Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/CaCvx1t--jL8sZUiAhisxndmNa4.roa
File: CaCvx1t--jL8sZUiAhisxndmNa4.roa (raw, json)
Hash identifier: IiMWzReH9Tzubp0CxUbeeqHSrSp+b/ig+LeYOwa14Xs=
Subject key identifier: 09:A0:AF:C7:5B:7E:FA:32:FC:B1:95:22:02:18:AC:C6:77:66:35:AE
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019808E2AAA3E41DF1942F075D956D88AC85
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/CaCvx1t--jL8sZUiAhisxndmNa4.roa
Signing time: Mon 14 Jul 2025 12:22:08 +0000
ROA not before: Mon 14 Jul 2025 12:22:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.66.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.173.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.190.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.209.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.221.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.233.0/24 maxlen: 24
163.5.237.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Jul 2025 18:04:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:08:e2:aa:a3:e4:1d:f1:94:2f:07:5d:95:6d:88:ac:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 14 12:22:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=09a0afc75b7efa32fcb195220218acc6776635ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d5:4f:d0:9a:ff:d8:ce:e1:36:86:39:f8:33:
8e:6f:81:6c:b7:e4:fc:8d:61:f6:0c:c2:6b:d1:74:
26:a7:da:6a:aa:da:5d:72:39:c6:2a:9d:81:92:d4:
7c:55:20:89:a8:5c:93:8f:4a:51:59:15:df:69:7b:
e5:e3:6b:12:05:52:24:24:36:2a:6d:49:41:61:a8:
8c:2c:6b:d8:f7:de:fc:3b:5f:75:45:b7:f3:b6:df:
6b:6f:95:09:c7:d1:ca:55:62:07:c1:2c:e3:dd:af:
bb:1d:c9:5a:fe:0d:ff:24:42:42:e7:83:2b:b4:0b:
eb:96:ba:3d:56:53:ea:4a:b4:a6:e2:6b:38:47:c5:
50:ef:61:6e:2b:2b:4d:5a:df:1a:3b:d9:a0:f2:4d:
27:cb:bd:cc:6d:98:2f:65:4a:f6:e7:a1:9b:f4:bd:
90:9b:e4:d8:63:d2:41:9c:9d:78:71:b0:bd:0b:42:
8f:b6:fa:b1:58:56:07:55:c3:15:10:38:0d:40:19:
0c:0e:d4:af:dd:33:e2:21:fb:53:1f:2e:d4:6c:f3:
53:47:21:51:c9:5f:51:b9:61:66:13:e1:d3:76:0e:
98:06:81:9d:d4:c8:47:d1:1e:cc:89:3e:62:c4:90:
ba:0c:4d:89:2f:45:05:67:a8:31:31:e7:50:81:94:
f6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A0:AF:C7:5B:7E:FA:32:FC:B1:95:22:02:18:AC:C6:77:66:35:AE
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/CaCvx1t--jL8sZUiAhisxndmNa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.59.0/24
163.5.66.0/24
163.5.89.0/24
163.5.104.0/24
163.5.106.0/24
163.5.112.0/24
163.5.121.0/24
163.5.128.0/23
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.167.0/24
163.5.173.0/24
163.5.178.0/23
163.5.182.0/24
163.5.186.0/24
163.5.189.0-163.5.190.255
163.5.201.0/24
163.5.203.0-163.5.206.255
163.5.209.0/24
163.5.218.0/24
163.5.221.0/24
163.5.224.0/24
163.5.228.0/24
163.5.233.0/24
163.5.237.0/24
163.5.241.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e8:a3:ab:54:42:74:ad:0b:c0:f9:74:9a:5b:3b:8d:07:28:
5e:d8:25:29:ae:d2:bd:ae:d4:14:53:58:a5:34:04:d1:ad:2a:
8f:b4:37:60:da:14:3c:f0:e9:f4:5e:78:2a:ba:ca:e8:dd:88:
62:eb:1a:81:18:6a:ab:b9:e8:ce:97:e7:16:b1:bd:ed:27:cc:
58:69:b5:55:ca:ec:ea:e3:34:a5:66:4f:37:df:6c:ca:84:66:
e8:7e:19:fe:c1:13:8b:28:08:50:d2:ac:8d:89:37:5e:ba:25:
7f:16:98:b2:6f:8d:0a:13:8a:2c:6a:29:f5:29:85:60:84:68:
f6:ba:29:b7:d8:cd:80:66:27:6d:41:74:fa:c0:d4:b8:16:98:
e5:e0:66:00:f3:9c:d9:83:12:9d:a7:87:31:c8:2a:bc:e4:92:
2a:96:ec:7c:16:8a:a4:29:57:c7:4a:f9:dc:02:36:93:fa:ba:
2a:b2:0d:a9:a7:a0:f9:62:11:bb:c3:66:43:d1:d0:a8:66:67:
6d:81:3d:74:50:ea:9f:9e:14:49:6a:46:b5:47:46:b6:85:8b:
77:be:bf:b9:ff:9b:23:4f:f3:ba:97:41:4f:6f:57:c6:dd:c9:
dc:85:e1:b7:d4:b4:f2:36:2c:28:29:c1:da:89:2f:4e:02:9f:
a1:01:f2:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 23:29:43 2025 by rpki-client