Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/EKg7W_0Kbzn0_SSpUte4gO1qy08.roa
File: EKg7W_0Kbzn0_SSpUte4gO1qy08.roa (raw, json)
Hash identifier: LGLACme2f/wTlNWe2kK55+sIZmZX0WF9NALRAdSkUbc=
Subject key identifier: 10:A8:3B:5B:FD:0A:6F:39:F4:FD:24:A9:52:D7:B8:80:ED:6A:CB:4F
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B38476B2959480A21C7EC82C85F93DAFB
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/EKg7W_0Kbzn0_SSpUte4gO1qy08.roa
Signing time: Mon 16 Oct 2023 11:38:06 +0000
ROA not before: Mon 16 Oct 2023 11:38:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.228.0/24 maxlen: 24
163.5.235.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.75.0/24 maxlen: 24
163.5.76.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.98.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.207.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.217.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.222.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.120.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.122.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:38:47:6b:29:59:48:0a:21:c7:ec:82:c8:5f:93:da:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 16 11:38:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10a83b5bfd0a6f39f4fd24a952d7b880ed6acb4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:56:0d:05:40:5a:d2:0c:7b:c9:43:1c:6b:ea:
70:99:49:73:73:09:ac:49:82:59:52:64:09:7f:21:
e7:5e:f9:06:f4:7d:e1:86:d4:cf:c8:d2:9f:35:6e:
ef:bd:41:26:b5:52:8d:2f:87:40:b8:e1:d8:8e:db:
79:b5:f5:56:91:34:c0:cd:8a:5e:04:ae:ae:2f:1c:
5b:05:a1:36:40:e5:e5:ee:da:4d:97:cb:0c:0b:80:
fa:84:39:5b:20:94:af:e2:3a:e6:45:ee:24:fc:c8:
f1:40:67:95:e5:2f:49:a6:09:3d:fd:63:40:57:1f:
fc:da:4e:1a:38:88:87:b6:b7:56:d8:a7:e1:88:62:
15:98:7b:b7:4e:fb:a9:dd:7b:e3:93:bf:91:ec:eb:
bf:44:40:e7:63:8d:df:ff:8b:35:84:fe:26:18:63:
66:0b:f0:65:0b:a3:2b:b9:9c:a3:f3:78:6b:e3:c1:
41:ae:69:da:d6:48:bc:19:b7:0e:8b:08:7b:15:ac:
15:fa:f8:e9:8c:80:c4:e3:14:c1:7b:1b:e5:35:be:
9e:93:be:3a:6f:d8:d3:aa:94:1a:d0:7c:5a:04:60:
d1:7c:e5:30:c5:a2:ed:8d:e0:53:9d:f9:67:0b:a8:
c7:a8:01:e1:1f:da:64:d1:91:52:7f:c2:3b:4b:77:
36:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A8:3B:5B:FD:0A:6F:39:F4:FD:24:A9:52:D7:B8:80:ED:6A:CB:4F
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/EKg7W_0Kbzn0_SSpUte4gO1qy08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.33.0/24
163.5.35.0-163.5.36.255
163.5.62.0/24
163.5.71.0/24
163.5.75.0-163.5.76.255
163.5.79.0/24
163.5.83.0/24
163.5.89.0/24
163.5.94.0/23
163.5.98.0/23
163.5.104.0-163.5.106.255
163.5.110.0-163.5.114.255
163.5.120.0-163.5.122.255
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.141.0-163.5.143.255
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.156.0/24
163.5.160.0-163.5.162.255
163.5.165.0/24
163.5.167.0/24
163.5.170.0-163.5.172.255
163.5.176.0/24
163.5.178.0/23
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.195.0/24
163.5.198.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.207.0/24
163.5.212.0/24
163.5.217.0-163.5.218.255
163.5.222.0/24
163.5.224.0/24
163.5.228.0/24
163.5.235.0/24
163.5.241.0/24
163.5.247.0/24
163.5.249.0-163.5.253.255
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
19:5c:b3:5c:d1:58:83:78:27:fb:f8:e6:b5:c1:43:5d:81:33:
9a:da:6c:6d:5a:72:7d:5c:2e:b6:9f:d9:58:0c:1c:8b:c3:da:
3e:f9:3c:01:15:6d:7b:ae:ba:44:dd:4c:27:8e:5b:b2:f5:4a:
6d:b2:22:d7:cc:33:1a:b4:a3:98:28:e8:78:6c:38:ad:49:e0:
41:d3:c0:97:cd:31:6d:af:2a:0b:26:71:0b:d1:a1:66:6a:78:
c1:2b:42:c7:82:5e:02:11:9b:33:85:4d:f1:b2:43:d3:f9:36:
b4:13:ed:38:2c:70:74:9c:ae:cf:89:1e:5b:a8:9a:f2:ff:57:
b2:22:43:90:91:9b:30:08:d1:36:a3:33:d5:70:b2:60:bd:76:
d3:22:ac:b2:66:4c:6d:f0:a4:4e:74:7e:7f:4a:90:3d:13:07:
67:3d:15:35:15:02:93:02:a0:ce:4c:d3:43:e2:fb:c4:7a:c0:
20:2c:22:01:b4:e8:36:0d:9d:a4:37:e1:ac:65:ee:78:84:a9:
a2:72:26:98:2b:9f:26:3f:d4:b4:75:f8:d9:bc:7e:78:75:50:
33:10:b4:9d:5f:5f:9b:9e:e4:78:9e:78:0f:64:bf:69:5b:28:
61:f5:d8:17:15:0f:c7:86:49:5b:e2:df:d7:55:ec:c2:c6:28:
79:f5:c7:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 19 12:40:43 2023 by rpki-client on console-ams.rpki-client.org