Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/k8pHA5MHY077aEogvuulZc3wUzA.roa
File: k8pHA5MHY077aEogvuulZc3wUzA.roa (raw, json)
Hash identifier: GByASHl0tMnnRIQCvRsqpHEv1aIlqnlohHLUp7zRVjU=
Subject key identifier: 93:CA:47:03:93:07:63:4E:FB:68:4A:20:BE:EB:A5:65:CD:F0:53:30
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01882F0C978E2E16DD45A4FECF1AE06A8952
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/k8pHA5MHY077aEogvuulZc3wUzA.roa
Signing time: Thu 18 May 2023 13:28:54 +0000
ROA not before: Thu 18 May 2023 13:28:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 163.5.71.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.229.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.238.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.60.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2f:0c:97:8e:2e:16:dd:45:a4:fe:cf:1a:e0:6a:89:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 18 13:28:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93ca47039307634efb684a20beeba565cdf05330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0c:24:cc:78:bb:a7:08:78:72:8d:95:59:42:
28:53:d5:c0:8d:32:62:e1:6e:16:d6:d8:cd:44:55:
8c:29:84:84:30:b5:a6:cb:b4:44:1e:33:44:47:48:
17:fc:62:f4:c4:c5:05:f4:f9:6c:7d:a1:32:58:53:
25:1e:98:ca:68:cf:9d:85:a0:0f:96:f5:61:a9:43:
8e:5f:ed:18:25:e6:93:31:35:78:8f:2a:bf:4f:b4:
70:8d:50:41:67:42:7a:a5:79:9e:31:24:f7:51:9a:
2c:e3:64:8c:59:39:4f:3f:dd:da:87:7d:94:87:bc:
47:90:9e:ca:7f:25:0e:a0:d1:75:5b:52:ea:b4:61:
01:ef:b0:9d:da:60:20:47:f9:cb:75:60:45:00:c5:
52:3e:29:88:d5:44:ef:30:a6:3c:64:b6:9d:f6:f0:
45:63:9d:6c:2f:c9:b4:6e:b1:44:5e:12:ff:9a:ad:
77:88:6e:9a:ed:d3:a1:d0:8f:82:f0:f4:ea:af:02:
28:23:bc:4b:ca:23:24:98:76:58:30:95:ee:fb:10:
ec:46:ec:12:b0:ab:50:ed:29:88:ac:de:a4:39:a1:
6d:5c:51:d2:10:4b:77:ad:4e:26:6a:db:80:71:69:
0b:65:a2:bc:21:1e:02:fb:19:d8:f3:9e:7a:bd:16:
c9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:CA:47:03:93:07:63:4E:FB:68:4A:20:BE:EB:A5:65:CD:F0:53:30
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/k8pHA5MHY077aEogvuulZc3wUzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.39.0/24
163.5.60.0/24
163.5.71.0/24
163.5.93.0/24
163.5.101.0-163.5.102.255
163.5.108.0/24
163.5.116.0/24
163.5.131.0/24
163.5.134.0/24
163.5.174.0/24
163.5.189.0/24
163.5.192.0/24
163.5.225.0/24
163.5.228.0/23
163.5.238.0/24
163.5.246.0/24
Signature Algorithm: sha256WithRSAEncryption
22:88:4a:6c:91:0d:a7:e9:c0:c6:a2:00:cb:c8:fc:04:ab:6f:
38:59:91:9c:1b:b0:a4:c1:26:d4:ac:d5:fc:e2:4e:41:f5:0a:
c5:9b:35:0a:a9:4a:a0:3f:10:f6:92:53:0a:a4:f8:78:84:bb:
b2:12:7e:4c:e5:e6:18:11:3f:2e:32:87:8e:c7:94:8f:d3:db:
7f:18:e2:e9:7d:72:ac:3f:f0:e9:28:6f:9e:00:e1:44:9b:31:
02:2a:87:c0:21:6e:fd:77:58:bc:c1:43:b0:2a:ed:b7:08:65:
ed:7d:7d:06:ad:c7:fe:c2:1e:b6:f4:56:c4:53:dc:4a:97:5c:
9d:aa:b1:13:cc:3b:cb:a7:04:91:a2:a7:c4:b1:66:a1:2a:e1:
82:40:40:56:0a:a0:a2:5d:ec:93:5c:72:27:50:8e:a5:e1:f8:
14:7e:9e:08:cf:54:43:ee:00:42:82:24:f1:bf:97:8d:22:cd:
65:2a:59:95:59:80:df:05:3e:9b:98:bb:cd:5f:4b:11:7d:09:
92:f1:24:53:92:8d:3e:a9:d4:15:16:6b:77:54:4c:9b:b5:d5:
b6:3a:70:f3:1f:77:84:e1:1d:84:36:e0:f6:b7:c9:83:9d:89:
66:e2:55:61:fd:7c:dc:f8:d9:f7:e0:9f:65:6d:7e:fd:38:53:
ec:f1:8c:55
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgISAYgvDJeOLhbdRaT+zxrgaolSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwNTE4MTMyODU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2NhNDcwMzkzMDc2MzRlZmI2ODRhMjBiZWViYTU2NWNkZjA1MzMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQwkzHi7pwh4co2VWUIoU9XAjTJi
4W4W1tjNRFWMKYSEMLWmy7REHjNER0gX/GL0xMUF9PlsfaEyWFMlHpjKaM+dhaAP
lvVhqUOOX+0YJeaTMTV4jyq/T7RwjVBBZ0J6pXmeMST3UZos42SMWTlPP93ah32U
h7xHkJ7KfyUOoNF1W1LqtGEB77Cd2mAgR/nLdWBFAMVSPimI1UTvMKY8ZLad9vBF
Y51sL8m0brFEXhL/mq13iG6a7dOh0I+C8PTqrwIoI7xLyiMkmHZYMJXu+xDsRuwS
sKtQ7SmIrN6kOaFtXFHSEEt3rU4matuAcWkLZaK8IR4C+xnY8556vRbJUwIDAQAB
o4ICbDCCAmgwHQYDVR0OBBYEFJPKRwOTB2NO+2hKIL7rpWXN8FMwMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvazhwSEE1TUhZMDc3YUVvZ3Z1dWxaYzN3VXpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGBBggrBgEFBQcBBwEB/wRyMHAwbgQCAAEwaAMEAKMFJwME
AKMFPAMEAKMFRwMEAKMFXTAMAwQAowVlAwQAowVmAwQAowVsAwQAowV0AwQAowWD
AwQAowWGAwQAowWuAwQAowW9AwQAowXAAwQAowXhAwQBowXkAwQAowXuAwQAowX2
MA0GCSqGSIb3DQEBCwUAA4IBAQAiiEpskQ2n6cDGogDLyPwEq284WZGcG7CkwSbU
rNX84k5B9QrFmzUKqUqgPxD2klMKpPh4hLuyEn5M5eYYET8uMoeOx5SP09t/GOLp
fXKsP/DpKG+eAOFEmzECKofAIW79d1i8wUOwKu23CGXtfX0Grcf+wh629FbEU9xK
l1ydqrETzDvLpwSRoqfEsWahKuGCQEBWCqCiXeyTXHInUI6l4fgUfp4Iz1RD7gBC
giTxv5eNIs1lKlmVWYDfBT6bmLvNX0sRfQmS8SRTko0+qdQVFmt3VEybtdW2OnDz
H3eE4R2ENuD2t8mDnYlm4lVh/Xzc+Nn34J9lbX79OFPs8YxV
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-ams.rpki-client.org