Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/fI3AH0QfP2tuAy1XgD7XkWAuQec.roa
File: fI3AH0QfP2tuAy1XgD7XkWAuQec.roa (raw, json)
Hash identifier: qwg7Qef7l4Q0T4v/8MPJ7gmL5AQ6r1hoAnWzojrzGM4=
Subject key identifier: 7C:8D:C0:1F:44:1F:3F:6B:6E:03:2D:57:80:3E:D7:91:60:2E:41:E7
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01914A99D021F280C4F571F93CFD5F2AA0F4
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/fI3AH0QfP2tuAy1XgD7XkWAuQec.roa
Signing time: Tue 13 Aug 2024 07:17:59 +0000
ROA not before: Tue 13 Aug 2024 07:17:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 163.5.34.0/24 maxlen: 24
163.5.211.0/24 maxlen: 24
163.5.245.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 20:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4a:99:d0:21:f2:80:c4:f5:71:f9:3c:fd:5f:2a:a0:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 13 07:17:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c8dc01f441f3f6b6e032d57803ed791602e41e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:74:af:b1:a1:94:16:c6:89:51:f4:e8:50:24:
cd:1a:54:85:d3:14:57:0e:b5:21:4c:22:c0:26:76:
8b:8e:41:6c:52:31:e0:de:01:2f:6e:84:51:17:cc:
15:00:44:20:b3:b9:9c:64:4c:f7:e9:cc:4f:a5:34:
06:99:ba:b1:90:50:03:85:9d:86:f5:07:ef:4b:b5:
9c:17:04:d3:68:a1:69:4a:36:70:11:5a:23:e4:09:
d0:da:f8:fc:dd:ed:b2:01:a4:66:14:ad:32:9a:f0:
13:36:0c:05:40:c4:60:c6:b7:60:07:ad:60:99:12:
91:2f:4c:28:ae:e8:f9:fb:98:55:75:c3:36:0f:ea:
17:d7:3f:4f:9c:38:d9:22:77:cd:ae:b1:63:0a:9f:
ea:e5:9c:42:cd:9d:c1:30:b2:cd:6c:f6:fd:62:2c:
2a:53:b6:0b:0d:d2:a9:6f:d0:cf:32:d6:41:b2:a8:
af:2b:33:8a:0e:8a:de:04:c0:14:be:1d:2d:ec:4f:
45:91:a2:30:4b:26:79:7f:0d:c5:60:16:b0:6d:a6:
46:5c:a2:2f:c7:18:04:60:46:6b:96:7c:ac:5e:28:
b5:c9:fe:8b:79:a2:b9:58:87:5a:66:d0:ab:cf:0c:
f2:27:1e:0d:67:e9:13:ef:dc:52:65:f3:0c:96:d4:
80:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:8D:C0:1F:44:1F:3F:6B:6E:03:2D:57:80:3E:D7:91:60:2E:41:E7
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/fI3AH0QfP2tuAy1XgD7XkWAuQec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.34.0/24
163.5.211.0/24
163.5.245.0/24
163.5.247.0/24
Signature Algorithm: sha256WithRSAEncryption
55:e7:8f:90:69:52:8b:8a:00:e6:ad:e7:72:7f:b8:2b:93:fa:
fb:79:61:ab:f8:c5:cd:4b:85:45:fe:51:4c:d9:ac:d8:31:2e:
af:a5:a0:d0:40:95:8d:0e:a5:30:c4:9e:10:0e:2d:a9:64:f6:
b1:ef:d9:ff:b2:f7:92:87:12:e3:e5:e8:ef:e6:68:0d:2a:7f:
ae:7d:80:81:73:07:e6:6c:75:cf:69:a3:f6:03:bb:af:8f:04:
ba:30:c7:cc:61:e1:1f:28:ab:a1:80:e5:1f:77:86:4f:f8:3c:
67:e0:ca:7e:af:59:31:42:30:70:e8:04:ea:04:26:27:97:92:
b7:33:69:f4:71:f4:d7:c8:97:8f:4d:89:a3:b4:06:ad:da:21:
1e:ba:22:d4:9a:17:34:20:d0:3f:df:5d:20:57:6d:4c:07:7c:
c4:a5:d5:27:1b:a1:d0:5e:52:44:74:f1:de:29:0d:74:ef:b8:
d7:d5:76:ba:9b:0d:5e:92:21:0d:ab:79:28:0e:02:3a:ec:6c:
d5:01:14:e0:92:bb:f2:85:b3:ec:b7:ee:c6:83:ac:d5:3d:51:
cf:7d:eb:22:d0:4d:81:18:1a:cd:7c:58:d9:7e:1f:d9:10:15:
20:bc:86:0a:ba:d1:f6:b6:a2:58:69:f0:0f:0d:67:4b:c8:43:
53:29:fd:72
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAZFKmdAh8oDE9XH5PP1fKqD0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwODEzMDcxNzU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YzhkYzAxZjQ0MWYzZjZiNmUwMzJkNTc4MDNlZDc5MTYwMmU0MWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjXSvsaGUFsaJUfToUCTNGlSF0xRX
DrUhTCLAJnaLjkFsUjHg3gEvboRRF8wVAEQgs7mcZEz36cxPpTQGmbqxkFADhZ2G
9QfvS7WcFwTTaKFpSjZwEVoj5AnQ2vj83e2yAaRmFK0ymvATNgwFQMRgxrdgB61g
mRKRL0woruj5+5hVdcM2D+oX1z9PnDjZInfNrrFjCp/q5ZxCzZ3BMLLNbPb9Yiwq
U7YLDdKpb9DPMtZBsqivKzOKDoreBMAUvh0t7E9FkaIwSyZ5fw3FYBawbaZGXKIv
xxgEYEZrlnysXii1yf6LeaK5WIdaZtCrzwzyJx4NZ+kT79xSZfMMltSA1QIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFHyNwB9EHz9rbgMtV4A+15FgLkHnMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvZkkzQUgwUWZQMnR1QXkxWGdEN1hrV0F1UWVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAowUiAwQA
owXTAwQAowX1AwQAowX3MA0GCSqGSIb3DQEBCwUAA4IBAQBV54+QaVKLigDmredy
f7grk/r7eWGr+MXNS4VF/lFM2azYMS6vpaDQQJWNDqUwxJ4QDi2pZPax79n/sveS
hxLj5ejv5mgNKn+ufYCBcwfmbHXPaaP2A7uvjwS6MMfMYeEfKKuhgOUfd4ZP+Dxn
4Mp+r1kxQjBw6ATqBCYnl5K3M2n0cfTXyJePTYmjtAat2iEeuiLUmhc0INA/310g
V21MB3zEpdUnG6HQXlJEdPHeKQ1077jX1Xa6mw1ekiENq3koDgI67GzVARTgkrvy
hbPst+7Gg6zVPVHPfesi0E2BGBrNfFjZfh/ZEBUgvIYKutH2tqJYafAPDWdLyENT
Kf1y
-----END CERTIFICATE-----
Generated at Mon Aug 19 23:51:28 2024 by rpki-client on console-ams.rpki-client.org