Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/2KFEe9rSi4GMHQ9TqjGykT9eKBA.roa
File: 2KFEe9rSi4GMHQ9TqjGykT9eKBA.roa (raw, json)
Hash identifier: sv3xfc+v4USq0HJjDy1Sr7IEByqe0rAgoci46ZUZ5mc=
Subject key identifier: D8:A1:44:7B:DA:D2:8B:81:8C:1D:0F:53:AA:31:B2:91:3F:5E:28:10
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018F7BE57342390F392B1C6868BF0175FF61
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/2KFEe9rSi4GMHQ9TqjGykT9eKBA.roa
Signing time: Wed 15 May 2024 10:56:25 +0000
ROA not before: Wed 15 May 2024 10:56:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.53.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.124.0/24 maxlen: 24
163.5.125.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.163.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.199.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 May 2024 12:58:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7b:e5:73:42:39:0f:39:2b:1c:68:68:bf:01:75:ff:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 15 10:56:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8a1447bdad28b818c1d0f53aa31b2913f5e2810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:54:f3:f6:18:a6:e7:d6:ff:ca:0e:1c:2e:8e:
b2:d0:ed:bf:eb:07:fa:e9:f0:4c:50:72:83:95:b1:
08:f9:5b:d7:0d:c8:5b:60:fa:2e:23:3b:0d:a8:71:
6f:e9:5b:65:0a:fa:e7:2f:b7:6f:43:8c:11:6f:97:
9c:d9:80:26:8f:90:43:6c:8c:bc:6f:7c:3c:6d:51:
8a:c8:b1:55:75:ca:a5:1a:f6:80:06:f5:ba:0f:16:
73:87:c1:6f:a1:b3:5d:44:c8:68:e1:45:3b:85:18:
ed:c1:bf:0d:a1:14:d1:ff:57:e9:d0:f6:02:65:2e:
8b:96:ee:d0:75:ce:b0:36:1b:ec:35:21:44:c8:0a:
cb:22:4b:80:2d:6a:1f:e8:f9:4d:aa:c7:49:de:ad:
f8:63:1a:e6:89:02:38:d2:7c:19:f9:2f:81:03:d0:
19:35:9e:65:1b:ab:5b:c1:fe:00:35:ef:bf:35:c1:
01:58:e5:92:34:f9:e5:27:e9:c5:c7:e5:27:de:1a:
73:2c:65:8d:c6:ad:b0:3e:15:66:c4:3b:3f:c3:93:
5f:42:75:d8:54:d8:1e:85:33:2f:8d:da:94:12:76:
1c:81:6e:e1:ef:8f:8b:9c:b1:10:23:29:c8:db:92:
7b:0b:13:de:92:61:35:08:ff:05:b4:d3:2f:95:7a:
3b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A1:44:7B:DA:D2:8B:81:8C:1D:0F:53:AA:31:B2:91:3F:5E:28:10
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/2KFEe9rSi4GMHQ9TqjGykT9eKBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.53.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.124.0-163.5.126.255
163.5.128.0/23
163.5.134.0/24
163.5.136.0/24
163.5.139.0/24
163.5.141.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.163.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.199.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
