Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/HeAYVfAVqXhlHs1EGGkWhnu6As8.roa
File: HeAYVfAVqXhlHs1EGGkWhnu6As8.roa (raw, json)
Hash identifier: V+aIHhDS45HfTNdwwj2ZeHLao+NUdhOb71BPZ2dkYbI=
Subject key identifier: 1D:E0:18:55:F0:15:A9:78:65:1E:CD:44:18:69:16:86:7B:BA:02:CF
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01921E423744C0C7227221E9E7172542AE56
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/HeAYVfAVqXhlHs1EGGkWhnu6As8.roa
Signing time: Mon 23 Sep 2024 09:41:48 +0000
ROA not before: Mon 23 Sep 2024 09:41:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.49.0/24 maxlen: 24
163.5.58.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.173.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 19:09:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1e:42:37:44:c0:c7:22:72:21:e9:e7:17:25:42:ae:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 23 09:41:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1de01855f015a978651ecd44186916867bba02cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e1:0a:38:db:a1:73:ee:8b:08:5b:98:f0:de:
11:bc:9f:48:89:6f:5c:35:16:32:3c:30:54:30:3a:
64:c0:e4:17:97:43:10:d2:cd:15:32:16:9e:2f:0d:
33:52:d9:1b:2e:84:a3:30:c5:f8:51:e7:58:ed:7c:
1e:7f:84:87:c3:f2:4e:8e:ae:80:35:12:b5:1b:07:
d1:94:b9:de:f3:be:2b:1d:0f:06:28:5a:65:11:a9:
c0:49:b0:85:7a:0a:30:a8:8e:f9:0d:a6:54:93:b3:
68:38:95:db:09:3f:c3:65:ec:4a:04:dd:3a:50:80:
34:68:2b:d3:57:d5:c4:1a:e3:25:93:90:8f:c7:37:
fd:98:35:eb:c8:a5:2b:50:2f:73:62:31:9a:f5:84:
80:e0:12:6f:c6:62:55:cf:5a:86:15:0a:75:ac:d7:
3a:84:7f:f7:1e:aa:6d:76:63:ac:1d:fc:1b:6e:43:
32:02:c4:98:de:c2:f0:23:8b:15:d8:83:12:31:70:
2e:43:9a:02:ec:a3:ed:6f:b7:12:fe:2c:f5:34:9e:
3d:41:65:7a:f9:88:26:c8:7f:24:23:e9:5f:7a:99:
e9:ab:3d:33:a5:13:71:b6:a4:fd:c1:b3:97:7c:38:
6e:9e:d9:89:2c:51:bf:e9:9e:72:dc:f7:d7:c6:7d:
c6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E0:18:55:F0:15:A9:78:65:1E:CD:44:18:69:16:86:7B:BA:02:CF
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/HeAYVfAVqXhlHs1EGGkWhnu6As8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.49.0/24
163.5.58.0/23
163.5.73.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.118.0/23
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.132.0/24
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.162.0/24
163.5.167.0/24
163.5.173.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.247.0-163.5.248.255
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:d6:3f:a8:f6:02:8f:27:c7:11:74:47:53:c4:52:4c:9a:95:
2a:94:6e:c8:5a:89:86:a8:27:d3:c2:83:92:54:55:ac:c3:7f:
f7:de:68:3a:9e:3f:cd:df:ef:88:60:ab:05:9f:6d:45:a7:9f:
29:98:f0:b8:71:4c:0d:3a:74:c4:86:50:83:8f:21:33:04:91:
bd:cf:29:c4:f2:8a:7f:27:0b:de:67:4b:4d:b1:04:fd:11:c8:
2c:f4:57:16:34:62:4e:60:24:e3:52:dc:69:79:70:86:7f:44:
b4:39:c5:56:b4:be:15:e3:8a:34:f0:55:67:bd:3f:4a:69:22:
8e:1f:6e:a0:44:92:56:d7:17:e9:fe:4b:21:e4:a5:64:12:e6:
16:58:be:0b:26:60:e1:e5:d8:ea:15:c1:9e:0a:0b:47:cd:8a:
c9:4f:f0:fa:92:a1:73:c9:0f:f3:64:a3:ea:19:cc:37:d3:66:
35:a4:9a:11:ca:17:75:a2:2f:77:3c:a4:7d:24:12:be:ea:4c:
a8:cf:cc:12:17:1b:44:25:45:8c:fa:ea:d0:17:7d:fe:73:a5:
92:85:29:33:25:71:22:f9:3e:1a:92:d8:8e:12:f3:1c:23:d3:
7e:99:3a:05:26:af:5a:be:81:6f:f9:33:c0:ce:31:5f:71:ad:
6f:c7:54:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 23:07:59 2024 by rpki-client on console-ams.rpki-client.org