Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/itWgrdgoWhtLQAfIDtV5f37NVHM.roa
File: itWgrdgoWhtLQAfIDtV5f37NVHM.roa (raw, json)
Hash identifier: w6oUrW7Jm/AEadaZ11KZqorWe02uhwoWLGnXLOSDPMI=
Subject key identifier: 8A:D5:A0:AD:D8:28:5A:1B:4B:40:07:C8:0E:D5:79:7F:7E:CD:54:73
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01857042CD8B93819E3A04280D51544CD0C6
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/itWgrdgoWhtLQAfIDtV5f37NVHM.roa
Signing time: Mon 02 Jan 2023 02:15:04 +0000
ROA not before: Mon 02 Jan 2023 02:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 163.5.163.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:cd:8b:93:81:9e:3a:04:28:0d:51:54:4c:d0:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 02:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ad5a0add8285a1b4b4007c80ed5797f7ecd5473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:4f:2f:f8:92:c5:eb:97:82:67:c1:a1:6e:3f:
4f:97:1b:34:cc:bb:bd:79:29:2f:b0:56:59:90:73:
ee:bc:94:82:a7:28:cc:1e:76:31:48:fb:95:48:1a:
16:4f:ba:1e:42:16:61:14:54:dc:e6:fd:9e:73:27:
9d:b2:d1:ed:ac:5d:8e:ff:b8:89:3b:c8:9d:db:0c:
11:63:c9:e6:b4:5a:0e:9b:05:8a:ff:33:f5:e2:86:
c0:1c:8a:00:9b:a3:e5:66:30:78:c2:5d:35:8a:7c:
12:3f:5a:ce:fe:d2:f6:4c:5c:f7:04:0e:16:c4:93:
5f:f0:77:0f:40:58:9c:ab:e4:34:08:8f:c8:bb:8f:
39:32:2c:de:71:9c:6b:ac:60:db:42:9b:96:90:7d:
10:fb:4d:ef:f4:be:8c:99:bd:03:7e:ea:2e:76:d2:
e7:53:2e:1f:f1:15:51:b2:2d:7f:20:27:4e:9e:49:
ef:92:5e:66:39:85:ba:14:51:bc:32:91:b2:39:43:
9f:47:30:4e:06:f0:60:b3:54:80:43:aa:78:d7:9f:
d9:a9:bf:5b:89:50:d5:50:34:c6:ab:5f:98:ca:46:
5d:0b:0b:0e:37:79:e3:9b:c7:9a:c7:23:ca:d1:b8:
03:f3:f2:92:42:b1:63:be:63:82:b1:ca:39:95:99:
84:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D5:A0:AD:D8:28:5A:1B:4B:40:07:C8:0E:D5:79:7F:7E:CD:54:73
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/itWgrdgoWhtLQAfIDtV5f37NVHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.163.0/24
Signature Algorithm: sha256WithRSAEncryption
01:1e:4e:3b:1e:5a:7e:d8:ce:23:db:bb:22:b1:bd:13:22:7f:
dd:60:d1:9e:2c:40:60:3b:d6:6f:d4:d0:fe:26:9c:06:0b:a5:
86:e9:33:58:ed:fb:b6:17:b0:fb:c2:2a:4b:ca:24:4b:15:e9:
f6:49:23:0a:a0:78:df:88:43:dd:14:c4:a9:dc:86:73:37:79:
e5:0e:e6:4a:0c:f7:84:f6:71:cd:2e:65:bf:8e:12:af:5d:1b:
c1:e9:97:08:e8:a0:38:14:d6:46:a0:87:10:9d:f7:38:61:2c:
76:ec:df:47:13:50:20:04:e9:71:50:70:c6:3e:d1:1d:d6:59:
56:86:f4:fa:20:a5:52:ff:e7:d9:a5:60:2d:2d:85:d0:32:54:
58:15:5c:0c:fc:5e:1d:66:8b:6e:1a:c8:97:57:f2:b1:38:c3:
7f:e9:be:11:85:7b:0e:3e:19:43:cf:b6:89:d7:6f:fe:75:ad:
7d:dd:f2:ad:30:56:b6:93:75:76:8c:94:3a:30:cd:fd:5b:d1:
db:f2:b9:53:69:08:b7:60:e0:1b:ed:d0:2d:8c:f0:eb:50:8b:
ac:dd:f4:cd:10:21:28:1b:05:60:20:2c:08:40:af:d8:23:5c:
4c:51:9e:79:56:ad:e8:aa:84:1d:0f:12:e9:48:22:97:25:89:
7a:5a:06:a4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwQs2Lk4GeOgQoDVFUTNDGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwMTAyMDIxNTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YWQ1YTBhZGQ4Mjg1YTFiNGI0MDA3YzgwZWQ1Nzk3ZjdlY2Q1NDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiU8v+JLF65eCZ8Ghbj9Plxs0zLu9
eSkvsFZZkHPuvJSCpyjMHnYxSPuVSBoWT7oeQhZhFFTc5v2ecyedstHtrF2O/7iJ
O8id2wwRY8nmtFoOmwWK/zP14obAHIoAm6PlZjB4wl01inwSP1rO/tL2TFz3BA4W
xJNf8HcPQFicq+Q0CI/Iu485MizecZxrrGDbQpuWkH0Q+03v9L6Mmb0DfuoudtLn
Uy4f8RVRsi1/ICdOnknvkl5mOYW6FFG8MpGyOUOfRzBOBvBgs1SAQ6p415/Zqb9b
iVDVUDTGq1+YykZdCwsON3njm8eaxyPK0bgD8/KSQrFjvmOCsco5lZmEgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIrVoK3YKFobS0AHyA7VeX9+zVRzMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvaXRXZ3JkZ29XaHRMUUFmSUR0VjVmMzdOVkhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowWjMA0G
CSqGSIb3DQEBCwUAA4IBAQABHk47Hlp+2M4j27sisb0TIn/dYNGeLEBgO9Zv1ND+
JpwGC6WG6TNY7fu2F7D7wipLyiRLFen2SSMKoHjfiEPdFMSp3IZzN3nlDuZKDPeE
9nHNLmW/jhKvXRvB6ZcI6KA4FNZGoIcQnfc4YSx27N9HE1AgBOlxUHDGPtEd1llW
hvT6IKVS/+fZpWAtLYXQMlRYFVwM/F4dZotuGsiXV/KxOMN/6b4RhXsOPhlDz7aJ
12/+da193fKtMFa2k3V2jJQ6MM39W9Hb8rlTaQi3YOAb7dAtjPDrUIus3fTNECEo
GwVgICwIQK/YI1xMUZ55Vq3oqoQdDxLpSCKXJYl6Wgak
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org