Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/L2b__H3scW09nQ0U78pB-xtOVdI.roa
File: L2b__H3scW09nQ0U78pB-xtOVdI.roa (raw, json)
Hash identifier: LWBEZtuVoSWkKnsOsZTKqaBeXFcAgalGrgpGZy456pw=
Subject key identifier: 2F:66:FF:FC:7D:EC:71:6D:3D:9D:0D:14:EF:CA:41:FB:1B:4E:55:D2
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01932F92CD0B7471F704CFE51FCF2F418CB6
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/L2b__H3scW09nQ0U78pB-xtOVdI.roa
Signing time: Fri 15 Nov 2024 11:26:10 +0000
ROA not before: Fri 15 Nov 2024 11:26:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.17.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.92.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Nov 2024 06:54:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2f:92:cd:0b:74:71:f7:04:cf:e5:1f:cf:2f:41:8c:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 15 11:26:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f66fffc7dec716d3d9d0d14efca41fb1b4e55d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5e:0d:12:bf:17:1b:74:99:4f:f8:76:a3:83:
be:cf:62:d8:21:ac:f8:e3:56:22:73:43:31:cf:c4:
29:19:34:ef:e3:79:ba:65:51:cb:71:36:57:2f:31:
bb:85:4b:17:4c:37:4b:d0:34:37:d7:97:97:46:66:
28:95:93:37:15:8b:91:26:1b:86:f3:9a:99:f1:4b:
a7:7a:b8:bc:74:63:87:91:16:15:96:49:1e:54:fd:
76:a0:da:c4:6a:e0:7d:00:c1:be:f5:e7:a7:bb:57:
52:be:15:26:bb:88:51:ed:8d:9b:be:79:cb:ba:6f:
31:e8:cd:8f:a5:4d:6d:f8:16:c3:a2:4f:e9:42:b5:
a2:7d:44:5d:b9:c7:98:6f:75:76:39:fa:4a:1a:2e:
cc:38:20:a0:8b:ba:be:a9:4f:b5:cf:6e:aa:26:df:
14:92:9c:b9:1c:b6:00:dc:63:47:f9:7e:20:1a:20:
95:1f:e9:cf:8a:28:f9:eb:00:94:98:8b:39:02:40:
92:aa:69:27:92:0c:1a:a9:c2:c4:7e:26:d8:12:a4:
4e:30:f1:22:eb:d1:aa:bb:84:32:f7:b2:b6:41:be:
d6:ed:1f:25:26:55:f5:5f:74:f9:6b:24:7e:f0:cc:
78:2d:b5:f0:ff:14:aa:ad:fd:f0:6f:92:54:25:e8:
51:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:66:FF:FC:7D:EC:71:6D:3D:9D:0D:14:EF:CA:41:FB:1B:4E:55:D2
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/L2b__H3scW09nQ0U78pB-xtOVdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.17.0/24
163.5.30.0/24
163.5.59.0/24
163.5.73.0/24
163.5.89.0/24
163.5.92.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:a1:01:94:f1:6b:d2:d1:c0:9c:19:49:00:5c:a3:16:4f:aa:
61:82:5e:76:15:2e:45:46:ad:61:7c:d1:92:66:46:09:93:6a:
98:05:88:ec:13:6a:76:cd:61:9c:fe:37:1b:99:1d:e1:85:57:
f0:39:72:37:6b:bc:b7:dc:c0:c0:13:9d:d4:d2:01:74:9c:fa:
fb:ec:35:d6:6b:28:e4:d8:f0:7b:69:f6:bb:49:ff:e9:8f:a8:
1e:f4:4e:18:80:81:4c:78:2e:fa:ca:51:4b:a3:5b:3f:b9:db:
47:8f:2b:da:7f:79:e5:b3:2c:03:9f:32:7b:ca:82:23:cc:a9:
12:27:f5:bf:8f:df:03:51:97:9c:d3:0b:dd:1d:fc:3f:06:5c:
6e:c1:da:bb:15:8f:3d:30:ce:39:f8:7d:21:27:5e:d9:61:93:
77:4a:b6:9f:d1:2b:c1:d4:ff:f9:c4:c5:56:8b:33:ea:e7:34:
a9:c2:47:17:52:23:cd:5e:b3:60:0e:97:08:7c:e9:8e:d6:6b:
78:cd:16:75:e1:68:85:f4:c3:ad:2c:c4:e8:73:af:b4:e9:52:
69:31:44:20:f4:70:85:1b:d0:4d:f4:e5:6c:ac:8d:74:8a:eb:
40:34:1c:92:39:66:5f:11:cd:9d:4e:a8:9e:1f:08:34:f6:24:
b7:64:02:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 09:20:13 2024 by rpki-client on console-fra.rpki-client.org