Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/SvSbbIdYwpwI9x1xRqwhjvUgFuw.roa
File: SvSbbIdYwpwI9x1xRqwhjvUgFuw.roa (raw, json)
Hash identifier: aIoxNoENnDoIzQcl9s/XoXxxLd0GvFpojEVBdhlUYXQ=
Subject key identifier: 4A:F4:9B:6C:87:58:C2:9C:08:F7:1D:71:46:AC:21:8E:F5:20:16:EC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018F2E36515F865AABFA276479D576B0ABBC
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/SvSbbIdYwpwI9x1xRqwhjvUgFuw.roa
Signing time: Tue 30 Apr 2024 08:54:22 +0000
ROA not before: Tue 30 Apr 2024 08:54:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.65.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.124.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.163.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 May 2024 10:18:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2e:36:51:5f:86:5a:ab:fa:27:64:79:d5:76:b0:ab:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Apr 30 08:54:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4af49b6c8758c29c08f71d7146ac218ef52016ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:32:15:7f:32:c7:22:7e:8f:ba:36:c3:6c:1f:
c4:50:0b:69:d9:85:4e:6d:1a:fd:8a:21:00:43:df:
8c:02:c2:18:b4:e4:8c:63:4d:fd:f7:36:9b:85:75:
97:9b:05:5a:d6:d5:97:41:b0:a4:e2:2e:0a:3a:c5:
55:a0:eb:2e:d2:20:23:37:eb:ee:20:4b:8d:cd:1a:
75:dd:2d:3e:5a:68:90:27:fa:01:d5:66:b1:09:c9:
c3:56:6c:c8:ab:78:a9:3c:99:ab:7e:f7:19:8c:5d:
ef:a8:1f:15:d6:6d:af:bc:89:72:32:c5:45:16:ad:
9d:a3:5e:a2:08:4f:96:ff:fa:ed:5e:26:8a:e9:84:
9f:86:3d:5a:e7:d6:e6:55:2a:d3:44:9a:6c:b4:87:
35:f6:25:51:5b:9b:d1:6e:e0:75:2c:01:7f:3b:f3:
7c:f7:54:b1:68:63:53:c9:13:cd:3a:df:59:67:8a:
0f:79:39:e4:9a:cb:23:de:5f:b1:98:56:a2:e1:4d:
92:5f:d7:ce:49:5b:73:eb:4f:8e:16:1b:ec:e9:e9:
d4:d0:11:5c:b6:a2:a7:9c:fb:e0:c9:9b:c1:5c:2f:
e4:28:ca:b6:8c:64:c0:bd:49:41:9f:70:62:f9:f4:
1c:2f:44:78:21:5b:ab:c2:f8:c2:81:76:88:94:cd:
45:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F4:9B:6C:87:58:C2:9C:08:F7:1D:71:46:AC:21:8E:F5:20:16:EC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/SvSbbIdYwpwI9x1xRqwhjvUgFuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.65.0/24
163.5.73.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.124.0/24
163.5.126.0/24
163.5.128.0/23
163.5.134.0/24
163.5.136.0/24
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.163.0/24
163.5.167.0/24
163.5.171.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:50:5a:56:3e:58:6e:86:87:9c:6d:5a:4d:11:6b:02:f9:1e:
04:fe:30:a5:f8:f6:a6:91:ff:65:d4:dd:4d:61:cd:4d:9e:f9:
db:1d:c6:64:c3:cd:e3:1d:49:6f:26:4b:e4:b4:3c:5b:f7:f3:
a9:e4:81:87:e5:b8:3f:84:31:b2:70:f8:a5:9c:a2:38:70:23:
19:83:68:ee:18:dd:41:49:e8:03:f3:92:89:12:3b:79:56:aa:
0b:a8:53:3b:73:44:3d:ed:5e:49:1c:da:e8:e7:d9:7e:2d:2f:
4f:57:25:96:06:22:27:74:86:5d:86:7b:9b:78:85:b8:20:84:
2c:27:03:d1:b3:3f:1d:8c:03:87:fc:6f:d8:00:b1:47:44:f5:
b2:52:db:79:b9:ff:b1:08:58:a3:3b:f5:61:ab:34:29:e8:f4:
c3:84:09:2e:35:a6:81:6a:dc:53:35:dc:8c:03:e7:cb:01:ab:
80:44:4d:36:da:94:84:1b:b6:10:e6:47:62:d9:ec:2b:41:f7:
f1:09:5c:a9:93:30:dc:e6:8b:88:32:8f:65:bf:98:37:cf:b2:
b3:35:23:52:79:ce:1c:1c:ac:49:ef:1e:98:6c:9c:aa:35:54:
16:a6:09:6d:ce:c2:79:ba:c7:1c:cc:bd:bc:46:4c:4f:b5:06:
e1:79:3c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:05 2024 by rpki-client on console-fra.rpki-client.org