Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-aIhO3qEIhgbecYutPr_RTfWOT8.roa
File: 1-aIhO3qEIhgbecYutPr_RTfWOT8.roa (raw, json)
Hash identifier: SwUJpEz85z8Vgs75AR3tWn0G9eYYMBmQkTm9mVb2Y7c=
Subject key identifier: F9:A2:21:3B:7A:84:22:18:1B:79:C6:2E:B4:FA:FF:45:37:D6:39:3F
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0191B2E3DA54CD26E62E8831BBD7C21934AB
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-aIhO3qEIhgbecYutPr_RTfWOT8.roa
Signing time: Mon 02 Sep 2024 13:19:22 +0000
ROA not before: Mon 02 Sep 2024 13:19:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.244.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 16:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b2:e3:da:54:cd:26:e6:2e:88:31:bb:d7:c2:19:34:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 2 13:19:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f9a2213b7a8422181b79c62eb4faff4537d6393f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:0e:25:a4:07:1a:fe:90:aa:61:4e:23:08:58:
fa:1e:3c:82:92:b8:1a:11:50:a2:60:25:25:2c:db:
1b:3c:fd:1f:0b:d4:d2:57:a1:ad:9f:76:38:b8:1c:
6b:52:f4:aa:9e:94:3d:cc:39:82:ae:32:3a:1a:77:
cc:0f:5d:f5:24:c2:01:8e:c9:f6:1e:41:b4:b7:4d:
6b:f5:7b:f8:72:b7:fe:7d:88:e7:c0:0b:64:6b:60:
43:d3:46:5f:4c:8d:3c:4e:8e:e6:88:db:aa:61:41:
ae:2c:44:65:e5:dd:a6:e1:ad:b4:f7:43:85:40:06:
6b:29:f8:35:d7:36:67:da:44:87:05:24:1b:a1:63:
a5:0c:cf:70:f5:b9:9a:19:0d:13:51:dc:51:df:1b:
9d:8a:01:87:1f:9e:1c:b5:2b:ee:2c:54:1d:ee:b1:
e9:ea:f0:f2:8f:83:56:0e:5f:67:ec:7d:bf:0a:91:
36:63:5b:f7:18:47:ba:a7:67:be:2a:e9:74:c7:bc:
97:35:5f:28:b4:48:3b:42:2c:62:55:9d:29:59:1b:
32:7a:bd:92:7f:96:46:41:9a:e5:66:e6:30:92:c4:
2b:87:7f:4c:7b:74:d6:83:a2:eb:07:c0:d1:1d:2b:
b0:b8:10:e0:86:45:9f:98:17:24:67:4d:76:d7:c2:
bd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:A2:21:3B:7A:84:22:18:1B:79:C6:2E:B4:FA:FF:45:37:D6:39:3F
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-aIhO3qEIhgbecYutPr_RTfWOT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.51.0/24
163.5.59.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.158.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/23
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.244.0/24
163.5.247.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:1b:fb:ab:3c:a4:74:c9:c6:ad:12:ac:b5:19:03:bd:20:76:
d8:36:bf:8c:7a:7f:22:6d:c0:24:69:c5:92:1b:61:5b:38:5e:
46:9f:58:a2:4c:0a:62:29:0e:1f:96:1b:d3:14:d3:e6:85:7d:
85:30:ae:9c:27:22:78:2f:cb:34:57:56:49:23:33:90:2e:8a:
34:c8:cc:84:48:0f:9f:b1:d9:c7:05:54:12:95:d7:6b:09:f0:
35:a2:fe:30:fa:37:1e:2f:40:7c:ac:38:0c:56:e9:85:ff:11:
ac:a2:30:a9:61:00:fa:be:c6:de:dd:d4:7c:3c:d0:93:bb:5a:
5a:46:24:1d:9d:52:bf:ae:eb:5c:ee:aa:07:4c:94:47:04:4c:
d3:aa:c9:b4:c7:8b:16:48:ab:cb:d6:3a:56:e6:92:f3:e1:18:
f6:3d:d4:6c:a1:67:09:fb:ce:61:ef:df:17:a1:78:8e:b8:29:
bc:a4:11:20:89:f4:35:2b:95:0c:19:35:a1:cc:31:2c:1d:72:
9d:5a:91:7c:40:70:ef:0c:a5:a9:73:f9:4b:96:00:f6:10:fe:
90:c3:63:64:36:0f:75:7a:cb:fc:8e:47:37:d7:df:c8:0f:9d:
a6:c1:26:27:c7:f6:23:fc:4f:f2:71:10:aa:32:68:d0:38:db:
ad:a3:6b:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 5 18:38:46 2024 by rpki-client on console-ams.rpki-client.org