Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RUitVabd_O0x9jULRl2K7uTvKro.roa
File: RUitVabd_O0x9jULRl2K7uTvKro.roa (raw, json)
Hash identifier: bUyz9juhlM5LyZPxVvpO/+N/W04XJ2MQNeiAQ7teo3o=
Subject key identifier: 45:48:AD:55:A6:DD:FC:ED:31:F6:35:0B:46:5D:8A:EE:E4:EF:2A:BA
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018CC4256833A53015531264C7D472AD3B1A
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RUitVabd_O0x9jULRl2K7uTvKro.roa
Signing time: Mon 01 Jan 2024 08:30:35 +0000
ROA not before: Mon 01 Jan 2024 08:30:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211440
IP address blocks: 163.5.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 17:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:68:33:a5:30:15:53:12:64:c7:d4:72:ad:3b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 08:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4548ad55a6ddfced31f6350b465d8aeee4ef2aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9e:56:4e:0c:dc:e5:c5:86:2c:67:04:70:5f:
18:61:2c:b7:45:16:05:31:70:8b:c1:89:f6:0d:20:
55:9b:25:bd:61:f9:95:12:4c:b9:26:7c:f7:c9:2e:
b4:2a:7b:78:21:24:20:07:3d:b7:8a:56:cc:8c:42:
86:2a:77:02:99:63:f5:62:1a:51:b3:b5:4f:98:27:
80:b0:97:0b:30:66:0c:33:36:fe:cb:b4:04:71:86:
e1:78:87:83:f7:9f:37:47:48:01:e0:b7:b4:57:eb:
21:82:51:21:4d:df:90:47:d7:8f:a6:38:d3:a2:5e:
12:99:00:db:b7:79:a6:b4:97:81:ee:f8:58:b1:4c:
6b:ce:a4:a0:5b:8d:34:05:dc:1e:43:01:de:3d:d5:
17:c5:10:2c:6e:98:ff:6c:68:ac:de:e1:44:8d:9c:
b3:5f:e1:38:2e:c9:35:11:e0:87:74:f4:17:57:6d:
ae:09:4f:69:33:fa:61:e8:cb:f3:00:8b:09:06:e9:
f5:30:ee:66:95:f0:ea:27:0c:ce:1d:36:3e:41:85:
43:e6:81:ec:08:cf:37:e4:a9:5f:35:5c:05:60:2a:
d4:f9:3f:fe:dd:27:bf:0e:71:5f:c2:b9:52:0a:f3:
36:c5:42:1f:fb:77:0a:6a:7b:31:aa:32:f0:8b:8e:
18:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:48:AD:55:A6:DD:FC:ED:31:F6:35:0B:46:5D:8A:EE:E4:EF:2A:BA
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RUitVabd_O0x9jULRl2K7uTvKro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.96.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:54:28:66:8f:d3:e9:f3:d7:12:5d:14:e5:0f:ae:f2:c2:87:
fb:d5:87:8b:75:ca:73:e2:af:6c:1f:92:85:24:5d:ea:a3:ab:
90:35:9a:c1:b0:00:b7:3d:68:9a:d2:a2:22:6e:a6:33:90:53:
4d:83:18:09:a6:c7:c8:db:ea:4d:23:9d:3b:39:12:4e:89:89:
81:0e:0f:e7:c7:d3:93:d2:6e:41:95:27:82:41:78:2f:a2:8d:
9b:84:0d:7e:21:55:10:9f:ba:b7:5f:8c:0a:35:dc:5a:18:4f:
92:61:cb:41:5e:fb:ad:88:b7:fb:1a:dd:2a:c6:8c:16:b0:a8:
33:25:5a:b1:b7:a3:21:9c:32:22:94:8d:f6:fd:41:91:a0:c0:
d8:ae:48:62:c3:b9:ed:bf:c9:a3:b4:1d:75:66:3e:c9:83:98:
a8:d2:9b:ba:85:12:c0:e2:7e:6e:e2:1a:c6:33:ed:0a:50:c8:
95:07:48:52:99:6d:2d:e1:b5:66:a0:00:0b:cd:98:0f:9c:a1:
bb:74:c1:36:6c:40:43:98:ec:29:b8:d8:c6:8e:fa:7a:49:e9:
e8:eb:06:14:1b:df:98:66:a5:56:e8:69:33:99:52:57:b4:fa:
08:83:a4:bd:ff:7d:a8:e2:d3:65:1c:51:bb:bc:31:33:4b:cb:
e2:05:fc:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJWgzpTAVUxJkx9RyrTsaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwMTAxMDgzMDM1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTQ4YWQ1NWE2ZGRmY2VkMzFmNjM1MGI0NjVkOGFlZWU0ZWYyYWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs55WTgzc5cWGLGcEcF8YYSy3RRYF
MXCLwYn2DSBVmyW9YfmVEky5Jnz3yS60Knt4ISQgBz23ilbMjEKGKncCmWP1YhpR
s7VPmCeAsJcLMGYMMzb+y7QEcYbheIeD9583R0gB4Le0V+shglEhTd+QR9ePpjjT
ol4SmQDbt3mmtJeB7vhYsUxrzqSgW400BdweQwHePdUXxRAsbpj/bGis3uFEjZyz
X+E4Lsk1EeCHdPQXV22uCU9pM/ph6MvzAIsJBun1MO5mlfDqJwzOHTY+QYVD5oHs
CM835KlfNVwFYCrU+T/+3Se/DnFfwrlSCvM2xUIf+3cKansxqjLwi44YKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEVIrVWm3fztMfY1C0Zdiu7k7yq6MB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvUlVpdFZhYmRfTzB4OWpVTFJsMks3dVR2S3JvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowVgMA0G
CSqGSIb3DQEBCwUAA4IBAQBbVChmj9Pp89cSXRTlD67ywof71YeLdcpz4q9sH5KF
JF3qo6uQNZrBsAC3PWia0qIibqYzkFNNgxgJpsfI2+pNI507ORJOiYmBDg/nx9OT
0m5BlSeCQXgvoo2bhA1+IVUQn7q3X4wKNdxaGE+SYctBXvutiLf7Gt0qxowWsKgz
JVqxt6MhnDIilI32/UGRoMDYrkhiw7ntv8mjtB11Zj7Jg5io0pu6hRLA4n5u4hrG
M+0KUMiVB0hSmW0t4bVmoAALzZgPnKG7dME2bEBDmOwpuNjGjvp6Seno6wYUG9+Y
ZqVW6GkzmVJXtPoIg6S9/32o4tNlHFG7vDEzS8viBfyb
-----END CERTIFICATE-----
Generated at Tue Mar 26 20:24:52 2024 by rpki-client on console-fra.rpki-client.org