Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/BUVao1nQ0tOMBeToyjgw-BDiVjE.roa
File: BUVao1nQ0tOMBeToyjgw-BDiVjE.roa (raw, json)
Hash identifier: UNKX88itg5VQ/YTFEp497UpkPYa4fww68gw6Wv4/O4U=
Subject key identifier: 05:45:5A:A3:59:D0:D2:D3:8C:05:E4:E8:CA:38:30:F8:10:E2:56:31
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01862171C6E7C440AC9E511D49143116CA6B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/BUVao1nQ0tOMBeToyjgw-BDiVjE.roa
Signing time: Sun 05 Feb 2023 11:59:09 +0000
ROA not before: Sun 05 Feb 2023 11:59:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204372
IP address blocks: 163.5.233.0/24 maxlen: 24
163.5.227.0/24 maxlen: 24
163.5.230.0/24 maxlen: 24
163.5.239.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.244.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.254.0/24 maxlen: 24
163.5.86.0/24 maxlen: 24
163.5.87.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.107.0/24 maxlen: 24
163.5.117.0/24 maxlen: 24
163.5.31.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.202.0/24 maxlen: 24
163.5.211.0/24 maxlen: 24
163.5.210.0/24 maxlen: 24
163.5.216.0/24 maxlen: 24
163.5.223.0/24 maxlen: 24
163.5.221.0/24 maxlen: 24
163.5.226.0/24 maxlen: 24
163.5.222.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.127.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.145.0/24 maxlen: 24
163.5.149.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.166.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:21:71:c6:e7:c4:40:ac:9e:51:1d:49:14:31:16:ca:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 5 11:59:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05455aa359d0d2d38c05e4e8ca3830f810e25631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:01:9d:ff:d0:1e:ed:f1:f6:58:c0:7b:12:4f:
25:ec:68:47:6e:bc:82:92:6b:f5:99:72:f6:89:6b:
24:06:1e:6d:05:7e:a2:e2:0b:dc:e9:e6:1e:16:50:
cd:b9:15:9a:e5:86:7e:54:2f:3f:8b:e7:a2:1e:ff:
3d:d6:df:13:2e:5c:7c:c6:0f:e6:b7:d5:c7:e5:db:
5e:da:7b:ad:7e:e5:80:50:25:46:b2:76:08:cc:00:
9a:57:8c:d8:58:e7:99:58:c8:be:a8:4e:f1:a7:ea:
18:ed:d6:60:fd:00:ff:45:ca:ab:83:9b:19:24:38:
a4:86:41:64:f9:b5:75:21:d8:4e:43:4e:10:d3:38:
68:c1:85:c4:d9:08:22:49:fc:21:fa:a9:85:37:8a:
b1:9e:33:dd:d0:14:f4:dc:66:98:e8:07:2e:17:fd:
66:cd:84:ba:cc:79:91:10:f0:57:02:27:ef:e2:52:
f1:9b:e9:0f:ca:56:1d:bb:3a:95:e3:37:85:c8:5b:
36:2f:c0:d1:c0:e6:2a:c6:7f:20:4e:da:54:f1:3c:
69:96:e7:ab:dd:99:1c:01:52:3d:ff:8d:a8:95:3b:
78:b2:09:6b:33:30:ad:f7:dd:d3:ac:49:19:89:de:
57:45:09:f8:53:7f:60:39:2c:ac:a7:ac:39:30:f9:
c2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:45:5A:A3:59:D0:D2:D3:8C:05:E4:E8:CA:38:30:F8:10:E2:56:31
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/BUVao1nQ0tOMBeToyjgw-BDiVjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.31.0/24
163.5.35.0/24
163.5.86.0/23
163.5.99.0-163.5.100.255
163.5.107.0/24
163.5.117.0/24
163.5.127.0/24
163.5.130.0/24
163.5.132.0/23
163.5.136.0/24
163.5.138.0/24
163.5.145.0/24
163.5.149.0/24
163.5.158.0/24
163.5.161.0/24
163.5.166.0/24
163.5.198.0/24
163.5.202.0/24
163.5.210.0/23
163.5.216.0/24
163.5.221.0-163.5.223.255
163.5.226.0/23
163.5.230.0/24
163.5.233.0/24
163.5.239.0-163.5.241.255
163.5.244.0/24
163.5.246.0/24
163.5.248.0/24
163.5.254.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:15:92:3c:50:32:e0:19:ff:33:bc:d7:de:f2:d5:2d:9c:7f:
f5:b7:9b:9e:43:fb:8c:27:43:8a:8d:9a:ec:04:36:94:d2:30:
28:9c:94:bb:d1:da:05:28:0f:aa:3e:9e:6b:38:d9:0a:02:c3:
17:47:09:24:5e:48:25:e5:7f:97:8d:f2:1e:4c:e8:f6:cd:59:
8d:00:b1:42:8b:3b:19:a5:70:f1:82:dd:88:93:69:10:3e:7f:
d3:93:84:fa:78:e4:6e:24:21:d7:34:9a:52:f2:50:8b:11:2d:
2f:3e:9b:b4:8e:2e:17:9d:ab:8a:ee:77:e9:29:5b:1a:e8:72:
96:30:ff:32:7e:7a:b7:3a:d2:46:65:93:0a:a8:a7:eb:9d:33:
06:bc:ef:f6:b8:22:74:b4:4e:0b:6e:0a:3b:3e:ef:7d:fb:46:
a6:fd:30:66:c9:3b:b2:e7:0c:66:da:7a:1e:f9:62:3b:7f:52:
42:45:9c:7f:2c:a6:c3:ef:61:ec:3e:21:6a:35:c6:62:8d:62:
66:39:ee:57:86:76:f9:b2:85:46:a4:4f:9e:74:32:ed:81:eb:
1d:2e:85:e0:83:7e:e9:69:f7:f1:2f:82:c8:b6:85:ac:c7:0f:
b8:d7:3c:a2:71:c8:dd:a8:fe:39:5b:95:23:1c:05:62:1b:dd:
c5:89:5c:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:20 2023 by rpki-client on console-fra.rpki-client.org