Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LOeLrhLCCPu_jac1l6sMEBoQJD0.roa
File: LOeLrhLCCPu_jac1l6sMEBoQJD0.roa (raw, json)
Hash identifier: 7DIdJyaIGSNzYgrIy7zjifGcyMx/qtNaOFGNmsPX8+Y=
Subject key identifier: 2C:E7:8B:AE:12:C2:08:FB:BF:8D:A7:35:97:AB:0C:10:1A:10:24:3D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018D5AB35B93CFC0181A2414A5116DEA1FFB
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LOeLrhLCCPu_jac1l6sMEBoQJD0.roa
Signing time: Tue 30 Jan 2024 14:08:40 +0000
ROA not before: Tue 30 Jan 2024 14:08:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.82.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 06:59:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5a:b3:5b:93:cf:c0:18:1a:24:14:a5:11:6d:ea:1f:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 30 14:08:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ce78bae12c208fbbf8da73597ab0c101a10243d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c5:9e:62:8c:a4:d5:88:c9:3a:03:41:55:92:
01:d1:01:fe:d4:eb:af:45:d2:78:ad:99:89:5f:fa:
18:84:dc:fa:62:4f:df:29:82:14:ef:3f:1c:64:94:
23:8a:5b:bd:11:db:1b:2b:91:0a:a3:c6:9f:41:3c:
cd:04:88:c8:aa:0c:b6:c7:6d:33:12:22:d7:14:fc:
31:83:ed:b9:86:5a:4e:40:6c:3c:17:c4:9d:d1:0b:
c3:01:4a:a6:cf:f1:fa:c3:5d:b5:be:9b:e9:2e:fc:
50:56:85:9e:85:58:a3:60:55:e2:d5:78:8a:85:1b:
89:76:a3:d6:58:ba:7e:4a:26:df:3e:db:a3:d4:21:
f1:54:6a:d1:04:fc:89:22:78:de:a7:86:1e:f8:1f:
e7:d6:a0:6f:10:08:ef:e4:a8:4e:a4:97:bb:c5:42:
03:c6:3f:46:bd:20:38:dd:3d:2e:02:1a:82:ef:f5:
e7:0b:9e:b2:fe:dc:ec:b8:f6:92:1f:06:51:ba:af:
8b:65:6b:ef:0c:f6:2e:b8:0b:fa:ea:5a:0e:63:c9:
68:34:5a:ac:8d:0b:40:e5:4c:bf:7d:19:49:68:a6:
41:cd:e8:82:df:21:80:01:da:65:d1:c0:24:18:a0:
9c:b5:21:f2:79:82:49:83:b3:06:da:b8:d7:e4:70:
6b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E7:8B:AE:12:C2:08:FB:BF:8D:A7:35:97:AB:0C:10:1A:10:24:3D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/LOeLrhLCCPu_jac1l6sMEBoQJD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.73.0/24
163.5.79.0/24
163.5.82.0/23
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:3e:01:a4:d7:4f:5f:f8:5b:70:ac:98:e7:49:4c:89:5b:ea:
21:3a:03:e2:dd:7a:db:02:b9:47:4d:5b:0b:e6:ee:c5:49:d0:
5f:96:9a:1d:77:e2:28:bd:54:76:bc:65:27:9e:77:01:6f:75:
74:de:c4:95:f3:03:1e:e5:c2:0e:11:d8:4c:e5:6a:eb:ee:d6:
93:3d:62:d9:10:b3:c5:b4:6a:72:1f:0b:ac:8f:e5:d1:b2:c2:
aa:24:38:10:62:1d:30:da:63:b7:6e:62:63:7f:0d:fd:1e:18:
f2:5b:45:d7:0d:b0:9b:d0:96:f2:59:da:d3:1c:7c:4f:5c:36:
fb:7f:14:47:02:62:c9:23:ee:ce:e0:b5:93:9c:68:4b:98:42:
07:72:f2:93:7a:07:c2:73:a0:de:c8:e3:cb:7f:56:7c:77:e0:
72:08:76:b9:62:41:42:b3:a3:71:23:26:a4:39:37:07:88:54:
07:66:5c:83:03:ea:ce:9b:da:48:73:da:04:96:17:da:8a:d3:
2c:3b:dc:8b:0f:83:10:b8:6b:5c:72:04:44:67:a0:f5:64:a3:
06:9a:cb:0a:0c:26:33:c4:33:e4:fc:be:a9:14:5e:d5:19:ae:
98:80:e8:d4:b1:f1:e9:04:5e:49:37:62:b2:06:ed:cb:43:e8:
46:53:bc:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 31 09:31:28 2024 by rpki-client on console-ams.rpki-client.org