Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/FRRfVeU15N7fw5_39oK0zsuL47k.roa
File: FRRfVeU15N7fw5_39oK0zsuL47k.roa (raw, json)
Hash identifier: BQjj4nVWZioVf8fD0QwITLoKc6MNlgfMcYzz2fuhcWU=
Subject key identifier: 15:14:5F:55:E5:35:E4:DE:DF:C3:9F:F7:F6:82:B4:CE:CB:8B:E3:B9
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018BC07DE2E0DCF7FB246C5274BBE9F9BB3F
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/FRRfVeU15N7fw5_39oK0zsuL47k.roa
Signing time: Sat 11 Nov 2023 22:25:57 +0000
ROA not before: Sat 11 Nov 2023 22:25:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.199.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Nov 2023 22:03:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c0:7d:e2:e0:dc:f7:fb:24:6c:52:74:bb:e9:f9:bb:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 11 22:25:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15145f55e535e4dedfc39ff7f682b4cecb8be3b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:32:27:f9:4a:87:6e:00:d4:6a:8e:08:fe:15:
9e:d5:cf:27:6d:47:69:bd:41:5e:8e:9c:4f:33:9f:
ed:3a:dc:0b:93:62:b6:cf:2e:11:8c:83:a9:8e:b3:
85:dc:df:e4:6c:e7:81:36:10:80:fe:dc:3b:e9:2b:
21:59:f9:4f:c1:9e:4d:ed:e3:a7:cc:ab:6b:f7:83:
21:2c:91:73:4d:60:55:a0:9c:e7:cd:68:62:d6:cf:
10:0e:94:3e:f6:e1:07:f5:9c:5c:c0:79:cf:86:41:
fd:2a:59:38:b2:9b:79:86:03:b9:09:7a:3c:57:fd:
2f:78:14:dc:4d:a9:36:28:a8:db:c3:c8:50:f8:21:
a0:52:3a:00:77:dc:5a:fb:51:d3:0a:92:22:7c:65:
95:ad:65:1f:69:2b:67:91:68:3d:66:d0:0e:49:b3:
70:26:a8:88:f3:84:11:37:ec:e8:29:29:32:c3:34:
5e:f3:93:ce:fa:e5:d6:ed:22:21:90:fd:98:71:1b:
0b:58:99:3f:d6:80:15:29:e2:af:f1:38:89:c2:0f:
0b:88:3c:51:68:30:8a:7e:8a:47:14:d7:eb:c5:72:
b9:eb:d7:f7:f5:28:ee:6d:08:e9:63:78:42:56:98:
dd:0a:d3:4e:2c:c9:b0:41:4f:c1:94:34:99:03:41:
26:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:14:5F:55:E5:35:E4:DE:DF:C3:9F:F7:F6:82:B4:CE:CB:8B:E3:B9
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/FRRfVeU15N7fw5_39oK0zsuL47k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.35.0-163.5.36.255
163.5.62.0/24
163.5.79.0/24
163.5.83.0/24
163.5.89.0/24
163.5.94.0/23
163.5.99.0/24
163.5.106.0/24
163.5.110.0-163.5.114.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.142.0/23
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.156.0/24
163.5.160.0/23
163.5.167.0/24
163.5.170.0/24
163.5.176.0/24
163.5.178.0/24
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.199.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.252.0/23
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
90:2b:44:6b:15:a7:92:56:2c:52:35:67:88:77:60:fb:73:ec:
f9:0b:fb:b4:2e:88:ca:ca:fd:85:60:4d:f6:bf:51:51:1e:2a:
ad:1c:a6:a9:71:03:d3:21:d3:3e:29:a8:c7:7a:2e:7e:a3:5b:
fd:7e:fa:b3:ab:7f:36:5e:1e:34:52:8e:3c:69:61:c2:58:48:
16:92:18:04:1c:f0:54:06:2b:ac:27:8d:88:60:e8:03:42:9d:
2c:4c:20:b7:ce:9b:b9:45:7e:ab:ff:25:67:49:9a:24:2a:66:
ab:7d:d5:b7:0d:41:7c:68:0f:2d:12:e1:0b:78:ba:8d:3c:81:
9f:f1:4b:ae:a9:59:ad:e1:24:0d:e3:9f:75:b1:60:39:ea:4f:
5f:41:46:ff:f5:e5:03:f5:a7:69:a9:06:24:89:2b:e3:b5:ba:
63:82:56:c4:5c:ec:3f:69:09:dd:47:fd:1e:2e:f9:38:c3:65:
c9:44:e3:a8:fc:a0:64:b6:32:b4:f1:22:bb:2b:bb:d4:69:48:
5d:82:a3:02:0b:e7:70:04:19:09:1a:c4:8c:9d:76:09:da:a8:
6a:74:2c:11:33:9d:d2:14:17:c1:33:0d:9e:1e:f7:29:5f:fb:
c3:01:42:a9:e6:41:5e:51:a6:bf:94:ae:62:df:9a:ba:27:d8:
98:86:73:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:30 2024 by rpki-client on console-ams.rpki-client.org