Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/An3TY2hAiTL7Fe6mvDHu42UB9oU.roa
File: An3TY2hAiTL7Fe6mvDHu42UB9oU.roa (raw, json)
Hash identifier: 0LwhoypPpyGzKv46jRUixhxaryE3wcuD8hMTOwjKXWE=
Subject key identifier: 02:7D:D3:63:68:40:89:32:FB:15:EE:A6:BC:31:EE:E3:65:01:F6:85
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018F8BC7E845222D3D2F5133AC96E0249589
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/An3TY2hAiTL7Fe6mvDHu42UB9oU.roa
Signing time: Sat 18 May 2024 12:58:05 +0000
ROA not before: Sat 18 May 2024 12:58:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.53.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.124.0/24 maxlen: 24
163.5.125.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.163.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.199.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.215.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 18:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8b:c7:e8:45:22:2d:3d:2f:51:33:ac:96:e0:24:95:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 18 12:58:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=027dd36368408932fb15eea6bc31eee36501f685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:50:77:18:84:2e:2d:24:95:6f:d0:32:0a:eb:
e0:af:d1:12:8c:0c:5a:1c:f3:65:a0:f5:70:bb:0b:
91:4d:c3:57:f5:a3:88:2c:b7:e9:17:f2:11:1e:1d:
da:92:47:6f:05:11:9f:10:c6:26:ea:5d:7e:17:1c:
d1:e9:07:76:cc:38:ed:ce:07:51:ad:e4:48:0e:ac:
77:0a:21:08:11:18:71:ee:04:75:85:cb:eb:10:9c:
b6:73:ed:53:e2:36:74:71:03:d3:ae:b8:dc:c3:c2:
7a:3a:97:dc:be:15:35:f7:4d:a6:c7:5d:f5:fd:88:
fc:b9:81:bf:81:c0:b3:d4:a6:39:da:19:b8:f1:1c:
46:78:90:b6:9f:f2:03:bd:50:e0:2f:71:24:c5:68:
f5:aa:64:b9:4d:00:b0:84:5f:15:aa:16:28:c2:45:
7d:f3:7b:68:f9:72:8c:14:4e:a7:ed:1b:1d:aa:9c:
0b:30:72:76:9c:7d:73:18:b9:5d:21:c7:1d:9d:b6:
e6:33:87:04:eb:51:40:9e:6c:ef:4f:02:a7:fb:86:
d0:49:29:ea:c6:d5:e4:bb:39:c2:ac:54:60:d5:9b:
79:00:7c:47:d4:a7:59:18:68:af:9b:79:d1:fe:72:
2d:ea:46:b9:13:ce:f4:ed:52:11:7c:c8:8a:2b:f5:
4a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7D:D3:63:68:40:89:32:FB:15:EE:A6:BC:31:EE:E3:65:01:F6:85
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/An3TY2hAiTL7Fe6mvDHu42UB9oU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.53.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.124.0-163.5.126.255
163.5.128.0/23
163.5.134.0/24
163.5.136.0/24
163.5.139.0/24
163.5.141.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.163.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.199.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.215.0/24
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:a9:2c:51:80:85:09:dd:ed:3e:6c:3b:54:5b:de:e7:51:d9:
e7:ad:0e:d9:55:ad:f9:97:66:36:90:76:41:e0:a2:3e:64:d0:
9e:ae:e2:e9:b0:2b:10:ab:71:0d:6d:4c:a8:89:e5:8b:96:e1:
8e:80:1c:3c:a9:68:67:9e:64:d2:5e:d8:61:f7:3a:ef:6a:80:
36:ed:a2:52:a0:ef:8d:74:dc:30:3a:8c:a8:11:12:66:a5:87:
1c:7c:41:f1:2f:dd:bc:59:2d:1f:bc:48:ee:72:07:75:db:7a:
9b:c4:bb:4a:c9:bf:6d:07:cb:6e:2a:c6:75:a5:66:61:71:58:
5b:6e:85:f5:80:c2:38:2f:af:fa:10:3c:f5:90:98:33:fa:1f:
08:28:c1:95:ff:2f:dd:4c:fa:e9:81:b5:a3:f1:9a:61:82:39:
59:1f:d4:b9:0f:00:5d:ed:c6:42:87:cf:5f:fe:59:3d:e1:1c:
e4:1f:ae:f2:97:cd:dc:43:2c:55:e1:19:bb:13:81:fd:44:3d:
20:5f:20:39:29:9d:80:3b:a7:9f:b2:c6:b2:02:2e:14:a1:35:
b7:c3:17:89:67:ff:82:8c:94:73:61:2b:40:f2:4d:b6:4e:86:
21:31:fe:6e:a5:17:9a:e4:2b:81:15:a1:34:84:35:9b:d2:a1:
b0:69:96:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:29 2024 by rpki-client on console-ams.rpki-client.org