Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DE0RbeJOeq4hU11ZB9oCAnp73UQ.roa
File: DE0RbeJOeq4hU11ZB9oCAnp73UQ.roa (raw, json)
Hash identifier: s97+pXFIXrrhf2vf8X4WcA605pO3WbUeue3YDVHRDcY=
Subject key identifier: 0C:4D:11:6D:E2:4E:7A:AE:21:53:5D:59:07:DA:02:02:7A:7B:DD:44
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0185C99A364BDC8F36C61E1AE6E27C73FD50
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DE0RbeJOeq4hU11ZB9oCAnp73UQ.roa
Signing time: Thu 19 Jan 2023 10:36:44 +0000
ROA not before: Thu 19 Jan 2023 10:36:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142430
IP address blocks: 163.5.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 11:05:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c9:9a:36:4b:dc:8f:36:c6:1e:1a:e6:e2:7c:73:fd:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 19 10:36:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c4d116de24e7aae21535d5907da02027a7bdd44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:79:13:a7:fb:1d:99:11:11:91:82:5c:f1:eb:
d4:b1:91:66:bf:bc:75:52:3a:6e:a7:79:9d:f7:6d:
d1:67:b6:ff:f1:77:77:41:97:ed:fc:50:84:96:21:
df:fe:c7:8c:a6:ae:ad:3f:29:82:d0:1e:a2:74:c9:
66:bb:86:5b:0a:64:be:31:30:9b:d8:0a:91:e3:41:
cd:39:24:da:fa:61:87:9e:b4:50:7c:65:90:67:e9:
ca:49:f4:70:2c:36:1d:9e:91:3a:d8:88:a9:1f:d2:
60:7a:48:1a:e0:a4:be:27:b0:dc:3a:c9:0e:58:e0:
22:24:2a:4e:07:d9:d4:33:de:6a:fa:d2:39:cf:7d:
6a:c3:8f:0d:8f:56:ee:17:0c:17:fc:b4:61:5c:d1:
a0:79:35:e7:8a:e7:d7:e0:aa:d8:56:63:b8:1c:a7:
3d:03:81:d1:54:73:a2:17:a7:9f:6a:f5:9c:89:31:
7f:6f:fe:17:ab:7b:aa:92:ec:1e:a8:91:67:bc:b7:
f9:08:0d:b7:3e:30:4d:b1:b4:d2:cc:35:28:87:94:
7b:69:26:bb:1d:d3:95:d6:6d:60:f4:ae:fe:32:10:
a1:6d:79:14:1b:e4:04:9f:52:53:55:bd:cd:0c:61:
a1:92:22:33:d8:c3:6e:2b:51:4f:f2:d1:32:b5:09:
e8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:4D:11:6D:E2:4E:7A:AE:21:53:5D:59:07:DA:02:02:7A:7B:DD:44
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DE0RbeJOeq4hU11ZB9oCAnp73UQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.71.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:46:8d:71:28:e2:97:83:3f:b9:3a:43:29:26:7f:58:1d:4c:
24:d2:56:fb:0d:ec:d2:d9:8c:78:23:d0:6a:e1:f7:4f:99:1c:
96:47:82:30:e3:4b:4d:26:51:6c:35:58:f9:c7:29:ba:4b:ad:
1d:db:8f:c2:8b:b0:df:99:94:89:c6:a3:75:3b:d4:2f:3c:ca:
3e:49:69:c5:5a:bd:99:79:f8:7e:6f:5c:c2:1a:17:98:37:7a:
c4:d8:8b:2e:d5:a4:46:e9:11:df:d8:51:f4:b8:50:11:6a:4e:
14:e9:9b:13:3f:86:e9:cd:48:71:11:6c:50:0f:2e:8b:83:7b:
16:36:26:68:15:0c:31:ab:a4:ba:ff:b1:45:ab:cc:29:69:cb:
b7:ff:9e:96:7a:c3:5d:26:fd:2d:f9:fd:a1:06:a9:d6:ed:ef:
10:dd:6d:21:0c:e3:b7:f5:0b:86:c8:b2:15:42:c4:c8:78:83:
6c:1a:23:8f:9c:db:34:16:f4:66:fc:17:e4:ab:2d:b4:05:81:
25:2d:a0:21:df:8f:f1:f3:fa:f1:69:37:90:a6:68:0a:d9:a8:
6a:e0:3c:0c:ca:5c:1c:d2:bc:86:24:4d:da:37:30:70:2e:48:
6f:ce:c4:26:21:04:db:48:9a:aa:75:4b:55:a2:51:67:b7:54:
8a:d2:13:86
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXJmjZL3I82xh4a5uJ8c/1QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMwMTE5MTAzNjQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzRkMTE2ZGUyNGU3YWFlMjE1MzVkNTkwN2RhMDIwMjdhN2JkZDQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjXkTp/sdmRERkYJc8evUsZFmv7x1
Ujpup3md923RZ7b/8Xd3QZft/FCEliHf/seMpq6tPymC0B6idMlmu4ZbCmS+MTCb
2AqR40HNOSTa+mGHnrRQfGWQZ+nKSfRwLDYdnpE62IipH9Jgekga4KS+J7DcOskO
WOAiJCpOB9nUM95q+tI5z31qw48Nj1buFwwX/LRhXNGgeTXniufX4KrYVmO4HKc9
A4HRVHOiF6efavWciTF/b/4Xq3uqkuweqJFnvLf5CA23PjBNsbTSzDUoh5R7aSa7
HdOV1m1g9K7+MhChbXkUG+QEn1JTVb3NDGGhkiIz2MNuK1FP8tEytQnoKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAxNEW3iTnquIVNdWQfaAgJ6e91EMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvREUwUmJlSk9lcTRoVTExWkI5b0NBbnA3M1VRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowVHMA0G
CSqGSIb3DQEBCwUAA4IBAQCwRo1xKOKXgz+5OkMpJn9YHUwk0lb7DezS2Yx4I9Bq
4fdPmRyWR4Iw40tNJlFsNVj5xym6S60d24/Ci7DfmZSJxqN1O9QvPMo+SWnFWr2Z
efh+b1zCGheYN3rE2Isu1aRG6RHf2FH0uFARak4U6ZsTP4bpzUhxEWxQDy6Lg3sW
NiZoFQwxq6S6/7FFq8wpacu3/56WesNdJv0t+f2hBqnW7e8Q3W0hDOO39QuGyLIV
QsTIeINsGiOPnNs0FvRm/Bfkqy20BYElLaAh34/x8/rxaTeQpmgK2ahq4DwMylwc
0ryGJE3aNzBwLkhvzsQmIQTbSJqqdUtVolFnt1SK0hOG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:04 2024 by rpki-client on console-fra.rpki-client.org