Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/rrF_a9nykXPXvLjm9yk_iQOzG68.roa
File: rrF_a9nykXPXvLjm9yk_iQOzG68.roa (raw, json)
Hash identifier: djnUfjq0zaqP2n4Puoamxnn/R+MXNyiKEFQlXFBHbfI=
Subject key identifier: AE:B1:7F:6B:D9:F2:91:73:D7:BC:B8:E6:F7:29:3F:89:03:B3:1B:AF
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0185BB6B7C1FD335E3245ADAD8035E1D9A05
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/rrF_a9nykXPXvLjm9yk_iQOzG68.roa
Signing time: Mon 16 Jan 2023 16:31:01 +0000
ROA not before: Mon 16 Jan 2023 16:31:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204372
IP address blocks: 163.5.233.0/24 maxlen: 24
163.5.227.0/24 maxlen: 24
163.5.230.0/24 maxlen: 24
163.5.239.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.244.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.254.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.107.0/24 maxlen: 24
163.5.31.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.202.0/24 maxlen: 24
163.5.211.0/24 maxlen: 24
163.5.210.0/24 maxlen: 24
163.5.221.0/24 maxlen: 24
163.5.226.0/24 maxlen: 24
163.5.222.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.127.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.145.0/24 maxlen: 24
163.5.149.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.166.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bb:6b:7c:1f:d3:35:e3:24:5a:da:d8:03:5e:1d:9a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 16 16:31:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aeb17f6bd9f29173d7bcb8e6f7293f8903b31baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:54:f5:17:d5:8c:19:eb:04:e5:91:a6:fc:ee:
50:fd:74:e4:0d:18:f4:b2:24:c1:09:67:a2:b4:94:
f1:46:51:c5:8b:eb:66:14:1b:0b:e5:0c:ab:b1:d2:
3c:b1:e1:df:f9:c1:02:ea:5e:bb:44:db:af:86:e6:
56:b8:68:2d:f1:c5:68:1e:a3:60:bb:74:03:d4:fc:
3a:11:fd:31:9d:67:22:65:4c:1e:95:47:c9:32:f9:
52:29:e3:de:97:c7:7b:ad:4d:4f:cd:ab:b2:55:34:
4d:00:41:00:c2:20:d6:b6:c9:54:a9:c2:3f:e2:68:
06:13:d0:a1:e5:76:27:3a:96:78:81:aa:e1:3e:0d:
31:d2:db:e7:e3:46:85:cb:ac:d9:0d:e7:0f:b0:0c:
22:56:3a:7c:45:b8:58:46:b9:3c:59:f0:df:27:b7:
d5:59:c3:dd:24:d6:e5:e9:47:da:8e:07:0e:1b:b6:
1f:50:44:43:fa:5a:91:b8:a0:bc:3f:4d:89:2c:38:
1f:1c:c9:71:47:69:15:c8:1a:ad:ff:90:61:4b:25:
29:a3:48:98:da:8f:6b:2e:a7:5f:57:f6:a3:ce:71:
32:48:5d:21:cc:5c:5e:5b:04:9b:b0:f2:8e:11:f2:
4f:6b:a3:4d:c4:f0:05:68:37:04:0e:63:b9:31:d0:
32:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:B1:7F:6B:D9:F2:91:73:D7:BC:B8:E6:F7:29:3F:89:03:B3:1B:AF
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/rrF_a9nykXPXvLjm9yk_iQOzG68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.31.0/24
163.5.35.0/24
163.5.99.0-163.5.100.255
163.5.107.0/24
163.5.127.0/24
163.5.130.0/24
163.5.132.0/23
163.5.136.0/24
163.5.138.0/24
163.5.145.0/24
163.5.149.0/24
163.5.158.0/24
163.5.161.0/24
163.5.166.0/24
163.5.202.0/24
163.5.210.0/23
163.5.221.0-163.5.222.255
163.5.226.0/23
163.5.230.0/24
163.5.233.0/24
163.5.239.0-163.5.241.255
163.5.244.0/24
163.5.246.0/24
163.5.248.0/24
163.5.254.0/24
Signature Algorithm: sha256WithRSAEncryption
66:a9:c8:ff:00:a1:be:71:c6:1b:b8:b4:0a:ed:e2:3b:e3:c0:
52:c2:67:a6:fa:fa:d4:87:5a:e5:d9:1a:30:3e:47:59:98:d9:
4d:58:46:cb:d6:38:b9:10:a1:01:5b:8d:45:b9:59:bf:7f:a9:
e2:a5:42:b2:cd:d1:14:02:a3:5d:68:d5:eb:f1:aa:14:00:cb:
ff:5b:8a:52:f4:0c:fa:74:41:72:82:cd:63:ed:ea:bd:19:ea:
94:8b:a9:fc:cc:8e:49:d7:b7:22:af:a5:cd:fc:d3:3b:74:d0:
71:2d:ac:3b:61:7c:8f:b4:68:6c:10:11:f7:c4:4e:72:de:b0:
82:81:74:4c:bd:cf:ad:70:fc:f4:e5:0c:32:33:27:21:60:fb:
53:f2:c9:4d:e8:70:a8:c8:cc:80:f8:94:a8:1a:43:77:49:9c:
dc:3e:3f:c6:18:95:3c:29:fb:a1:5f:fc:35:6d:c3:3f:9f:12:
ef:94:bd:82:ac:1b:45:2d:75:78:4c:be:32:ff:2e:0f:5f:0b:
1f:be:1c:75:f4:ba:79:28:18:20:05:45:a5:99:44:87:08:bc:
a5:fb:9f:81:dd:50:88:88:9f:27:7d:6e:6a:f4:69:42:ea:9f:
bd:fa:2d:07:7d:8e:91:33:42:54:a8:46:c8:b9:54:46:b0:c3:
38:56:96:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org