Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0eH_v9q4AYRGpbo1yOcVLq2kSTw.roa
File: 0eH_v9q4AYRGpbo1yOcVLq2kSTw.roa (raw, json)
Hash identifier: 8Onn3G7TWeBwhlF764s7uy2OLlrL2/INSJ8ZRG3mGW4=
Subject key identifier: D1:E1:FF:BF:DA:B8:01:84:46:A5:BA:35:C8:E7:15:2E:AD:A4:49:3C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01911734D838682F5C54D10748D19BE8EEDC
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0eH_v9q4AYRGpbo1yOcVLq2kSTw.roa
Signing time: Sat 03 Aug 2024 07:47:04 +0000
ROA not before: Sat 03 Aug 2024 07:47:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.34.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.125.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.199.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.211.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.223.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.232.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Aug 2024 12:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:17:34:d8:38:68:2f:5c:54:d1:07:48:d1:9b:e8:ee:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 3 07:47:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1e1ffbfdab8018446a5ba35c8e7152eada4493c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8d:ed:4d:5d:3c:b6:42:4f:ea:2a:e1:40:81:
05:df:cd:90:32:50:b7:10:4a:d7:8d:bb:2e:79:8b:
13:d0:16:89:61:3f:0f:ae:1d:c0:0d:26:98:f5:e7:
d9:b9:60:5d:55:3b:01:32:fd:7f:0c:07:42:79:f7:
c6:b5:89:4a:85:c5:1b:b8:c6:60:20:76:73:86:26:
29:1f:4c:af:a5:34:a1:1c:04:ab:0e:bf:1f:0a:bd:
96:1e:5d:04:32:fe:81:b1:17:0b:5a:55:f7:26:5e:
dc:db:24:09:f4:20:6f:2f:f1:fe:e3:74:af:e6:b4:
f1:c8:2a:4d:4a:26:09:59:d0:50:ca:6b:40:99:9d:
86:da:e7:27:93:36:02:4d:90:f9:49:fb:71:81:f9:
91:fd:a9:32:5c:a2:cd:e3:8c:bd:b0:d3:dc:2f:04:
6e:57:1f:ff:58:89:0e:13:70:4f:fe:a9:d2:be:76:
32:3d:f2:38:d1:09:94:ec:e7:87:93:87:40:fd:3c:
c4:2c:11:2c:d8:9a:e9:28:d0:3a:2e:20:d5:93:41:
f9:fe:c3:fd:eb:64:6d:6f:44:d4:2f:50:b2:bb:96:
0c:b4:16:0f:2e:0f:65:e6:f3:c6:65:3a:ec:88:e9:
91:26:99:3a:8c:58:60:9d:36:53:f1:e2:ef:d7:1d:
6c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E1:FF:BF:DA:B8:01:84:46:A5:BA:35:C8:E7:15:2E:AD:A4:49:3C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0eH_v9q4AYRGpbo1yOcVLq2kSTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.33.0-163.5.34.255
163.5.51.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.125.0-163.5.126.255
163.5.128.0/23
163.5.132.0/24
163.5.134.0/24
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.162.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.199.0-163.5.201.255
163.5.203.0-163.5.206.255
163.5.211.0/24
