Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DTYaNMkUUf0YGvmRikR2iSzSTDs.roa
File: DTYaNMkUUf0YGvmRikR2iSzSTDs.roa (raw, json)
Hash identifier: eOLzjQs07KDgropOsCgGi2tQee5+Bs6h5jBBIzT6t3E=
Subject key identifier: 0D:36:1A:34:C9:14:51:FD:18:1A:F9:91:8A:44:76:89:2C:D2:4C:3B
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01916C4899963D3A8A4CE62875C9775A9EC3
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DTYaNMkUUf0YGvmRikR2iSzSTDs.roa
Signing time: Mon 19 Aug 2024 20:16:22 +0000
ROA not before: Mon 19 Aug 2024 20:16:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22781
IP address blocks: 163.5.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Aug 2024 17:08:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6c:48:99:96:3d:3a:8a:4c:e6:28:75:c9:77:5a:9e:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 19 20:16:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d361a34c91451fd181af9918a4476892cd24c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:00:a8:84:7d:78:c7:95:04:84:09:84:84:f2:
bf:45:ef:30:71:aa:bb:88:bb:ab:8e:32:7b:11:0c:
1c:63:3d:3a:29:34:7c:ec:49:ff:ab:e5:e6:f1:01:
82:44:b6:0b:20:b7:0f:56:62:26:00:cc:4c:1a:e6:
94:80:90:41:fc:04:cf:a3:e7:d7:9d:e9:39:38:be:
80:29:6a:7d:1b:76:97:41:34:24:47:24:27:c5:73:
25:3c:fe:a9:84:53:d7:f2:da:93:16:91:b3:4f:a5:
2c:53:51:c5:81:70:a1:d6:14:fd:02:13:c0:da:03:
44:a0:98:e3:e8:fe:16:40:ba:75:80:99:6f:d3:62:
39:54:07:02:55:a6:fc:d5:58:a1:e4:13:bf:f8:84:
c1:91:57:9f:d2:bb:89:1a:86:fb:ca:de:17:41:d1:
5e:32:c3:e6:5b:43:03:5a:64:e8:7f:c1:63:c5:aa:
c6:de:ae:ef:90:b7:ee:8a:ef:16:75:09:0f:a6:22:
8e:8e:79:b0:39:03:90:ff:63:72:22:5f:cc:a1:b5:
36:f3:68:16:77:6a:35:b3:94:83:c9:d5:87:ad:ae:
7b:4c:ef:ed:0c:b3:e2:f6:60:a9:9a:b4:39:51:ef:
0a:52:11:c4:f5:4f:97:29:83:a2:d8:4b:a5:b4:77:
26:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:36:1A:34:C9:14:51:FD:18:1A:F9:91:8A:44:76:89:2C:D2:4C:3B
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DTYaNMkUUf0YGvmRikR2iSzSTDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.179.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:69:0d:53:8a:78:74:f2:c5:85:3e:65:5b:f5:e8:48:a2:5a:
17:38:72:74:dd:26:8c:0f:8f:7c:55:03:4d:ab:35:2f:e6:7d:
a1:21:40:48:5c:03:bc:20:58:fb:6c:cb:a1:cb:ad:02:8c:aa:
08:60:d6:89:5f:b5:7a:f3:b0:aa:51:13:4e:34:a5:fd:57:2a:
ec:f7:b5:15:49:8b:27:3e:41:9a:cf:10:00:ec:62:a4:1d:3b:
70:7a:6f:63:6c:78:ea:9f:57:af:f7:d1:c3:21:80:d5:a3:4c:
ad:dd:bc:72:83:20:a9:5e:15:03:3f:6b:83:5f:1b:a9:55:97:
d8:55:6e:39:87:52:b8:2e:c8:cb:73:5d:c2:3d:cf:44:28:4d:
00:a9:77:32:86:31:ab:cb:6b:72:0a:37:fd:e8:09:f6:5b:4e:
0e:71:31:ec:08:87:7c:84:8c:ff:a6:78:8f:fb:44:6c:a2:39:
30:a7:ac:73:5b:b8:d8:f1:5c:a9:dc:ea:1d:85:a8:f6:67:3a:
3d:77:0e:3e:ac:b6:34:23:5f:d6:a2:c4:2b:6d:ff:74:5b:ce:
2d:22:59:dc:1c:fe:a9:2a:ad:75:12:a4:bf:72:6d:a2:28:52:
4f:d0:57:78:1e:06:2d:85:c9:6a:34:62:e0:df:15:2c:4f:15:
95:5e:04:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFsSJmWPTqKTOYodcl3Wp7DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwODE5MjAxNjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDM2MWEzNGM5MTQ1MWZkMTgxYWY5OTE4YTQ0NzY4OTJjZDI0YzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzQCohH14x5UEhAmEhPK/Re8wcaq7
iLurjjJ7EQwcYz06KTR87En/q+Xm8QGCRLYLILcPVmImAMxMGuaUgJBB/ATPo+fX
nek5OL6AKWp9G3aXQTQkRyQnxXMlPP6phFPX8tqTFpGzT6UsU1HFgXCh1hT9AhPA
2gNEoJjj6P4WQLp1gJlv02I5VAcCVab81Vih5BO/+ITBkVef0ruJGob7yt4XQdFe
MsPmW0MDWmTof8FjxarG3q7vkLfuiu8WdQkPpiKOjnmwOQOQ/2NyIl/MobU282gW
d2o1s5SDydWHra57TO/tDLPi9mCpmrQ5Ue8KUhHE9U+XKYOi2EultHcmiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA02GjTJFFH9GBr5kYpEdoks0kw7MB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvRFRZYU5Na1VVZjBZR3ZtUmlrUjJpU3pTVERzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowWzMA0G
CSqGSIb3DQEBCwUAA4IBAQAfaQ1Tinh08sWFPmVb9ehIoloXOHJ03SaMD498VQNN
qzUv5n2hIUBIXAO8IFj7bMuhy60CjKoIYNaJX7V687CqURNONKX9Vyrs97UVSYsn
PkGazxAA7GKkHTtwem9jbHjqn1ev99HDIYDVo0yt3bxygyCpXhUDP2uDXxupVZfY
VW45h1K4LsjLc13CPc9EKE0AqXcyhjGry2tyCjf96An2W04OcTHsCId8hIz/pniP
+0Rsojkwp6xzW7jY8Vyp3Oodhaj2Zzo9dw4+rLY0I1/WosQrbf90W84tIlncHP6p
Kq11EqS/cm2iKFJP0Fd4HgYthclqNGLg3xUsTxWVXgSv
-----END CERTIFICATE-----
Generated at Tue Aug 27 19:31:35 2024 by rpki-client on console-ams.rpki-client.org