Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vvbRWyHROBEI5nfm0nxS6z9T7Nw.roa
File: vvbRWyHROBEI5nfm0nxS6z9T7Nw.roa (raw, json)
Hash identifier: uDd5zYKTFRrdvkNVMkTL0WA6ycVfkaKLL9Pnswp2lvk=
Subject key identifier: BE:F6:D1:5B:21:D1:38:11:08:E6:77:E6:D2:7C:52:EB:3F:53:EC:DC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018D5AB35B18F61C8BE5EAA02E6A87BBA7B2
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vvbRWyHROBEI5nfm0nxS6z9T7Nw.roa
Signing time: Tue 30 Jan 2024 14:08:40 +0000
ROA not before: Tue 30 Jan 2024 14:08:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 163.5.0.0/24 maxlen: 24
163.5.1.0/24 maxlen: 24
163.5.3.0/24 maxlen: 24
163.5.4.0/24 maxlen: 24
163.5.6.0/24 maxlen: 24
163.5.7.0/24 maxlen: 24
163.5.8.0/24 maxlen: 24
163.5.9.0/24 maxlen: 24
163.5.13.0/24 maxlen: 24
163.5.14.0/24 maxlen: 24
163.5.15.0/24 maxlen: 24
163.5.16.0/24 maxlen: 24
163.5.17.0/24 maxlen: 24
163.5.18.0/24 maxlen: 24
163.5.19.0/24 maxlen: 24
163.5.21.0/24 maxlen: 24
163.5.22.0/24 maxlen: 24
163.5.25.0/24 maxlen: 24
163.5.26.0/24 maxlen: 24
163.5.27.0/24 maxlen: 24
163.5.28.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.53.0/24 maxlen: 24
163.5.54.0/24 maxlen: 24
163.5.56.0/24 maxlen: 24
163.5.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 07:09:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5a:b3:5b:18:f6:1c:8b:e5:ea:a0:2e:6a:87:bb:a7:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 30 14:08:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bef6d15b21d1381108e677e6d27c52eb3f53ecdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9e:1d:69:99:46:09:da:6c:73:62:67:45:ec:
11:3a:bd:fb:be:15:88:c8:5b:d5:3b:55:fa:81:07:
a2:b1:57:15:e2:d6:8d:b8:85:76:fe:49:ee:71:39:
6d:1e:fb:28:ff:96:65:6f:8e:c5:d6:8b:f9:6e:34:
bb:ce:80:30:90:56:b1:7c:3c:e7:d4:33:00:36:12:
20:4f:84:53:cb:b2:bf:82:b8:42:54:2b:e9:cc:78:
c1:ef:8b:58:79:de:53:89:78:be:26:4f:6b:65:1a:
e0:f4:d4:f1:4d:a9:4b:a7:6e:2d:49:a4:a7:37:56:
28:04:d0:6d:4c:60:a6:4a:dd:af:c7:2e:5c:62:17:
89:18:5b:72:7a:8c:27:93:5f:13:9a:9b:3f:0b:36:
05:de:1b:7d:fa:1f:00:78:dc:4f:36:08:d1:a9:d6:
33:66:2a:2c:e4:11:38:b5:25:18:bb:1f:b4:5f:2d:
7e:8d:86:05:7b:28:04:93:1a:bc:63:a4:db:d4:e6:
6e:8d:61:c9:32:f2:24:18:12:71:63:cc:4f:38:c4:
80:f2:5d:d0:de:ff:a1:30:bc:60:4d:6f:2a:17:67:
9a:64:49:90:0c:77:f1:27:92:e7:f0:1f:04:d0:66:
2e:56:d9:60:9d:1b:e1:d5:bd:27:43:51:a4:24:5f:
da:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F6:D1:5B:21:D1:38:11:08:E6:77:E6:D2:7C:52:EB:3F:53:EC:DC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vvbRWyHROBEI5nfm0nxS6z9T7Nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.0.0/23
