Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GD10IJfvaCQKKtPdvpSNXYfp7JU.roa
File: GD10IJfvaCQKKtPdvpSNXYfp7JU.roa (raw, json)
Hash identifier: Qe3p+apa0DOW6MZyRMY6phBuqCdFjmm4sGwfZf2LG2Y=
Subject key identifier: 18:3D:74:20:97:EF:68:24:0A:2A:D3:DD:BE:94:8D:5D:87:E9:EC:95
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0191993CC7637A3BB1B15D2A2C29ED8DBF05
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GD10IJfvaCQKKtPdvpSNXYfp7JU.roa
Signing time: Wed 28 Aug 2024 13:46:22 +0000
ROA not before: Wed 28 Aug 2024 13:46:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 13:19:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:99:3c:c7:63:7a:3b:b1:b1:5d:2a:2c:29:ed:8d:bf:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 28 13:46:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=183d742097ef68240a2ad3ddbe948d5d87e9ec95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:47:dc:10:ea:a4:4b:17:37:d2:7a:9f:0f:53:
48:52:05:ce:93:a9:54:88:11:f1:9d:64:fc:a0:3b:
91:41:46:54:54:fe:a7:b2:e4:28:7e:0d:68:24:47:
32:29:1d:48:e8:f3:d6:9e:24:b9:5d:8e:a6:99:df:
c0:0c:95:25:99:c0:13:6f:2e:9c:61:fc:7f:b1:39:
15:47:0c:e4:c7:c4:ff:48:18:51:58:61:0f:ca:7d:
5e:33:41:58:da:9b:66:d0:72:3a:e8:7a:8d:0b:15:
bc:d3:9d:56:63:3c:fd:78:d3:e0:18:64:6f:41:5d:
f2:cc:d7:c6:18:13:2d:a1:35:48:7f:dd:0d:1c:da:
02:95:ac:a3:95:ea:d7:5b:dc:6b:81:cb:1c:44:d9:
1b:9d:9f:ab:48:89:fe:be:c9:f7:bf:c7:52:58:e8:
e0:86:61:75:82:af:e7:f7:1d:a5:5e:91:cf:36:22:
b5:2b:9c:ad:6c:ec:d5:4d:d4:92:a5:cf:87:64:77:
28:a7:f7:22:8d:ff:7e:15:97:00:20:78:49:d9:92:
04:30:24:1c:a7:f9:99:82:ae:0f:4d:3c:af:a7:54:
9c:97:26:0f:1c:3c:11:51:00:c2:7b:84:69:7a:c3:
b2:45:17:2a:68:8c:8d:e3:7d:0e:5d:fc:55:83:6c:
de:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:3D:74:20:97:EF:68:24:0A:2A:D3:DD:BE:94:8D:5D:87:E9:EC:95
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GD10IJfvaCQKKtPdvpSNXYfp7JU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.51.0/24
163.5.59.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.158.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/23
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.247.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:02:5b:2e:42:1b:0c:d5:90:be:a7:66:8c:1c:3d:7e:13:b3:
9d:38:b1:b1:19:c0:d2:d0:00:40:81:a7:88:3a:4c:93:3e:9a:
1e:9d:cc:da:05:f7:79:bf:fd:fa:0c:10:f6:4d:e4:8b:13:93:
99:f4:54:e1:11:f6:7f:ad:43:78:ea:e5:6d:f6:f9:c8:e0:8d:
06:15:b0:af:3a:dc:e5:50:32:c8:aa:5c:7c:e0:a6:54:78:c7:
13:a3:89:bd:95:4c:84:57:9e:75:43:59:bf:bc:ba:a2:84:20:
94:e4:80:6a:7a:0a:5c:98:cc:55:3b:2c:b9:83:a4:2f:31:f9:
11:03:0d:5b:af:f2:df:3c:b2:2f:0b:cf:17:f4:ae:62:59:98:
ce:ce:f8:d7:ee:45:0c:97:59:34:aa:2d:69:8c:bd:fc:d0:ad:
bd:ff:1d:11:c5:4b:f9:b5:76:d9:6f:43:59:09:d1:94:08:10:
a2:f3:43:fc:b4:1a:b7:30:b1:45:82:ba:be:4d:00:fc:54:2c:
63:34:c4:6e:66:1d:50:50:2b:83:ee:b7:51:d1:e0:5f:6d:3b:
21:32:86:ba:3a:d4:a2:c7:da:87:39:47:2a:90:16:ef:84:34:
bc:5d:8b:87:bb:6d:86:68:76:fb:e3:bd:3a:15:20:a8:a2:41:
84:7d:21:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 15:00:46 2024 by rpki-client on console-fra.rpki-client.org