Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Jw8BBw0fTdtgoyJRHuh0reCpRV8.roa
File: Jw8BBw0fTdtgoyJRHuh0reCpRV8.roa (raw, json)
Hash identifier: lnyh5mcrK05FN0FVompVpqXKRgBmrALhWTb9aYlDtpw=
Subject key identifier: 27:0F:01:07:0D:1F:4D:DB:60:A3:22:51:1E:E8:74:AD:E0:A9:45:5F
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01936037CDF7983DCE3E49F43F2C6FF0F572
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Jw8BBw0fTdtgoyJRHuh0reCpRV8.roa
Signing time: Sun 24 Nov 2024 22:08:10 +0000
ROA not before: Sun 24 Nov 2024 22:08:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.7.0/24 maxlen: 24
163.5.8.0/24 maxlen: 24
163.5.9.0/24 maxlen: 24
163.5.12.0/24 maxlen: 24
163.5.13.0/24 maxlen: 24
163.5.17.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.92.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Nov 2024 06:36:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:60:37:cd:f7:98:3d:ce:3e:49:f4:3f:2c:6f:f0:f5:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 24 22:08:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=270f01070d1f4ddb60a322511ee874ade0a9455f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d1:16:ef:3b:f6:04:09:2b:c9:33:f1:41:fe:
c6:83:74:90:6e:07:d5:c5:7d:3a:d9:83:87:84:aa:
41:90:09:1c:02:34:1d:5b:36:cc:33:c3:01:b6:b0:
70:a9:97:d6:3d:e6:42:6c:ff:8e:6f:aa:14:2e:33:
6e:9e:f1:d0:cf:db:9f:55:9e:7b:b4:d3:bc:16:bf:
64:68:b3:b0:21:99:db:9a:87:ab:cc:66:20:e3:f7:
55:a4:7d:91:00:4f:d8:82:c3:4a:2a:39:ef:76:21:
2a:26:91:5e:ed:65:b4:cd:53:fe:95:19:11:1e:92:
e1:42:4f:b9:f7:43:20:09:bc:2f:61:bb:92:ad:6b:
3d:8d:67:4f:59:e8:c7:a3:97:02:af:ac:d8:5f:af:
7e:39:c9:df:45:25:19:c6:00:e6:67:fd:7c:88:ba:
38:7e:6a:1a:97:6c:af:35:ef:ed:52:01:7e:56:34:
20:7b:34:b9:36:34:cd:26:9d:c1:50:6a:b0:63:a1:
04:b6:32:ea:b8:25:8a:2f:97:c4:27:a5:33:1d:32:
2d:bf:0b:f7:7a:64:2f:e7:e0:13:ca:d3:fe:dd:59:
57:32:91:18:dc:ff:09:18:f3:86:3f:f3:d7:70:9b:
5d:7e:a7:01:58:62:f9:4b:a8:7d:bb:d0:ca:de:88:
92:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:0F:01:07:0D:1F:4D:DB:60:A3:22:51:1E:E8:74:AD:E0:A9:45:5F
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Jw8BBw0fTdtgoyJRHuh0reCpRV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.7.0-163.5.9.255
163.5.12.0/23
163.5.17.0/24
163.5.30.0/24
163.5.59.0/24
163.5.73.0/24
163.5.89.0/24
163.5.92.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.138.0/23
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:d2:fa:94:22:75:62:fb:63:3d:28:97:fc:99:fe:35:01:e1:
8b:8a:0f:93:f9:46:da:14:de:80:86:cb:22:ab:d0:8c:bb:2f:
89:6e:f7:f7:34:34:92:b4:dd:3f:52:80:89:bc:1d:88:55:c4:
08:46:e9:ed:35:6f:80:ed:0c:9c:60:bb:9e:a0:db:6f:b4:ce:
23:23:06:74:cb:55:1d:ba:8b:59:1b:86:b2:f7:96:c9:b7:08:
1d:42:12:9e:67:e5:21:5f:b9:48:08:10:54:18:c4:e9:48:31:
e9:33:81:d5:4a:54:05:92:4e:b2:63:ee:c9:c6:63:bf:94:d7:
c8:c6:9a:d5:a3:44:ce:86:cc:26:a6:c8:e8:b0:07:79:3c:e9:
de:67:21:43:05:09:53:4b:33:62:b6:23:4c:30:bb:7b:fe:a6:
02:c5:d1:9c:b3:d9:67:ff:6b:97:d5:64:da:c4:e4:a7:19:e8:
62:7b:7c:47:61:b0:c3:b1:13:bd:6a:82:a3:db:1e:a6:53:95:
40:b9:b2:49:c4:87:58:4f:cd:fd:2e:29:96:85:6b:13:c8:b8:
c9:73:a0:db:ba:3b:49:2b:29:58:50:51:32:29:6d:02:1d:b1:
5f:cd:5f:3b:f4:2a:35:51:ce:51:01:7f:d7:a0:b6:9e:2f:0c:
50:ca:b3:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 07:55:12 2024 by rpki-client on console-ams.rpki-client.org