Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/kVVhXLK3O64UmP8hYgf1wT4Kv6M.roa
File: kVVhXLK3O64UmP8hYgf1wT4Kv6M.roa (raw, json)
Hash identifier: 94lezk3gjbw5b7MCVjyUd9S8zAAbvIxeh2q4QXuUhO8=
Subject key identifier: 91:55:61:5C:B2:B7:3B:AE:14:98:FF:21:62:07:F5:C1:3E:0A:BF:A3
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0192BD336EAAA09AB12EE710B990CB13C154
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/kVVhXLK3O64UmP8hYgf1wT4Kv6M.roa
Signing time: Thu 24 Oct 2024 06:25:17 +0000
ROA not before: Thu 24 Oct 2024 06:25:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3257
IP address blocks: 163.5.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Dec 2024 16:40:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:bd:33:6e:aa:a0:9a:b1:2e:e7:10:b9:90:cb:13:c1:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 24 06:25:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9155615cb2b73bae1498ff216207f5c13e0abfa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3d:80:17:e1:6d:61:ce:2d:44:b3:cc:72:ce:
99:08:6c:48:d6:e1:a4:40:c4:59:eb:6a:a0:af:80:
48:df:64:ac:84:29:cd:65:30:e1:a0:82:54:d0:ef:
53:61:cb:bc:2e:88:63:f6:9e:f9:cc:c5:d7:f7:15:
f1:b2:bf:aa:e9:6d:55:ec:28:41:98:25:a2:8a:c8:
77:76:4b:ac:ea:cd:a8:57:15:be:66:c1:58:64:7a:
cf:b0:58:a2:d9:9d:b2:60:65:dc:1d:21:07:e2:cb:
0c:07:0d:22:25:14:ee:dc:68:4d:31:af:54:6c:37:
be:4e:91:fb:31:d6:91:a3:9a:23:ff:a1:17:98:4a:
33:3a:0f:9f:95:d2:87:5c:21:69:90:23:87:32:5f:
99:dc:a2:4d:c8:7d:27:b8:85:25:24:82:b5:68:66:
70:40:37:09:11:3f:04:f0:b6:cc:6c:9a:1d:e1:b1:
bb:60:f3:0f:5a:db:16:a4:17:aa:b1:cf:12:d0:6e:
e9:7b:08:46:32:29:02:13:23:fe:b0:ca:5f:43:13:
05:da:59:3a:bd:bb:06:f0:a9:d9:4f:b9:22:87:3f:
b6:fd:26:0c:04:0e:d1:9a:a5:c8:fc:3b:26:74:8f:
83:3a:fc:d4:44:64:22:b4:5e:86:1d:dd:e6:1c:35:
a5:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:55:61:5C:B2:B7:3B:AE:14:98:FF:21:62:07:F5:C1:3E:0A:BF:A3
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/kVVhXLK3O64UmP8hYgf1wT4Kv6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.209.0/24
Signature Algorithm: sha256WithRSAEncryption
85:3f:dd:a6:88:0f:4e:fc:10:d2:e5:ec:06:ed:1a:e6:b4:a4:
26:80:5f:20:3d:33:08:6a:60:06:c8:f4:b9:dd:6a:a4:78:d5:
72:46:f9:d1:cf:cf:8c:83:bc:d9:52:25:fe:36:6a:ab:61:cc:
97:71:99:ba:94:bb:91:7d:1a:d4:2e:53:28:3e:36:34:35:14:
1a:46:5f:fe:da:6b:bc:4c:e7:31:4a:ea:e5:3f:f1:d2:59:c3:
81:05:8c:4d:97:8f:55:c1:09:a2:fa:59:66:25:67:74:ec:bf:
c0:d8:9a:94:76:03:6f:f1:85:ee:7b:35:f5:6d:2f:23:a6:28:
f0:cb:94:b7:b0:54:41:29:cf:94:da:f7:f7:29:a8:93:1f:6b:
54:38:8e:3e:f1:2f:f5:63:e4:0d:f8:e0:ac:ec:b8:b7:5e:27:
35:b0:e3:07:26:67:1d:76:46:d7:5e:42:47:56:b0:7f:a0:cd:
fa:3a:73:6f:ab:b6:37:e6:df:06:15:b6:10:65:cd:7a:69:c5:
c6:29:4f:a9:75:db:f4:90:78:d9:10:32:4b:d0:00:1c:2b:33:
d8:9c:e3:ae:55:14:4d:3c:df:96:93:ed:f6:9d:13:59:cf:e2:
87:8b:ba:6b:26:9f:54:c6:38:be:af:0e:a1:4d:14:da:bf:6c:
ae:2e:b5:68
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZK9M26qoJqxLucQuZDLE8FUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQxMDI0MDYyNTE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTU1NjE1Y2IyYjczYmFlMTQ5OGZmMjE2MjA3ZjVjMTNlMGFiZmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoz2AF+FtYc4tRLPMcs6ZCGxI1uGk
QMRZ62qgr4BI32SshCnNZTDhoIJU0O9TYcu8Lohj9p75zMXX9xXxsr+q6W1V7ChB
mCWiish3dkus6s2oVxW+ZsFYZHrPsFii2Z2yYGXcHSEH4ssMBw0iJRTu3GhNMa9U
bDe+TpH7MdaRo5oj/6EXmEozOg+fldKHXCFpkCOHMl+Z3KJNyH0nuIUlJIK1aGZw
QDcJET8E8LbMbJod4bG7YPMPWtsWpBeqsc8S0G7pewhGMikCEyP+sMpfQxMF2lk6
vbsG8KnZT7kihz+2/SYMBA7RmqXI/DsmdI+DOvzURGQitF6GHd3mHDWlGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJFVYVyytzuuFJj/IWIH9cE+Cr+jMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEva1ZWaFhMSzNPNjRVbVA4aFlnZjF3VDRLdjZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowXRMA0G
CSqGSIb3DQEBCwUAA4IBAQCFP92miA9O/BDS5ewG7RrmtKQmgF8gPTMIamAGyPS5
3WqkeNVyRvnRz8+Mg7zZUiX+NmqrYcyXcZm6lLuRfRrULlMoPjY0NRQaRl/+2mu8
TOcxSurlP/HSWcOBBYxNl49VwQmi+llmJWd07L/A2JqUdgNv8YXuezX1bS8jpijw
y5S3sFRBKc+U2vf3KaiTH2tUOI4+8S/1Y+QN+OCs7Li3Xic1sOMHJmcddkbXXkJH
VrB/oM36OnNvq7Y35t8GFbYQZc16acXGKU+pddv0kHjZEDJL0AAcKzPYnOOuVRRN
PN+Wk+32nRNZz+KHi7prJp9Uxji+rw6hTRTav2yuLrVo
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:36:45 2025 by rpki-client