Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/REIgKAWXBabl1DDT0EeP6H_Ex6I.roa
File: REIgKAWXBabl1DDT0EeP6H_Ex6I.roa (raw, json)
Hash identifier: wQvWwej4fT42z+4RiUZEuDv0v4n477QTAYIhStu6meQ=
Subject key identifier: 44:42:20:28:05:97:05:A6:E5:D4:30:D3:D0:47:8F:E8:7F:C4:C7:A2
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018AF58932B64D827468F5E26D35B36E163E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/REIgKAWXBabl1DDT0EeP6H_Ex6I.roa
Signing time: Tue 03 Oct 2023 12:35:23 +0000
ROA not before: Tue 03 Oct 2023 12:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 163.5.187.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f5:89:32:b6:4d:82:74:68:f5:e2:6d:35:b3:6e:16:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 3 12:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44422028059705a6e5d430d3d0478fe87fc4c7a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:49:21:0c:e9:28:4f:65:c4:d7:20:35:5f:98:
51:29:d8:9a:f7:18:38:95:96:e5:ae:25:82:ec:5d:
27:57:a2:01:ec:13:73:93:e9:0a:5f:41:9c:f8:5b:
ff:d8:20:5b:31:7c:10:0a:b4:ed:f7:9f:6c:4f:9f:
fe:cc:ee:8d:ff:ce:34:45:2d:05:c6:56:91:83:07:
02:74:60:6a:c3:e8:df:99:bf:4e:c3:66:1f:01:77:
9a:b0:90:3a:ac:4a:cf:1b:7f:1b:de:ca:03:e5:37:
fe:87:a7:53:37:6e:7f:8d:15:f7:f2:3a:73:0d:4d:
f4:58:97:b6:db:02:f3:d3:e4:b5:c9:a1:fb:fe:c2:
02:2d:12:b8:c7:9a:af:db:ce:3a:bc:70:49:93:7b:
5c:a9:01:0c:0a:68:ac:b9:9c:9f:a8:55:9a:e3:3b:
e7:7f:14:07:48:cf:60:48:17:fa:d9:23:70:fb:66:
68:fc:25:86:81:a0:11:33:5a:ff:20:61:4f:a8:06:
ba:88:ed:7c:19:a9:05:89:66:32:25:f6:9a:03:bd:
82:2f:dc:d1:90:5d:bb:7e:74:fc:70:33:c0:15:b9:
d0:40:52:18:8b:7f:df:0c:0c:c9:d4:f2:b5:ab:e6:
72:40:b3:d1:cc:16:b5:97:bb:9a:8b:c9:c6:a1:3f:
53:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:42:20:28:05:97:05:A6:E5:D4:30:D3:D0:47:8F:E8:7F:C4:C7:A2
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/REIgKAWXBabl1DDT0EeP6H_Ex6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.187.0/24
Signature Algorithm: sha256WithRSAEncryption
46:0b:f0:18:14:2c:68:19:13:49:c7:1b:82:1c:bb:d3:9c:0a:
65:4d:57:7b:92:b1:ae:f5:9a:f0:cb:c7:ff:68:02:43:11:60:
7e:fb:d0:bc:c2:27:38:7f:50:8d:27:2c:5d:b0:7c:b1:c4:02:
fe:6f:32:dd:49:39:e3:4a:b4:2b:46:e0:04:bb:05:45:77:4b:
a3:93:af:20:0f:0a:76:8a:59:79:ed:ac:82:6c:41:60:f8:a9:
12:4f:46:6b:c7:c0:91:6c:c4:26:d5:d7:d6:b4:c7:92:c1:44:
70:63:22:e3:dc:31:23:0c:fd:21:7e:dc:d0:4c:8d:61:70:15:
70:85:f1:88:6f:94:62:ab:22:4b:cd:e7:9f:9e:57:3a:df:0c:
45:6e:d5:59:09:e1:05:1c:e8:45:52:53:9f:1e:b1:33:e5:43:
cd:3d:db:90:3b:82:16:85:bf:8f:20:be:a5:29:d2:a5:7b:ca:
dc:3f:d0:18:4c:aa:c8:78:12:c1:02:f1:4e:dc:27:be:54:4b:
2c:b8:f7:70:f5:d2:37:01:26:65:7f:60:71:4e:c8:ee:e7:13:
b2:ee:53:5a:d7:db:65:33:1a:54:8a:d7:17:ef:10:40:7e:67:
fa:78:09:31:6c:67:a5:f5:70:7b:55:ec:c2:62:31:86:34:21:
6a:e5:4e:60
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYr1iTK2TYJ0aPXibTWzbhY+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMxMDAzMTIzNTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDQyMjAyODA1OTcwNWE2ZTVkNDMwZDNkMDQ3OGZlODdmYzRjN2EyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEkhDOkoT2XE1yA1X5hRKdia9xg4
lZblriWC7F0nV6IB7BNzk+kKX0Gc+Fv/2CBbMXwQCrTt959sT5/+zO6N/840RS0F
xlaRgwcCdGBqw+jfmb9Ow2YfAXeasJA6rErPG38b3soD5Tf+h6dTN25/jRX38jpz
DU30WJe22wLz0+S1yaH7/sICLRK4x5qv2846vHBJk3tcqQEMCmisuZyfqFWa4zvn
fxQHSM9gSBf62SNw+2Zo/CWGgaARM1r/IGFPqAa6iO18GakFiWYyJfaaA72CL9zR
kF27fnT8cDPAFbnQQFIYi3/fDAzJ1PK1q+ZyQLPRzBa1l7uai8nGoT9TXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFERCICgFlwWm5dQw09BHj+h/xMeiMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvUkVJZ0tBV1hCYWJsMUREVDBFZVA2SF9FeDZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowW7MA0G
CSqGSIb3DQEBCwUAA4IBAQBGC/AYFCxoGRNJxxuCHLvTnAplTVd7krGu9Zrwy8f/
aAJDEWB++9C8wic4f1CNJyxdsHyxxAL+bzLdSTnjSrQrRuAEuwVFd0ujk68gDwp2
ill57ayCbEFg+KkST0Zrx8CRbMQm1dfWtMeSwURwYyLj3DEjDP0hftzQTI1hcBVw
hfGIb5RiqyJLzeefnlc63wxFbtVZCeEFHOhFUlOfHrEz5UPNPduQO4IWhb+PIL6l
KdKle8rcP9AYTKrIeBLBAvFO3Ce+VEssuPdw9dI3ASZlf2BxTsju5xOy7lNa19tl
MxpUitcX7xBAfmf6eAkxbGel9XB7VezCYjGGNCFq5U5g
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:19 2024 by rpki-client on console-fra.rpki-client.org