Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/N-UrGguwF_YbhG07q89e7X-iYsw.roa
File: N-UrGguwF_YbhG07q89e7X-iYsw.roa (raw, json)
Hash identifier: Qux1dMhHBb0aJhHvvXNA6aP6+aAayndrkhOtm/ATjvc=
Subject key identifier: 37:E5:2B:1A:0B:B0:17:F6:1B:84:6D:3B:AB:CF:5E:ED:7F:A2:62:CC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018BC07DE378F0EC4E25724ABCD7B73AF772
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/N-UrGguwF_YbhG07q89e7X-iYsw.roa
Signing time: Sat 11 Nov 2023 22:25:57 +0000
ROA not before: Sat 11 Nov 2023 22:25:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60949
IP address blocks: 163.5.197.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c0:7d:e3:78:f0:ec:4e:25:72:4a:bc:d7:b7:3a:f7:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 11 22:25:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37e52b1a0bb017f61b846d3babcf5eed7fa262cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:78:d9:3a:5a:bf:54:35:20:42:72:1c:e8:07:
94:36:7f:dd:c0:e2:08:56:76:3a:ef:ee:99:d1:53:
aa:38:89:dc:7c:38:12:17:dd:bd:0c:d5:9f:02:bf:
9c:59:33:4a:57:d6:f3:3d:1f:c7:66:34:53:2c:f3:
f9:c1:ab:f5:d4:5b:a4:e7:79:6e:49:65:fb:01:84:
f5:4d:6b:cb:3a:9e:2c:80:13:93:14:c0:92:d4:69:
e7:93:95:d1:0d:c7:b5:05:ec:c1:ef:c7:83:4f:46:
17:44:72:1f:bf:53:4c:36:68:ce:b2:97:76:6e:d2:
ed:9d:32:be:bd:8b:5d:e2:66:9d:8b:e0:f3:65:91:
73:c3:8b:3a:dd:90:8f:27:01:7c:e4:c7:e4:f3:b3:
5b:42:3f:39:58:4b:0a:68:35:8e:a5:2c:6d:e7:99:
27:29:f3:c3:6a:19:d8:6f:eb:85:3e:5b:78:c9:43:
51:3e:01:79:66:18:36:60:86:b1:c3:fe:5e:02:e7:
8b:89:9d:ba:bb:45:86:a5:78:b5:7d:f2:f4:df:3e:
49:3e:6b:22:56:1d:a8:c5:22:a1:56:00:9c:2d:2b:
16:9b:d5:46:88:02:95:61:a3:ba:cd:50:35:1b:35:
bb:e0:48:a1:c2:db:d5:a8:35:5e:db:a7:af:ce:8d:
c6:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E5:2B:1A:0B:B0:17:F6:1B:84:6D:3B:AB:CF:5E:ED:7F:A2:62:CC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/N-UrGguwF_YbhG07q89e7X-iYsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.197.0/24
Signature Algorithm: sha256WithRSAEncryption
27:e0:ab:65:0e:fc:e8:f7:41:0f:32:0f:12:37:48:4f:03:25:
64:06:bb:52:04:21:30:d1:6b:8f:d5:67:b5:8f:34:44:78:e2:
e8:13:87:50:39:f2:a4:14:59:13:31:db:3f:9a:0f:ac:f4:8f:
48:a3:87:e7:d2:35:96:8e:a4:e4:a1:17:7d:ae:18:be:ef:eb:
d7:91:00:28:35:a5:17:e1:eb:89:be:71:a9:e1:12:37:68:1b:
db:10:c4:2e:71:35:60:7e:51:e8:93:3f:e8:71:e9:38:2a:05:
7c:39:e7:2a:0d:c1:87:e4:3f:0c:f2:ef:ab:29:38:1a:cd:04:
ca:94:35:36:20:1f:50:4c:54:a6:4a:87:a1:0f:67:60:92:6b:
97:ad:f2:fb:0a:25:bd:3c:dc:6e:f5:03:c4:13:04:18:be:ec:
08:fa:c8:d9:ed:2c:6e:57:4c:50:0e:6c:48:fa:ad:11:21:7a:
1a:58:0c:da:cc:da:21:74:57:43:28:83:d2:15:f5:b0:1e:8f:
61:03:93:71:a7:32:16:5e:1d:d7:49:97:7d:23:bb:d2:fc:82:
0d:cb:57:89:91:4a:12:df:de:99:0b:47:a7:2d:22:d1:bf:53:
1c:21:2a:6c:b0:e3:75:3a:3a:7c:16:f5:9d:d5:ab:39:4c:3f:
06:13:c8:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvAfeN48OxOJXJKvNe3OvdyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMxMTExMjIyNTU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzN2U1MmIxYTBiYjAxN2Y2MWI4NDZkM2JhYmNmNWVlZDdmYTI2MmNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA23jZOlq/VDUgQnIc6AeUNn/dwOII
VnY67+6Z0VOqOIncfDgSF929DNWfAr+cWTNKV9bzPR/HZjRTLPP5wav11Fuk53lu
SWX7AYT1TWvLOp4sgBOTFMCS1Gnnk5XRDce1BezB78eDT0YXRHIfv1NMNmjOspd2
btLtnTK+vYtd4madi+DzZZFzw4s63ZCPJwF85Mfk87NbQj85WEsKaDWOpSxt55kn
KfPDahnYb+uFPlt4yUNRPgF5Zhg2YIaxw/5eAueLiZ26u0WGpXi1ffL03z5JPmsi
Vh2oxSKhVgCcLSsWm9VGiAKVYaO6zVA1GzW74EihwtvVqDVe26evzo3GwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDflKxoLsBf2G4RtO6vPXu1/omLMMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvTi1VckdndXdGX1liaEcwN3E4OWU3WC1pWXN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowXFMA0G
CSqGSIb3DQEBCwUAA4IBAQAn4KtlDvzo90EPMg8SN0hPAyVkBrtSBCEw0WuP1We1
jzREeOLoE4dQOfKkFFkTMds/mg+s9I9Io4fn0jWWjqTkoRd9rhi+7+vXkQAoNaUX
4euJvnGp4RI3aBvbEMQucTVgflHokz/ocek4KgV8OecqDcGH5D8M8u+rKTgazQTK
lDU2IB9QTFSmSoehD2dgkmuXrfL7CiW9PNxu9QPEEwQYvuwI+sjZ7SxuV0xQDmxI
+q0RIXoaWAzazNohdFdDKIPSFfWwHo9hA5NxpzIWXh3XSZd9I7vS/IINy1eJkUoS
396ZC0enLSLRv1McISpssON1Ojp8FvWd1as5TD8GE8i5
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:19 2024 by rpki-client on console-fra.rpki-client.org