Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/CzgZi5TynqLcB1dKUw1BhDVnxh4.roa
File: CzgZi5TynqLcB1dKUw1BhDVnxh4.roa (raw, json)
Hash identifier: WwpM2MxWs3RFegxF2qfwGCA2QCpUfvT0sULbdqqyiNA=
Subject key identifier: 0B:38:19:8B:94:F2:9E:A2:DC:07:57:4A:53:0D:41:84:35:67:C6:1E
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019194CF5A1D2381767DD7BC471CE9D2D15E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/CzgZi5TynqLcB1dKUw1BhDVnxh4.roa
Signing time: Tue 27 Aug 2024 17:08:22 +0000
ROA not before: Tue 27 Aug 2024 17:08:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Aug 2024 13:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:94:cf:5a:1d:23:81:76:7d:d7:bc:47:1c:e9:d2:d1:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 27 17:08:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b38198b94f29ea2dc07574a530d41843567c61e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ee:57:b2:4a:aa:d5:db:f7:cd:7c:94:cc:09:
69:bd:d3:12:1e:de:ea:d5:c8:f9:75:d1:9a:2f:80:
f6:db:d8:eb:71:69:44:0e:67:b0:8d:2d:3e:79:92:
6c:5e:37:ec:95:de:d6:9d:0b:ba:6d:af:4f:23:e9:
db:ba:37:30:61:59:80:24:ff:bd:19:23:31:45:04:
d9:2c:a3:e1:ed:49:fc:5c:82:7f:f5:b5:0f:ca:ec:
80:f1:61:60:51:6a:92:3f:e5:71:60:59:35:a2:b8:
ed:3d:d6:0d:dc:69:00:c8:a1:94:b9:93:6c:6c:fd:
64:f7:79:be:6b:aa:88:a9:7b:d1:ba:14:f0:86:38:
b7:68:fa:53:e1:24:aa:5f:5c:eb:a7:65:1b:87:47:
ac:28:34:15:7f:4f:fe:82:c3:91:79:2b:52:cb:e5:
78:a2:cf:ae:d4:3b:79:39:76:de:46:1b:8f:1f:9a:
9c:85:17:8b:e2:09:fc:a8:ad:fe:fe:27:7e:c1:fb:
1a:2b:fa:69:72:3f:71:00:ed:39:8d:8f:e4:13:a0:
db:e0:23:1a:ed:74:21:8e:23:b6:4b:2e:ee:04:74:
bf:1b:9f:18:df:2a:6c:29:52:c9:52:e5:17:cb:ad:
be:36:de:65:86:3d:5d:50:3a:c9:c7:55:25:34:9e:
f4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:38:19:8B:94:F2:9E:A2:DC:07:57:4A:53:0D:41:84:35:67:C6:1E
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/CzgZi5TynqLcB1dKUw1BhDVnxh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.51.0/24
163.5.59.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.158.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/23
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e7:47:0c:88:0a:33:13:d7:58:1d:9f:8e:cd:b4:1a:0a:e9:
e1:99:dd:dc:59:0a:f3:03:0b:b8:ce:17:19:bf:c8:71:20:00:
c7:0f:f9:b9:e3:1a:e7:9e:28:b5:04:1c:b3:89:ce:28:83:ad:
2d:9c:33:48:46:d6:8d:36:14:c4:50:fa:c6:6a:f5:55:f2:5e:
58:b3:6c:85:27:f7:26:02:d5:f9:aa:21:c0:58:59:cd:cf:91:
61:8f:16:73:4a:34:6d:db:55:99:d9:99:17:b8:8b:f5:bb:c0:
0d:db:6a:c5:e8:3e:c5:33:13:48:0e:5c:f8:8d:eb:d0:1a:67:
3a:85:12:10:9f:91:a2:5b:77:59:9a:6a:de:84:dd:e2:4f:0e:
d1:e1:32:e5:27:6e:1a:b7:69:a4:9e:a8:00:a3:14:a4:e5:7c:
12:af:1f:4f:7f:9e:93:cd:bd:84:63:98:6e:45:23:81:e9:37:
54:ad:81:f2:79:1c:79:fb:7d:e2:49:ec:17:88:48:67:36:bd:
94:ef:c6:2e:33:d9:69:32:d8:5d:09:bd:97:bc:51:97:fe:33:
f5:a4:ae:42:67:03:09:30:1e:7d:1e:6d:a0:cc:73:6c:56:18:
70:b0:c0:e1:fd:c4:b3:ed:83:99:50:b0:78:2f:97:bf:f5:ac:
ac:08:e8:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 28 16:05:30 2024 by rpki-client on console-fra.rpki-client.org