Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/y-jT6wwb1KmdcbQFxul5QKLbbMA.roa
File: y-jT6wwb1KmdcbQFxul5QKLbbMA.roa (raw, json)
Hash identifier: OEjzWemKlaEPMZm8I62e4klLucBH2BGEJUxPpVA754g=
Subject key identifier: CB:E8:D3:EB:0C:1B:D4:A9:9D:71:B4:05:C6:E9:79:40:A2:DB:6C:C0
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018AE1079D2497CA4F6CD65DF147E878FC0A
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/y-jT6wwb1KmdcbQFxul5QKLbbMA.roa
Signing time: Fri 29 Sep 2023 13:01:27 +0000
ROA not before: Fri 29 Sep 2023 13:01:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197789
IP address blocks: 163.5.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e1:07:9d:24:97:ca:4f:6c:d6:5d:f1:47:e8:78:fc:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 29 13:01:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cbe8d3eb0c1bd4a99d71b405c6e97940a2db6cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:69:72:51:98:b6:31:7f:87:c8:0a:e1:7c:6a:
49:95:63:c2:93:bd:17:d4:1d:ab:43:f9:35:15:ee:
84:a7:b7:ad:76:d2:d6:f0:ab:c4:2b:8f:e9:f4:36:
26:9a:77:a4:ca:27:c4:ad:9f:31:e0:e0:6c:c2:77:
3b:57:8c:d0:28:23:0e:27:63:8d:39:82:f3:f5:74:
bd:c6:76:56:85:cd:71:77:43:74:30:a0:b7:b8:69:
f4:df:6f:14:1a:a3:35:46:79:26:dc:d4:cd:a2:b8:
0b:e9:4b:fe:a5:88:d6:fd:f9:f5:ec:8e:57:9e:a2:
53:82:1a:88:96:d7:eb:52:f9:e6:80:78:a3:b5:3c:
1e:bd:1f:f3:13:b3:3a:d0:c5:ce:80:48:1a:d5:c1:
68:de:57:d9:60:35:b8:ce:06:8d:08:b6:d4:7d:02:
06:a3:4a:9f:50:8c:de:db:6b:09:f7:f9:7c:d9:5d:
18:27:1c:7b:3e:87:23:fe:65:0e:64:8c:74:26:41:
6f:a6:83:06:95:33:80:18:32:84:d4:e6:25:19:ad:
8d:45:95:27:ec:97:d4:b6:bf:0b:fd:da:39:92:6a:
6e:c3:11:2e:c9:93:62:b8:cf:9c:95:f0:af:5e:ee:
01:3b:21:38:85:04:d7:f7:bc:5d:73:10:11:9a:7f:
e9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:E8:D3:EB:0C:1B:D4:A9:9D:71:B4:05:C6:E9:79:40:A2:DB:6C:C0
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/y-jT6wwb1KmdcbQFxul5QKLbbMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.115.0/24
Signature Algorithm: sha256WithRSAEncryption
45:16:ee:c5:75:21:c7:75:b7:9c:a1:73:e4:d7:ac:f1:a4:f4:
97:a2:b4:05:a8:c6:cd:e6:ab:05:f0:59:a5:15:f8:90:16:64:
bf:e1:dc:2b:3c:84:0d:8a:2a:99:79:21:16:c0:6a:0d:35:de:
38:56:75:92:d8:c9:05:83:5f:ad:5b:44:91:22:91:68:73:58:
3e:3e:63:e8:ab:d7:58:72:73:76:28:d0:6b:0b:61:a5:ec:69:
ad:a0:e1:ed:6a:62:85:da:2c:78:6d:52:a9:12:63:a9:ff:0a:
c1:d2:3d:28:d0:28:08:2d:2e:1a:49:f3:b7:15:13:a3:6d:83:
44:c2:b7:b3:63:3a:b1:e9:01:ff:41:69:51:2c:b9:59:4d:aa:
d9:ea:c6:dd:23:0f:28:bc:4f:ee:15:bf:1a:03:1f:97:b6:69:
1f:59:09:0d:6b:93:84:76:5e:f2:b5:7d:74:49:9b:86:00:ae:
cc:5c:b7:c7:86:6d:ad:53:fe:cf:73:b9:d9:23:bc:01:a3:d3:
4f:ee:80:66:7c:45:25:57:81:3e:47:46:eb:15:2c:40:3d:80:
6c:2e:42:2d:e3:56:28:9b:d1:ab:82:a4:a5:a4:26:47:da:2a:
fa:ee:6e:c7:8e:ac:e0:89:be:00:91:ec:e0:99:24:c6:77:bc:
42:fb:03:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrhB50kl8pPbNZd8UfoePwKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwOTI5MTMwMTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYmU4ZDNlYjBjMWJkNGE5OWQ3MWI0MDVjNmU5Nzk0MGEyZGI2Y2MwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5WlyUZi2MX+HyArhfGpJlWPCk70X
1B2rQ/k1Fe6Ep7etdtLW8KvEK4/p9DYmmnekyifErZ8x4OBswnc7V4zQKCMOJ2ON
OYLz9XS9xnZWhc1xd0N0MKC3uGn0328UGqM1Rnkm3NTNorgL6Uv+pYjW/fn17I5X
nqJTghqIltfrUvnmgHijtTwevR/zE7M60MXOgEga1cFo3lfZYDW4zgaNCLbUfQIG
o0qfUIze22sJ9/l82V0YJxx7Pocj/mUOZIx0JkFvpoMGlTOAGDKE1OYlGa2NRZUn
7JfUtr8L/do5kmpuwxEuyZNiuM+clfCvXu4BOyE4hQTX97xdcxARmn/p3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMvo0+sMG9SpnXG0BcbpeUCi22zAMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEveS1qVDZ3d2IxS21kY2JRRnh1bDVRS0xiYk1BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowVzMA0G
CSqGSIb3DQEBCwUAA4IBAQBFFu7FdSHHdbecoXPk16zxpPSXorQFqMbN5qsF8Fml
FfiQFmS/4dwrPIQNiiqZeSEWwGoNNd44VnWS2MkFg1+tW0SRIpFoc1g+PmPoq9dY
cnN2KNBrC2Gl7GmtoOHtamKF2ix4bVKpEmOp/wrB0j0o0CgILS4aSfO3FROjbYNE
wrezYzqx6QH/QWlRLLlZTarZ6sbdIw8ovE/uFb8aAx+XtmkfWQkNa5OEdl7ytX10
SZuGAK7MXLfHhm2tU/7Pc7nZI7wBo9NP7oBmfEUlV4E+R0brFSxAPYBsLkIt41Yo
m9GrgqSlpCZH2ir67m7Hjqzgib4AkezgmSTGd7xC+wP4
-----END CERTIFICATE-----
Generated at Mon Oct 30 04:57:45 2023 by rpki-client on console-ams.rpki-client.org