Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/N9TqfY28-RnPOSI4jAFLQPAUtA4.roa
File: N9TqfY28-RnPOSI4jAFLQPAUtA4.roa (raw, json)
Hash identifier: /+2hwAWCnTSiy/7Za+B+61FYV9mP8zY2xAuwMvmdDyM=
Subject key identifier: 37:D4:EA:7D:8D:BC:F9:19:CF:39:22:38:8C:01:4B:40:F0:14:B4:0E
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019054FC9948AAB7E2FB5DB4F0BF3605E435
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/N9TqfY28-RnPOSI4jAFLQPAUtA4.roa
Signing time: Wed 26 Jun 2024 14:39:18 +0000
ROA not before: Wed 26 Jun 2024 14:39:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.145.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 16:34:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:54:fc:99:48:aa:b7:e2:fb:5d:b4:f0:bf:36:05:e4:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 26 14:39:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37d4ea7d8dbcf919cf3922388c014b40f014b40e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:08:25:5f:15:21:be:8b:aa:67:48:01:d5:29:
30:28:37:95:4c:5d:3e:fe:c4:44:4e:77:37:06:f8:
4c:c9:37:65:c9:d4:05:52:fd:d2:c7:de:43:e1:b3:
84:c0:68:66:e4:3b:2a:9a:fc:34:d9:c5:87:f7:2d:
e9:7d:57:54:46:b1:cc:46:4e:b9:57:52:74:92:c3:
13:b9:4a:05:8b:b6:c0:89:d1:d6:7d:89:de:3b:89:
3f:93:0d:26:fd:f6:cb:4a:d6:f9:14:98:66:d8:90:
a1:e2:e7:7f:0a:ae:75:b7:26:a6:71:1d:09:ca:c7:
d8:e6:63:c2:3b:af:82:8a:6c:35:86:8d:26:fc:bf:
81:ea:11:44:93:cb:fd:67:99:57:77:f6:14:2b:be:
08:31:f6:c3:df:aa:15:6f:26:8a:da:af:ec:c3:e7:
54:69:27:fe:2d:55:0e:be:04:41:a6:61:1b:b3:c8:
e8:4c:d0:ae:00:1e:7d:19:c5:8e:6c:fc:62:3c:1c:
2e:67:0c:92:8c:51:5c:87:84:12:38:50:db:ce:7c:
ab:9d:38:4f:11:a9:b8:62:11:2d:7a:de:d7:3f:1a:
a7:51:bc:34:82:0d:46:1c:03:9d:31:c2:8f:79:db:
c5:99:41:96:61:49:d9:63:25:0c:cf:29:0d:c8:48:
45:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D4:EA:7D:8D:BC:F9:19:CF:39:22:38:8C:01:4B:40:F0:14:B4:0E
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/N9TqfY28-RnPOSI4jAFLQPAUtA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.110.0/23
163.5.126.0/24
163.5.128.0/24
163.5.145.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
93:e5:22:fc:d1:3b:b3:2a:d9:0d:e8:64:ee:7a:d8:ee:31:fc:
a7:b8:0b:b5:6f:4a:21:75:b5:c0:7a:be:48:d7:5d:33:3c:96:
12:a5:d8:54:29:95:86:90:15:e2:77:5e:98:52:ba:d5:d6:ed:
43:cc:37:4e:ec:05:bd:0a:d8:66:8d:98:40:1e:14:58:f3:52:
67:d5:d2:36:63:6e:d1:0f:fd:22:49:bf:a9:0e:72:63:21:e1:
5e:91:51:ad:ac:2a:98:23:2e:c0:2f:68:90:af:32:d8:14:b8:
77:58:de:de:5a:e8:4e:41:e5:aa:61:5e:c7:e6:f7:46:f7:6e:
88:bb:64:31:d5:73:1a:d7:d8:fa:18:80:1c:6c:92:b5:d0:f7:
f2:b4:57:ba:34:43:bf:2c:c0:45:cc:a1:3f:e5:1b:57:e4:37:
c7:d9:69:28:f3:dd:c5:37:5d:05:18:66:f4:48:c3:66:9a:6b:
78:6a:61:a5:a8:e4:cf:87:14:3f:36:c2:b8:94:3a:65:76:e2:
eb:ee:33:96:86:09:8d:4e:45:e9:d2:75:22:7a:27:4f:ab:e1:
2b:91:c9:48:09:a2:63:65:08:52:a6:c7:e9:d8:7f:fe:8e:38:
7c:c5:45:8f:c7:07:5b:cc:c2:74:09:27:59:94:a5:11:21:8e:
a5:6a:b0:52
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZBU/JlIqrfi+1208L82BeQ1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwNjI2MTQzOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzN2Q0ZWE3ZDhkYmNmOTE5Y2YzOTIyMzg4YzAxNGI0MGYwMTRiNDBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzgglXxUhvouqZ0gB1SkwKDeVTF0+
/sRETnc3BvhMyTdlydQFUv3Sx95D4bOEwGhm5Dsqmvw02cWH9y3pfVdURrHMRk65
V1J0ksMTuUoFi7bAidHWfYneO4k/kw0m/fbLStb5FJhm2JCh4ud/Cq51tyamcR0J
ysfY5mPCO6+Cimw1ho0m/L+B6hFEk8v9Z5lXd/YUK74IMfbD36oVbyaK2q/sw+dU
aSf+LVUOvgRBpmEbs8joTNCuAB59GcWObPxiPBwuZwySjFFch4QSOFDbznyrnThP
Eam4YhEtet7XPxqnUbw0gg1GHAOdMcKPedvFmUGWYUnZYyUMzykNyEhFawIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFDfU6n2NvPkZzzkiOIwBS0DwFLQOMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvTjlUcWZZMjgtUm5QT1NJNGpBRkxRUEFVdEE0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQBowVuAwQA
owV+AwQAowWAAwQAowWRAwQAowX6AwQAowX9MA0GCSqGSIb3DQEBCwUAA4IBAQCT
5SL80TuzKtkN6GTuetjuMfynuAu1b0ohdbXAer5I110zPJYSpdhUKZWGkBXid16Y
UrrV1u1DzDdO7AW9CthmjZhAHhRY81Jn1dI2Y27RD/0iSb+pDnJjIeFekVGtrCqY
Iy7AL2iQrzLYFLh3WN7eWuhOQeWqYV7H5vdG926Iu2Qx1XMa19j6GIAcbJK10Pfy
tFe6NEO/LMBFzKE/5RtX5DfH2Wko893FN10FGGb0SMNmmmt4amGlqOTPhxQ/NsK4
lDplduLr7jOWhgmNTkXp0nUieidPq+ErkclICaJjZQhSpsfp2H/+jjh8xUWPxwdb
zMJ0CSdZlKURIY6larBS
-----END CERTIFICATE-----
Generated at Wed Sep 11 18:35:55 2024 by rpki-client on console-ams.rpki-client.org