Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IHQpep0aYly5RQHY0czn8Kh2A0g.roa
File: IHQpep0aYly5RQHY0czn8Kh2A0g.roa (raw, json)
Hash identifier: UipXO32bOfkoAxHyfqGMdlaGzKmhbN2ttrpgEBB/pXs=
Subject key identifier: 20:74:29:7A:9D:1A:62:5C:B9:45:01:D8:D1:CC:E7:F0:A8:76:03:48
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01898433FF564444F7B72C38485EDA0A4668
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IHQpep0aYly5RQHY0czn8Kh2A0g.roa
Signing time: Sun 23 Jul 2023 19:22:27 +0000
ROA not before: Sun 23 Jul 2023 19:22:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 163.5.229.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.88.0/24 maxlen: 24
163.5.90.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.117.0/24 maxlen: 24
163.5.38.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.63.0/24 maxlen: 24
163.5.60.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jul 2023 20:44:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:84:33:ff:56:44:44:f7:b7:2c:38:48:5e:da:0a:46:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 23 19:22:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2074297a9d1a625cb94501d8d1cce7f0a8760348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6f:de:ca:a8:40:b6:85:0a:bc:24:37:c8:a2:
2b:78:50:6b:eb:9a:00:cb:3d:35:40:d6:5f:6d:0b:
0c:2d:1c:bc:c8:56:23:23:0d:b6:d2:86:73:b4:8d:
55:ae:46:05:6e:b9:0a:7d:b4:00:4f:59:18:c9:b6:
87:e1:85:c0:78:0f:f3:41:6b:02:eb:35:10:91:26:
e3:6f:ac:c5:ee:48:63:4b:d1:0b:43:6f:cf:dd:78:
ef:8c:5e:cc:c1:82:88:ee:a7:1b:a4:2c:51:ff:79:
a6:bb:f8:60:0e:75:c6:67:f3:c7:a2:af:78:37:c3:
f7:f8:c4:9a:7a:f0:1f:cf:04:c7:44:50:71:d0:c3:
4d:cb:19:96:4d:97:85:5d:8c:56:30:a6:a0:a8:c6:
46:29:93:fd:88:d7:03:e6:c8:72:a0:21:ba:8b:cc:
85:5f:77:13:ef:c7:28:94:2e:ec:93:5a:cd:e0:9c:
e1:95:b6:92:98:8d:b1:f0:7d:da:74:da:4f:5f:d2:
64:43:72:1e:b8:c0:ce:70:79:b4:ca:ca:29:57:ed:
53:a5:dc:1e:80:77:96:09:00:05:c8:c0:05:bb:2e:
1d:b3:8b:6d:c9:91:2b:3c:9e:bb:55:2a:e1:4d:db:
27:1c:26:1c:b5:e1:4b:0e:1d:24:a2:a1:7a:25:98:
2d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:74:29:7A:9D:1A:62:5C:B9:45:01:D8:D1:CC:E7:F0:A8:76:03:48
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/IHQpep0aYly5RQHY0czn8Kh2A0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.38.0/23
163.5.60.0/24
163.5.63.0/24
163.5.71.0/24
163.5.88.0/24
163.5.90.0/24
163.5.93.0/24
163.5.101.0-163.5.102.255
163.5.108.0/23
163.5.116.0/23
163.5.119.0/24
163.5.130.0/23
163.5.134.0/24
163.5.147.0/24
163.5.171.0/24
163.5.174.0/24
163.5.189.0/24
163.5.192.0/24
163.5.225.0/24
163.5.228.0/23
163.5.240.0/24
163.5.246.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:2f:42:60:ba:2d:ea:b2:b8:73:15:93:76:86:46:aa:4c:45:
9b:82:ba:af:60:13:e7:88:72:81:d3:f8:ba:cf:aa:9e:52:e6:
18:89:47:a7:71:43:01:e4:14:b2:81:df:de:32:84:a2:ae:66:
35:3c:0b:bc:0a:ac:50:6f:4b:b0:96:c3:68:b9:40:ea:6c:e1:
0d:90:5a:a4:a8:6a:ae:f3:f8:07:c3:c9:87:ac:f3:6b:fe:3a:
10:88:c8:1f:86:52:ba:4f:5c:37:61:d1:e6:3f:b2:ff:de:d3:
b6:27:bd:02:02:00:1b:dd:6f:39:79:10:30:30:fb:28:2d:f6:
94:0e:b8:30:90:a0:66:f3:04:ed:49:24:2b:b9:05:da:bd:03:
75:b0:af:27:12:fc:ca:ad:1e:0b:96:37:4d:e5:ac:d3:dd:2f:
52:1d:97:72:8f:3b:15:cd:ce:a9:d4:d5:b2:47:96:b6:31:9a:
86:4e:f8:46:e9:07:3f:c1:df:88:30:72:8f:4a:bc:17:49:16:
74:d2:68:99:36:c4:23:a0:08:fe:ed:13:68:c6:f9:f0:f0:29:
73:b1:f3:76:71:b2:8e:0f:2d:9e:41:d5:c3:bc:10:d8:11:f3:
2a:21:e1:4b:6f:c4:f0:35:14:f8:4a:48:7f:7c:44:90:3b:6e:
6a:9c:7d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:30 2024 by rpki-client on console-ams.rpki-client.org