Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4JDM8IqW-fwzt5uYjKBM26MYA_s.roa
File: 4JDM8IqW-fwzt5uYjKBM26MYA_s.roa (raw, json)
Hash identifier: 2egBfNrxwbFlfranmxuXAuGgcig6pST7awl9VfgwhuU=
Subject key identifier: E0:90:CC:F0:8A:96:F9:FC:33:B7:9B:98:8C:A0:4C:DB:A3:18:03:FB
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01857042B53084D1398476CC73BE3A971AD2
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4JDM8IqW-fwzt5uYjKBM26MYA_s.roa
Signing time: Mon 02 Jan 2023 02:14:58 +0000
ROA not before: Mon 02 Jan 2023 02:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7118
IP address blocks: 163.5.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 May 2023 09:14:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:b5:30:84:d1:39:84:76:cc:73:be:3a:97:1a:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 02:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e090ccf08a96f9fc33b79b988ca04cdba31803fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:48:c4:70:f5:1e:13:2b:8f:39:29:1a:86:83:
ee:e5:33:8e:99:25:7d:37:cb:a5:aa:19:8c:9c:74:
9f:2e:1e:fb:bf:e9:a5:e2:31:6c:2b:3c:25:3f:dc:
4a:9d:19:18:b2:d7:9a:d2:78:8b:c8:0f:20:4e:bd:
b5:8b:1b:86:fe:23:88:19:1f:e7:f2:cc:d6:dc:3c:
fc:67:e1:f0:b8:bd:8d:8d:9a:d2:d4:d4:11:34:e1:
b8:a5:67:7b:3b:41:fd:ed:7d:ba:8c:05:be:90:4c:
9d:b9:89:58:f8:83:92:25:fb:6a:8b:8d:d4:18:89:
7e:3d:ed:24:75:60:3b:46:21:57:c8:63:1e:87:3b:
3d:22:3c:58:ec:58:93:0d:d9:54:bf:18:67:a5:22:
13:02:26:b7:f8:30:bc:f7:25:1f:29:cf:49:86:72:
f1:b9:5a:b2:2f:76:fb:be:cc:c9:10:23:85:1c:7b:
5a:db:28:f6:f6:38:cb:6d:f6:fc:d9:64:de:fc:be:
a4:e9:2c:25:a2:89:c1:0d:cc:d2:54:3b:39:d7:b3:
7a:71:09:ab:e7:46:8c:5f:4d:14:2e:da:04:c8:58:
cd:b4:e4:b6:36:4e:68:ac:c0:24:3b:92:38:22:5e:
35:66:ff:a5:21:08:a5:1e:1f:41:1b:22:30:fb:7d:
82:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:90:CC:F0:8A:96:F9:FC:33:B7:9B:98:8C:A0:4C:DB:A3:18:03:FB
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4JDM8IqW-fwzt5uYjKBM26MYA_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.199.0/24
Signature Algorithm: sha256WithRSAEncryption
39:e1:ce:68:52:b9:40:1d:08:68:21:ba:91:23:17:73:bf:94:
11:ce:c4:12:38:35:df:5e:10:bf:bd:6d:ae:de:94:84:05:36:
29:3b:0b:2f:92:ea:10:12:ed:81:4a:4b:a7:ce:2a:ce:e5:cd:
ca:8f:27:1c:f7:58:c2:30:e7:a2:02:5e:e7:1c:54:7d:92:a1:
92:39:93:6d:50:b0:53:2a:09:90:9a:b2:c5:46:b8:0b:40:d7:
71:f7:6a:8e:02:ac:48:b4:71:7b:42:f5:49:33:14:0e:15:97:
e8:c9:05:69:5d:2c:b6:3c:98:a4:59:d9:87:2d:62:df:7d:a2:
4b:2f:87:71:76:68:47:ca:11:cc:ba:c0:ce:e7:24:1c:e6:7b:
19:36:e8:4f:2e:bf:c5:fb:eb:1b:f2:f5:b7:29:6c:59:4a:c2:
35:3f:a1:17:dc:d9:1b:71:72:52:22:ea:16:7d:a0:9b:ec:68:
20:79:75:72:0c:4f:e9:c7:1f:86:d9:ed:eb:cd:26:4c:7f:99:
84:dd:72:a9:ce:8f:11:23:62:75:c9:5b:c0:8d:0b:44:48:df:
a6:86:5a:0c:cc:3d:58:7a:bd:e3:57:fa:d0:68:1e:3f:f5:04:
67:c9:31:66:dd:94:ed:42:ce:ae:18:19:b8:8b:8f:5e:15:ad:
1e:cd:da:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwQrUwhNE5hHbMc746lxrSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwMTAyMDIxNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDkwY2NmMDhhOTZmOWZjMzNiNzliOTg4Y2EwNGNkYmEzMTgwM2ZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0jEcPUeEyuPOSkahoPu5TOOmSV9
N8ulqhmMnHSfLh77v+ml4jFsKzwlP9xKnRkYstea0niLyA8gTr21ixuG/iOIGR/n
8szW3Dz8Z+HwuL2NjZrS1NQRNOG4pWd7O0H97X26jAW+kEyduYlY+IOSJftqi43U
GIl+Pe0kdWA7RiFXyGMehzs9IjxY7FiTDdlUvxhnpSITAia3+DC89yUfKc9JhnLx
uVqyL3b7vszJECOFHHta2yj29jjLbfb82WTe/L6k6SwloonBDczSVDs517N6cQmr
50aMX00ULtoEyFjNtOS2Nk5orMAkO5I4Il41Zv+lIQilHh9BGyIw+32CrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOCQzPCKlvn8M7ebmIygTNujGAP7MB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvNEpETThJcVctZnd6dDV1WWpLQk0yNk1ZQV9zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowXHMA0G
CSqGSIb3DQEBCwUAA4IBAQA54c5oUrlAHQhoIbqRIxdzv5QRzsQSODXfXhC/vW2u
3pSEBTYpOwsvkuoQEu2BSkunzirO5c3Kjycc91jCMOeiAl7nHFR9kqGSOZNtULBT
KgmQmrLFRrgLQNdx92qOAqxItHF7QvVJMxQOFZfoyQVpXSy2PJikWdmHLWLffaJL
L4dxdmhHyhHMusDO5yQc5nsZNuhPLr/F++sb8vW3KWxZSsI1P6EX3NkbcXJSIuoW
faCb7GggeXVyDE/pxx+G2e3rzSZMf5mE3XKpzo8RI2J1yVvAjQtESN+mhloMzD1Y
er3jV/rQaB4/9QRnyTFm3ZTtQs6uGBm4i49eFa0ezdri
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:28 2024 by rpki-client on console-ams.rpki-client.org