163.5.3.0-163.5.4.255
163.5.6.0-163.5.9.255
163.5.13.0-163.5.19.255
163.5.21.0-163.5.22.255
163.5.25.0-163.5.28.255
163.5.51.0/24
163.5.53.0-163.5.54.255
163.5.56.0/24
163.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
68:2a:d0:2c:68:5a:b1:00:d5:09:59:54:4f:0e:f4:63:e3:69:
0c:e7:3d:1c:2c:51:1b:ad:69:dc:6d:3d:9e:62:03:85:6b:bc:
9a:00:18:c8:52:7a:3c:2b:8f:4f:ef:5b:8f:96:e6:ed:5c:ce:
f1:0f:b3:03:36:23:9b:67:0e:31:08:a2:48:cc:fb:7e:83:39:
01:80:b7:01:70:1a:b0:f5:26:85:00:ae:78:0a:8c:41:6c:95:
aa:1b:f1:63:35:76:e8:91:5b:a7:45:63:3a:3e:21:5a:cf:ac:
f4:53:c9:fa:9f:65:cc:7f:84:34:1e:47:7c:26:5a:36:98:94:
9a:95:03:19:1a:3e:77:8c:51:48:3a:40:3f:92:f4:20:35:39:
a1:52:27:45:cd:73:e5:fd:f9:4f:2d:18:f2:6f:fa:fd:fd:bb:
e2:78:cc:31:1e:f6:55:ff:ae:13:ba:5b:e9:7d:9d:af:87:e4:
1f:51:1c:9c:0b:64:e3:1b:e3:6b:ce:11:ab:70:22:40:42:e4:
af:66:bd:38:4f:69:2e:31:19:93:93:21:f7:8b:aa:98:58:a9:
8d:c8:44:b7:42:69:45:26:f2:92:8c:cc:20:fc:39:57:81:58:
dd:93:8b:ac:76:02:17:bf:be:e7:dc:8c:c8:39:57:06:17:f4:
73:46:69:c1
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAY1as1sY9hyL5eqgLmqHu6eyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwMTMwMTQwODQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZWY2ZDE1YjIxZDEzODExMDhlNjc3ZTZkMjdjNTJlYjNmNTNlY2RjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo54daZlGCdpsc2JnRewROr37vhWI
yFvVO1X6gQeisVcV4taNuIV2/knucTltHvso/5Zlb47F1ov5bjS7zoAwkFaxfDzn
1DMANhIgT4RTy7K/grhCVCvpzHjB74tYed5TiXi+Jk9rZRrg9NTxTalLp24tSaSn
N1YoBNBtTGCmSt2vxy5cYheJGFtyeownk18Tmps/CzYF3ht9+h8AeNxPNgjRqdYz
Zios5BE4tSUYux+0Xy1+jYYFeygEkxq8Y6Tb1OZujWHJMvIkGBJxY8xPOMSA8l3Q
3v+hMLxgTW8qF2eaZEmQDHfxJ5Ln8B8E0GYuVtlgnRvh1b0nQ1GkJF/alQIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFL720Vsh0TgRCOZ35tJ8Uus/U+zcMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvdnZiUld5SFJPQkVJNW5mbTBueFM2ejlUN053LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEAaMFADAM
AwQAowUDAwQAowUEMAwDBAGjBQYDBAGjBQgwDAMEAKMFDQMEAqMFEDAMAwQAowUV
AwQAowUWMAwDBACjBRkDBACjBRwDBACjBTMwDAMEAKMFNQMEAKMFNgMEAKMFOAME
AKMFQTANBgkqhkiG9w0BAQsFAAOCAQEAaCrQLGhasQDVCVlUTw70Y+NpDOc9HCxR
G61p3G09nmIDhWu8mgAYyFJ6PCuPT+9bj5bm7VzO8Q+zAzYjm2cOMQiiSMz7foM5
AYC3AXAasPUmhQCueAqMQWyVqhvxYzV26JFbp0VjOj4hWs+s9FPJ+p9lzH+ENB5H
fCZaNpiUmpUDGRo+d4xRSDpAP5L0IDU5oVInRc1z5f35Ty0Y8m/6/f274njMMR72
Vf+uE7pb6X2dr4fkH1EcnAtk4xvja84Rq3AiQELkr2a9OE9pLjEZk5Mh94uqmFip
jchEt0JpRSbykozMIPw5V4FY3ZOLrHYCF7++59yMyDlXBhf0c0ZpwQ==
-----END CERTIFICATE-----
Generated at Wed Jan 31 09:31:28 2024 by rpki-client on console-ams.rpki-client.org