163.5.218.0/24
163.5.223.0-163.5.224.255
163.5.228.0/24
163.5.232.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
59:04:5c:0e:09:78:73:af:9a:7b:40:ae:4c:74:62:5c:90:21:
df:15:1b:32:d4:35:70:c2:70:31:50:95:ac:f3:c3:e0:ca:e5:
57:bc:40:40:92:fb:d5:2f:97:81:57:f2:37:dc:46:a0:59:6d:
22:19:74:fe:1b:9f:30:8f:38:7a:2d:71:8e:60:7e:31:2f:56:
30:55:d9:af:52:95:05:03:94:ff:4b:29:e8:24:75:4f:11:3a:
48:51:d1:bb:4c:df:81:80:e1:9a:10:03:de:7b:64:b0:80:66:
cf:ed:9e:03:0e:ba:0e:db:0f:68:b1:f9:b9:d9:51:aa:2c:c5:
cd:0b:12:c0:9e:a0:a6:ca:e2:71:67:86:3f:98:f3:65:55:20:
53:2a:f7:fc:61:fd:bc:9a:37:0f:71:d5:00:94:af:8b:16:b1:
ab:00:9f:3d:97:56:7d:fa:1c:7a:17:65:31:2d:dd:61:10:87:
29:c1:86:dd:08:2a:6c:c1:59:cc:66:d6:28:54:63:c7:dc:3d:
88:d1:65:8f:82:10:af:db:3d:c2:5e:ef:3a:f7:60:3c:86:84:
48:0c:ec:f3:06:b5:15:60:95:9d:16:a0:9a:b4:41:8f:bc:0c:
ca:a5:80:09:5e:89:3f:78:cc:71:f2:06:ca:d1:d0:a4:d2:17:
ed:46:43:0f
-----BEGIN CERTIFICATE-----
MIIF5zCCBM+gAwIBAgISAZEXNNg4aC9cVNEHSNGb6O7cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwODAzMDc0NzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMWUxZmZiZmRhYjgwMTg0NDZhNWJhMzVjOGU3MTUyZWFkYTQ0OTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwY3tTV08tkJP6irhQIEF382QMlC3
EErXjbsueYsT0BaJYT8Prh3ADSaY9efZuWBdVTsBMv1/DAdCeffGtYlKhcUbuMZg
IHZzhiYpH0yvpTShHASrDr8fCr2WHl0EMv6BsRcLWlX3Jl7c2yQJ9CBvL/H+43Sv
5rTxyCpNSiYJWdBQymtAmZ2G2ucnkzYCTZD5SftxgfmR/akyXKLN44y9sNPcLwRu
Vx//WIkOE3BP/qnSvnYyPfI40QmU7OeHk4dA/TzELBEs2JrpKNA6LiDVk0H5/sP9
62Rtb0TUL1Cyu5YMtBYPLg9l5vPGZTrsiOmRJpk6jFhgnTZT8eLv1x1sdQIDAQAB
o4IC8zCCAu8wHQYDVR0OBBYEFNHh/7/auAGERqW6NcjnFS6tpEk8MB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvMGVIX3Y5cTRBWVJHcGJvMXlPY1ZMcTJrU1R3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBBwYIKwYBBQUHAQcBAf8EgfcwgfQwgfEEAgABMIHqAwQA
owUeMAwDBACjBSEDBACjBSIDBACjBTMDBACjBVkwDAMEAaMFbgMEAaMFcAMEAKMF
eTAMAwQAowV9AwQAowV+AwQBowWAAwQAowWEAwQAowWGAwQAowWLAwQAowWPAwQA
owWSAwQAowWXAwQAowWgAwQAowWiAwQAowWnAwQAowWyAwQAowW2AwQBowW8AwQA
owW/MAwDBACjBccDBAGjBcgwDAMEAKMFywMEAKMFzgMEAKMF0wMEAKMF2jAMAwQA
owXfAwQAowXgAwQAowXkAwQAowXoAwQAowXxAwQAowX6AwQAowX9MA0GCSqGSIb3
DQEBCwUAA4IBAQBZBFwOCXhzr5p7QK5MdGJckCHfFRsy1DVwwnAxUJWs88PgyuVX
vEBAkvvVL5eBV/I33EagWW0iGXT+G58wjzh6LXGOYH4xL1YwVdmvUpUFA5T/Syno
JHVPETpIUdG7TN+BgOGaEAPee2SwgGbP7Z4DDroO2w9osfm52VGqLMXNCxLAnqCm
yuJxZ4Y/mPNlVSBTKvf8Yf28mjcPcdUAlK+LFrGrAJ89l1Z9+hx6F2UxLd1hEIcp
wYbdCCpswVnMZtYoVGPH3D2I0WWPghCv2z3CXu8692A8hoRIDOzzBrUVYJWdFqCa
tEGPvAzKpYAJXok/eMxx8gbK0dCk0hftRkMP
-----END CERTIFICATE-----
Generated at Tue Aug 6 15:08:08 2024 by rpki-client on console-ams.rpki-client.org