:aa:c0:e3:fa:63:d7:26:c8:
7b:4c:a3:e5:5c:04:c1:6d:ce:33:4b:dc:fb:32:82:
c6:d3:21:87:f9:ef:68:2c:c3:62:8e:83:d7:e1:a0:
ec:8c:b2:03:0b:c0:80:04:de:fd:3c:c7:76:a9:88:
17:e1:cd:e0:f9:2d:f6:ad:ab:89:7b:97:f7:d3:d2:
8a:d1:29:81:86:10:1f:af:97:8e:62:5b:53:53:f6:
ba:16:be:06:57:38:13:97:7b:e4:87:a1:5d:a9:d6:
56:fe:98:4f:38:56:ca:bc:6f:19:19:35:31:96:38:
ae:b5:09:b2:d7:6a:c6:da:b1:d5:dc:80:26:e8:4c:
05:e4:0a:6d:47:12:76:75:c0:ea:d0:86:28:db:89:
3b:22:d4:56:fd:e8:5c:6f:80:68:fc:f4:be:e9:d5:
a2:d0:88:9d:a9:d7:e4:6a:59:fe:48:ea:99:1d:4c:
26:51:97:24:99:ea:bf:26:42:87:3b:73:9e:ab:82:
71:95:16:11:cf:d4:7a:e9:84:2b:1c:e2:4f:df:b0:
fc:48:de:d6:87:79:e2:3e:87:d7:0d:d3:aa:dc:d4:
52:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E2:14:4E:60:F9:FC:BE:70:A3:B4:50:5C:5B:CC:20:C2:80:16:60
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/MOIUTmD5_L5wo7RQXFvMIMKAFmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.213.0/24
Signature Algorithm: sha256WithRSAEncryption
41:43:54:cb:a7:3d:ce:f6:08:75:56:61:b0:04:39:ee:aa:d6:
3d:8f:97:7c:2a:6b:f3:b7:7e:9f:ea:f2:e5:97:61:52:34:6f:
bc:41:d4:d6:8c:99:27:b9:e0:9c:3a:6b:00:76:a6:4a:44:36:
04:cf:8c:2e:3e:ab:fd:07:81:b1:1f:80:08:f9:19:cd:78:c4:
5e:26:c9:03:e6:af:5a:31:f4:b3:5c:b7:19:f9:cf:43:35:86:
db:28:d7:ea:76:27:fa:9a:00:74:8c:91:04:d4:b3:5b:aa:c2:
7c:6f:10:1c:fd:5e:aa:38:ab:63:6e:82:5c:c8:fc:e0:ea:8a:
35:7e:fb:fc:36:f0:36:7d:c9:cc:7c:40:3b:7c:d3:5f:36:fa:
6d:6c:d3:f2:e6:55:e3:95:df:dc:0f:60:ee:ee:c1:93:bc:e0:
87:17:e1:85:3c:32:9f:1a:10:e3:03:79:fb:fd:a1:d5:c8:bf:
a1:30:0b:5f:5b:86:5b:fd:df:82:7a:cf:c0:a9:1e:cd:40:d6:
78:dc:42:af:62:f7:1a:2b:a5:b3:14:93:b0:2f:70:9e:52:0d:
16:fb:7e:97:5e:fc:5d:e1:ff:bb:93:fc:d2:d6:42:23:43:12:
df:22:a9:37:17:05:28:49:2e:b5:04:c5:a4:0a:c8:32:f6:38:
66:1f:a6:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYh2IPhKGNjbiGefMMiHj0C5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwNjAxMDg0NDEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMGUyMTQ0ZTYwZjlmY2JlNzBhM2I0NTA1YzViY2MyMGMyODAxNjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAirWInJQc2XiA3NSKAbDO6oxn0a94
DrtrkuVYrHZLqj0AwXvLqsDj+mPXJsh7TKPlXATBbc4zS9z7MoLG0yGH+e9oLMNi
joPX4aDsjLIDC8CABN79PMd2qYgX4c3g+S32rauJe5f309KK0SmBhhAfr5eOYltT
U/a6Fr4GVzgTl3vkh6FdqdZW/phPOFbKvG8ZGTUxljiutQmy12rG2rHV3IAm6EwF
5AptRxJ2dcDq0IYo24k7ItRW/ehcb4Bo/PS+6dWi0Iidqdfkaln+SOqZHUwmUZck
meq/JkKHO3Oeq4JxlRYRz9R66YQrHOJP37D8SN7Wh3niPofXDdOq3NRSZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDDiFE5g+fy+cKO0UFxbzCDCgBZgMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvTU9JVVRtRDVfTDV3bzdSUVhGdk1JTUtBRm1BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowXVMA0G
CSqGSIb3DQEBCwUAA4IBAQBBQ1TLpz3O9gh1VmGwBDnuqtY9j5d8Kmvzt36f6vLl
l2FSNG+8QdTWjJknueCcOmsAdqZKRDYEz4wuPqv9B4GxH4AI+RnNeMReJskD5q9a
MfSzXLcZ+c9DNYbbKNfqdif6mgB0jJEE1LNbqsJ8bxAc/V6qOKtjboJcyPzg6oo1
fvv8NvA2fcnMfEA7fNNfNvptbNPy5lXjld/cD2Du7sGTvOCHF+GFPDKfGhDjA3n7
/aHVyL+hMAtfW4Zb/d+Ces/AqR7NQNZ43EKvYvcaK6WzFJOwL3CeUg0W+36XXvxd
4f+7k/zS1kIjQxLfIqk3FwUoSS61BMWkCsgy9jhmH6aH
-----END CERTIFICATE-----
Generated at Wed Aug 16 14:24:06 2023 by rpki-client on console-fra.rpki-client.org