Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/XDJQEoRRvIe7w9IvPWXTnJ0H0xo.roa
File: XDJQEoRRvIe7w9IvPWXTnJ0H0xo.roa (raw, json)
Hash identifier: gutYS21yQ2BAsD3tzMSxr/RzCqjmi7eXoMjG6tSkN0Q=
Subject key identifier: 5C:32:50:12:84:51:BC:87:BB:C3:D2:2F:3D:65:D3:9C:9D:07:D3:1A
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0186F06E0533A4CE8FDFE830B14749087494
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/XDJQEoRRvIe7w9IvPWXTnJ0H0xo.roa
Signing time: Fri 17 Mar 2023 16:36:27 +0000
ROA not before: Fri 17 Mar 2023 16:36:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 163.5.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f0:6e:05:33:a4:ce:8f:df:e8:30:b1:47:49:08:74:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Mar 17 16:36:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c3250128451bc87bbc3d22f3d65d39c9d07d31a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a5:17:09:e9:a4:6e:d0:48:00:9c:a9:58:a3:
84:ab:c2:89:4e:ee:9a:6c:5b:8c:c2:18:d6:d6:8a:
aa:1e:57:64:8c:4c:79:ef:21:d0:bb:96:c4:d2:e3:
30:e6:a3:6c:e1:19:9f:79:f0:5e:34:ec:4a:ae:2f:
39:cc:e4:87:5f:62:33:65:be:2f:cc:54:47:d9:23:
4d:d0:d5:58:ee:bd:38:50:1d:d6:7d:d0:31:fa:d2:
23:0c:e0:b0:3f:aa:ab:93:87:b5:1b:e3:26:db:53:
54:f1:04:ba:99:b7:7a:1d:d6:16:02:91:ab:1c:15:
78:32:f4:d4:11:84:6c:e2:1b:25:2e:15:8d:84:f5:
3a:a7:1b:ad:06:27:0a:1d:9b:38:76:aa:01:4c:1d:
e6:fd:47:af:bb:d0:14:99:65:88:b2:72:77:14:8c:
d6:e0:6f:9d:ba:ae:62:f7:1d:01:31:55:75:fd:2b:
cd:1e:e5:30:f3:3c:52:78:a0:56:77:c1:e1:d4:40:
82:fa:0b:05:83:38:f3:fd:54:86:2b:41:42:1e:17:
3e:37:b7:8b:6a:f3:c2:fd:81:bc:12:71:a7:f9:3c:
bd:85:61:10:85:64:2e:a5:15:89:9f:d8:60:d7:e4:
21:70:bc:dc:78:43:e4:73:a4:08:b6:ad:19:73:92:
52:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:32:50:12:84:51:BC:87:BB:C3:D2:2F:3D:65:D3:9C:9D:07:D3:1A
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/XDJQEoRRvIe7w9IvPWXTnJ0H0xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.249.0/24
Signature Algorithm: sha256WithRSAEncryption
34:02:64:10:6b:43:9f:55:ce:d4:fd:e6:2d:4b:9a:cb:8a:1d:
0b:3a:e9:b4:9d:58:a5:d1:a7:8e:cd:11:5d:fc:43:b0:cc:e8:
81:dc:9b:bc:b3:31:8c:01:0c:88:a9:52:14:04:a3:5a:70:d7:
66:9a:a1:f5:b1:7d:db:71:02:66:1a:df:dc:ff:37:42:91:aa:
96:c4:19:fc:a2:1c:d5:7f:84:98:4a:0b:b3:7e:74:32:31:81:
cc:6c:09:78:95:79:72:f6:9a:31:0e:95:98:b5:0e:16:fa:4b:
96:60:6a:17:d5:27:57:6f:50:01:5f:3b:06:fd:07:22:db:bc:
b7:b6:60:1b:3a:bd:81:bb:9f:51:4b:c3:be:ba:7e:bf:45:9b:
34:71:6e:8c:e9:c4:c4:d2:d5:04:3f:39:4f:45:14:b0:50:a8:
93:1f:f4:36:ec:6d:6a:cf:53:61:35:98:55:f9:8c:d8:8e:d3:
37:38:21:1a:2b:db:49:bf:b3:c5:0d:8c:a6:4c:fd:91:b2:d0:
d9:f3:80:d4:19:20:9f:f3:33:e3:f2:ac:27:c7:e1:b7:db:6b:
39:31:9d:d8:24:f1:6b:59:b7:e2:59:30:b6:33:ce:be:57:e6:
f2:fe:98:98:2e:ee:4b:6c:7c:9b:aa:64:d0:4c:78:4c:30:9d:
a4:41:c7:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbwbgUzpM6P3+gwsUdJCHSUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwMzE3MTYzNjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YzMyNTAxMjg0NTFiYzg3YmJjM2QyMmYzZDY1ZDM5YzlkMDdkMzFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmaUXCemkbtBIAJypWKOEq8KJTu6a
bFuMwhjW1oqqHldkjEx57yHQu5bE0uMw5qNs4RmfefBeNOxKri85zOSHX2IzZb4v
zFRH2SNN0NVY7r04UB3WfdAx+tIjDOCwP6qrk4e1G+Mm21NU8QS6mbd6HdYWApGr
HBV4MvTUEYRs4hslLhWNhPU6pxutBicKHZs4dqoBTB3m/Uevu9AUmWWIsnJ3FIzW
4G+duq5i9x0BMVV1/SvNHuUw8zxSeKBWd8Hh1ECC+gsFgzjz/VSGK0FCHhc+N7eL
avPC/YG8EnGn+Ty9hWEQhWQupRWJn9hg1+QhcLzceEPkc6QItq0Zc5JSiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFwyUBKEUbyHu8PSLz1l05ydB9MaMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvWERKUUVvUlJ2SWU3dzlJdlBXWFRuSjBIMHhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowX5MA0G
CSqGSIb3DQEBCwUAA4IBAQA0AmQQa0OfVc7U/eYtS5rLih0LOum0nVil0aeOzRFd
/EOwzOiB3Ju8szGMAQyIqVIUBKNacNdmmqH1sX3bcQJmGt/c/zdCkaqWxBn8ohzV
f4SYSguzfnQyMYHMbAl4lXly9poxDpWYtQ4W+kuWYGoX1SdXb1ABXzsG/Qci27y3
tmAbOr2Bu59RS8O+un6/RZs0cW6M6cTE0tUEPzlPRRSwUKiTH/Q27G1qz1NhNZhV
+YzYjtM3OCEaK9tJv7PFDYymTP2RstDZ84DUGSCf8zPj8qwnx+G322s5MZ3YJPFr
WbfiWTC2M86+V+by/piYLu5LbHybqmTQTHhMMJ2kQcdA
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org