Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/N-NDhEH1SafQA_b0rD98YWe6Is8.roa
File: N-NDhEH1SafQA_b0rD98YWe6Is8.roa (raw, json)
Hash identifier: cPLwOhaoAMkIkSYrOyq6Ctj4Am2QH66Y3uRrjlrgCwg=
Subject key identifier: 37:E3:43:84:41:F5:49:A7:D0:03:F6:F4:AC:3F:7C:61:67:BA:22:CF
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01899BDE0839A778B4517F4F962B19801BC4
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/N-NDhEH1SafQA_b0rD98YWe6Is8.roa
Signing time: Fri 28 Jul 2023 09:39:26 +0000
ROA not before: Fri 28 Jul 2023 09:39:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397563
IP address blocks: 163.5.177.0/24 maxlen: 24
163.5.137.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:de:08:39:a7:78:b4:51:7f:4f:96:2b:19:80:1b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 28 09:39:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37e3438441f549a7d003f6f4ac3f7c6167ba22cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ca:5d:90:0a:86:e2:c8:a7:64:8c:c6:dd:0e:
1b:47:46:f9:58:a6:ff:b4:36:fc:6a:28:2f:36:3b:
48:d0:42:49:68:df:c3:84:e9:1d:f2:15:72:36:92:
0a:68:89:8e:78:09:57:46:b1:ff:e6:69:07:25:f3:
ae:1f:22:6e:7e:96:78:c8:40:06:08:fb:8f:03:14:
e9:e2:46:1e:e0:f0:41:b6:f4:c6:10:6a:f9:39:18:
a4:79:90:93:90:fd:e8:c6:51:97:20:ae:72:a3:9d:
6c:07:00:70:4a:d7:99:01:03:e7:3f:5c:ea:ad:fd:
ad:fe:3d:bc:43:61:69:bc:8d:99:92:08:d9:5d:53:
6e:ef:24:23:64:e3:6a:2d:14:3e:ab:7d:12:f8:e8:
9a:31:a5:d7:78:91:4f:1f:de:04:29:49:c1:d0:d1:
f4:a1:28:db:61:1b:d2:f9:bd:21:ce:12:75:b7:65:
e4:86:46:97:e7:54:99:b1:99:b9:12:00:c0:f1:8d:
93:b0:e1:c3:d3:68:25:86:7a:6f:0c:35:61:8d:6c:
d5:e3:7f:35:0c:8b:1c:57:20:09:40:a0:eb:17:03:
a1:1b:2c:be:56:47:65:53:6a:24:81:ca:f2:67:08:
73:e8:29:3e:c6:31:61:8e:77:81:d0:21:a7:24:87:
bc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E3:43:84:41:F5:49:A7:D0:03:F6:F4:AC:3F:7C:61:67:BA:22:CF
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/N-NDhEH1SafQA_b0rD98YWe6Is8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.137.0/24
163.5.177.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:87:96:ad:95:7f:56:3e:ad:94:06:72:e9:e7:7a:f0:ff:97:
48:ec:7d:34:0d:e9:b7:fc:0b:8c:41:7c:e5:ea:3d:31:ba:6b:
ee:b8:79:61:ba:00:11:e1:50:d9:f5:db:bf:bb:ae:3e:1b:8e:
20:29:d0:25:17:33:36:a6:9b:64:ec:18:9a:de:f6:53:73:7d:
8a:e1:28:b0:30:64:1b:3c:1f:47:da:0c:21:3f:0e:af:a9:f1:
b9:22:32:4a:96:ee:2c:db:43:bd:8e:24:32:ae:81:47:22:4a:
7e:99:24:36:e6:1e:8a:1f:91:a6:89:30:13:3e:90:b2:b5:0f:
e5:f4:0a:1a:9c:26:4a:dc:3f:4e:da:97:69:29:8b:3a:62:1f:
b2:fe:0c:84:0f:59:32:fb:40:0d:2a:15:37:2f:5f:ad:b3:45:
8e:87:60:2c:fd:3f:c5:42:cf:76:e0:61:57:c1:75:3c:c1:7f:
1c:37:6c:72:07:bf:b9:5a:23:fa:8d:b6:80:0a:23:a0:7a:9c:
c4:92:88:c5:a0:be:cf:01:5e:17:8f:ee:a2:92:e3:13:63:37:
30:92:73:1a:bd:3f:3b:8e:16:35:d0:6d:cf:da:fb:01:cc:cc:
c2:b7:ef:47:8d:13:63:a7:83:1c:34:60:fd:8a:d2:0a:ef:e8:
49:3a:ec:42
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYmb3gg5p3i0UX9PlisZgBvEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwNzI4MDkzOTI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzN2UzNDM4NDQxZjU0OWE3ZDAwM2Y2ZjRhYzNmN2M2MTY3YmEyMmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwspdkAqG4sinZIzG3Q4bR0b5WKb/
tDb8aigvNjtI0EJJaN/DhOkd8hVyNpIKaImOeAlXRrH/5mkHJfOuHyJufpZ4yEAG
CPuPAxTp4kYe4PBBtvTGEGr5ORikeZCTkP3oxlGXIK5yo51sBwBwSteZAQPnP1zq
rf2t/j28Q2FpvI2ZkgjZXVNu7yQjZONqLRQ+q30S+OiaMaXXeJFPH94EKUnB0NH0
oSjbYRvS+b0hzhJ1t2XkhkaX51SZsZm5EgDA8Y2TsOHD02glhnpvDDVhjWzV4381
DIscVyAJQKDrFwOhGyy+VkdlU2okgcryZwhz6Ck+xjFhjneB0CGnJIe8iQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFDfjQ4RB9Umn0AP29Kw/fGFnuiLPMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvTi1ORGhFSDFTYWZRQV9iMHJEOThZV2U2SXM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAowWJAwQA
owWxMA0GCSqGSIb3DQEBCwUAA4IBAQClh5atlX9WPq2UBnLp53rw/5dI7H00Dem3
/AuMQXzl6j0xumvuuHlhugAR4VDZ9du/u64+G44gKdAlFzM2pptk7Bia3vZTc32K
4SiwMGQbPB9H2gwhPw6vqfG5IjJKlu4s20O9jiQyroFHIkp+mSQ25h6KH5GmiTAT
PpCytQ/l9AoanCZK3D9O2pdpKYs6Yh+y/gyED1ky+0ANKhU3L1+ts0WOh2As/T/F
Qs924GFXwXU8wX8cN2xyB7+5WiP6jbaACiOgepzEkojFoL7PAV4Xj+6ikuMTYzcw
knMavT87jhY10G3P2vsBzMzCt+9HjRNjp4McNGD9itIK7+hJOuxC
-----END CERTIFICATE-----
Generated at Tue Aug 8 12:00:43 2023 by rpki-client on console-fra.rpki-client.org