Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/75aWT2epIRLlGJDE6RvGPAm8OVw.roa
File: 75aWT2epIRLlGJDE6RvGPAm8OVw.roa (raw, json)
Hash identifier: 9IOs19q27muy2BCh0sK938F+8xW/ahU+DrAjLAKCPyg=
Subject key identifier: EF:96:96:4F:67:A9:21:12:E5:18:90:C4:E9:1B:C6:3C:09:BC:39:5C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019225726C6A21C2FB024DB7C3BF11844C0B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/75aWT2epIRLlGJDE6RvGPAm8OVw.roa
Signing time: Tue 24 Sep 2024 19:11:48 +0000
ROA not before: Tue 24 Sep 2024 19:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.58.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.92.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.144.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.173.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 08:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:25:72:6c:6a:21:c2:fb:02:4d:b7:c3:bf:11:84:4c:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 24 19:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef96964f67a92112e51890c4e91bc63c09bc395c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:dc:29:c8:df:61:fc:2c:14:37:16:16:1f:19:
16:c8:e9:64:db:47:7d:a1:64:40:0d:83:ee:d6:da:
28:17:9b:47:aa:00:e5:1d:c7:7b:fa:84:57:aa:24:
be:a8:97:2d:c9:dc:e2:ac:d4:0f:1a:14:ea:9c:30:
2d:0c:1b:38:40:2a:d2:54:0e:c5:9d:82:12:be:d9:
a1:89:c2:eb:96:72:07:19:f0:7c:8a:05:ac:33:b1:
0d:a8:aa:db:fe:f0:73:00:75:8c:d0:7d:15:30:51:
89:5d:a6:45:23:bc:63:47:5c:04:89:f6:5c:95:0f:
76:e1:f0:51:78:70:2f:a8:e6:dd:db:e3:16:bc:7a:
f9:04:8b:b4:78:da:26:ee:70:c8:44:58:85:67:3c:
40:63:b4:4e:6b:b1:ac:31:7c:cc:a1:db:81:bf:ea:
2c:5d:95:cf:42:b3:59:73:d3:89:81:72:08:7c:3d:
15:4e:1d:0d:8e:c2:54:9b:e3:3e:dc:49:a9:90:4d:
06:76:eb:8f:8f:87:47:61:9f:c9:f7:93:5e:20:58:
e3:b2:db:39:25:19:f8:7f:96:42:35:7f:b1:8b:99:
84:9b:c7:b9:30:c6:cc:2e:4b:dc:83:14:7a:82:9d:
6a:3e:00:0a:fb:5c:ed:13:a5:b1:3c:53:e5:62:fa:
17:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:96:96:4F:67:A9:21:12:E5:18:90:C4:E9:1B:C6:3C:09:BC:39:5C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/75aWT2epIRLlGJDE6RvGPAm8OVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.58.0/23
163.5.73.0/24
163.5.89.0/24
163.5.92.0/24
163.5.110.0-163.5.113.255
163.5.118.0/23
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.132.0/24
163.5.139.0/24
163.5.143.0-163.5.144.255
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.162.0/24
163.5.167.0/24
163.5.173.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.247.0-163.5.248.255
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:67:91:31:cb:1e:eb:60:24:ec:98:47:06:57:9b:29:92:e6:
bc:dd:1d:34:23:b0:81:be:e0:62:54:04:94:c7:d9:b5:62:5f:
85:04:51:6c:26:9f:2a:a5:3a:e2:9e:25:63:95:eb:cd:97:e3:
c5:e5:d3:7d:db:5a:7d:a9:af:4b:30:1c:52:dc:7a:df:b1:4b:
56:ac:a5:b7:3b:c5:dc:13:f5:01:70:c5:19:04:89:27:6f:b0:
48:0d:38:e0:ea:4e:25:f6:0d:93:0e:e7:62:b4:8c:7c:40:00:
49:44:5d:b1:90:19:ae:93:5d:55:cc:1f:7d:d4:65:92:5f:ad:
b3:b6:02:14:6d:de:b8:03:97:47:38:90:29:e4:ef:6e:27:4d:
28:b6:00:47:1f:cc:09:f8:d6:92:10:5b:fd:b8:14:14:0c:60:
b4:f1:66:56:70:53:d7:c7:07:11:34:93:15:d1:e9:81:54:36:
67:07:0a:c1:a0:5f:96:0e:80:ea:63:27:12:47:b5:a7:54:38:
c5:bd:99:dd:d8:0f:f4:57:c7:59:da:a4:9a:a3:94:45:85:04:
99:92:69:f6:db:8c:f2:88:97:21:8f:4e:85:e8:3c:33:34:76:
40:9b:f3:5e:c4:84:57:93:81:12:1f:ed:c1:26:d7:95:40:4f:
c1:27:29:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 10:56:31 2024 by rpki-client on console-fra.rpki-client.org