02:19:b6:9f:ac:99:49:61:3f:6e:e9:bc:ed:53:9e:a7:c9:0b:
0e:68:fc:79:8a:58:f3:23:8e:09:f8:8a:56:a0:25:90:d9:1f:
4f:93:a0:1e:6d:28:49:d4:c3:1a:60:53:97:47:22:ec:48:39:
ba:81:30:31:3a:8a:ac:82:10:2a:d8:c8:3e:e2:86:54:70:ca:
64:3e:6f:8d:92:be:9a:8d:bf:a6:67:6a:f2:2e:e4:8d:1e:5c:
62:1c:78:20:b0:c9:e8:6a:73:59:4d:32:bc:02:ff:f0:2e:36:
4f:16:05:b0:43:f9:56:81:9b:97:fa:d3:07:cb:d2:4a:85:30:
00:a9:f0:3c:42:63:52:ed:9c:5d:c7:d5:07:bd:17:02:e4:14:
08:7e:07:f3:15:17:f3:29:46:c2:f7:e9:e7:bb:99:95:f5:6b:
e4:90:1c:f5:8c:5e:8a:20:ea:ad:fb:77:37:47:b7:6e:66:ea:
11:3d:ac:94:ec:ac:78:1b:4c:d8:23:9d:f2:1b:20:23:b8:63:
cb:b2:f7:fa:1c:85:a9:c8:59:7c:ef:83:25:38:ef:7d:7d:99:
b6:6f:82:6f:b8:22:87:95:3b:7b:21:f9:d7:d8:d7:42:6b:ed:
01:90:f1:5a:4d:df:3b:f8:32:39:da:ef:88:48:94:4e:57:9b:
81:55:49:d6
-----BEGIN CERTIFICATE-----
MIIFyDCCBLCgAwIBAgISAY975XNCOQ85KxxoaL8Bdf9hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwNTE1MTA1NjI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOGExNDQ3YmRhZDI4YjgxOGMxZDBmNTNhYTMxYjI5MTNmNWUyODEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7lTz9him59b/yg4cLo6y0O2/6wf6
6fBMUHKDlbEI+VvXDchbYPouIzsNqHFv6VtlCvrnL7dvQ4wRb5ec2YAmj5BDbIy8
b3w8bVGKyLFVdcqlGvaABvW6DxZzh8FvobNdRMho4UU7hRjtwb8NoRTR/1fp0PYC
ZS6Llu7Qdc6wNhvsNSFEyArLIkuALWof6PlNqsdJ3q34YxrmiQI40nwZ+S+BA9AZ
NZ5lG6tbwf4ANe+/NcEBWOWSNPnlJ+nFx+Un3hpzLGWNxq2wPhVmxDs/w5NfQnXY
VNgehTMvjdqUEnYcgW7h74+LnLEQIynI25J7CxPekmE1CP8FtNMvlXo7jwIDAQAB
o4IC1DCCAtAwHQYDVR0OBBYEFNihRHva0ouBjB0PU6oxspE/XigQMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvMktGRWU5clNpNEdNSFE5VHFqR3lrVDllS0JBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHpBggrBgEFBQcBBwEB/wSB2TCB1jCB0wQCAAEwgcwDBACj
BR4DBACjBTUDBACjBVkwDAMEAaMFbgMEAaMFcAMEAKMFeTAMAwQCowV8AwQAowV+
AwQBowWAAwQAowWGAwQAowWIAwQAowWLAwQAowWNAwQAowWPAwQAowWSAwQAowWX
AwQAowWgAwQAowWjAwQAowWnAwQAowWyAwQAowW2AwQBowW8AwQAowW/AwQAowXH
AwQAowXJMAwDBACjBcsDBAGjBcwDBACjBdoDBACjBeADBACjBeQDBACjBfEDBACj
BfoDBACjBf0wDQYJKoZIhvcNAQELBQADggEBAAIZtp+smUlhP27pvO1TnqfJCw5o
/HmKWPMjjgn4ilagJZDZH0+ToB5tKEnUwxpgU5dHIuxIObqBMDE6iqyCECrYyD7i
hlRwymQ+b42SvpqNv6ZnavIu5I0eXGIceCCwyehqc1lNMrwC//AuNk8WBbBD+VaB
m5f60wfL0kqFMACp8DxCY1LtnF3H1Qe9FwLkFAh+B/MVF/MpRsL36ee7mZX1a+SQ
HPWMXoog6q37dzdHt25m6hE9rJTsrHgbTNgjnfIbICO4Y8uy9/ochanIWXzvgyU4
7319mbZvgm+4IoeVO3sh+dfY10Jr7QGQ8VpN3zv4Mjna74hIlE5Xm4FVSdY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:00 2024 by rpki-client on console-fra.rpki-client.org