Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/M9OVMro3YcGggVSZlsILWzn-82w.roa
File: M9OVMro3YcGggVSZlsILWzn-82w.roa (raw, json)
Hash identifier: RW0G86rJ2JaXdDvGnNQUtPd7g9ziX0mtyKRzknrreDU=
Subject key identifier: 33:D3:95:32:BA:37:61:C1:A0:81:54:99:96:C2:0B:5B:39:FE:F3:6C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018DB673D959D5A40CD491CFC98DB82D589F
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/M9OVMro3YcGggVSZlsILWzn-82w.roa
Signing time: Sat 17 Feb 2024 09:44:21 +0000
ROA not before: Sat 17 Feb 2024 09:44:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.145.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Feb 2024 21:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b6:73:d9:59:d5:a4:0c:d4:91:cf:c9:8d:b8:2d:58:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 17 09:44:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33d39532ba3761c1a081549996c20b5b39fef36c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6f:bc:5d:8b:b8:b1:40:db:64:fe:b1:ab:8c:
15:78:77:40:93:3c:fb:b2:5d:17:40:09:30:9c:0e:
fb:8a:05:82:c0:29:d9:40:25:5e:05:0f:a6:52:df:
d9:3e:16:89:ab:c4:28:03:9b:cb:e0:83:57:8a:29:
a1:a4:d1:e3:ec:fd:ad:7b:2e:19:d4:16:63:a9:0d:
7f:b9:6f:7e:08:58:cd:f0:f8:74:d5:b5:1b:6c:e6:
ca:66:d4:fd:74:07:1a:8f:06:74:f2:10:41:c5:cd:
af:d2:99:9f:62:fc:15:c5:07:a1:15:f2:9e:80:1b:
5f:b8:f6:ba:4a:90:3c:18:bc:e8:55:9f:ef:08:54:
a4:9e:be:94:12:06:0e:59:80:ca:5b:5e:a3:fe:28:
13:47:c4:20:b5:f2:d2:a2:ae:17:af:f1:72:c5:a7:
a4:69:66:8e:43:fc:57:ca:66:e5:c4:0b:72:10:9a:
c0:ae:0d:6c:f4:ac:dd:58:58:45:4d:e4:a6:7a:28:
49:2c:17:46:03:f1:2e:83:42:50:d0:5b:c1:dd:a2:
a0:a1:5a:a1:3e:6a:4a:67:db:74:5b:17:c4:09:9d:
69:c9:46:35:a6:e3:15:a9:8d:e7:0b:98:9d:b0:12:
0e:9e:52:63:fb:80:b0:cc:5f:88:3e:32:e9:17:3e:
33:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D3:95:32:BA:37:61:C1:A0:81:54:99:96:C2:0B:5B:39:FE:F3:6C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/M9OVMro3YcGggVSZlsILWzn-82w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.79.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.139.0/24
163.5.143.0/24
163.5.145.0-163.5.146.255
163.5.148.0/24
163.5.151.0/24
163.5.160.0/23
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.212.0/24
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.248.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:16:63:72:82:96:04:59:22:fa:8d:03:ee:66:63:13:38:d9:
3d:8e:df:c4:26:93:2e:86:93:a9:5b:9f:53:48:5a:67:c9:db:
4d:df:4b:89:5b:24:0e:bd:ef:28:3b:99:da:ad:fa:db:2d:d8:
cd:31:7d:a1:e8:1e:9a:2d:aa:79:de:c7:9a:7a:ef:9c:cb:18:
99:3c:06:35:8b:e3:70:1d:00:20:94:f9:34:f0:65:53:f9:15:
03:46:46:5f:55:00:cc:d7:7d:1d:33:6e:cc:60:49:73:61:a4:
48:fc:45:d1:67:4f:56:ba:b9:09:76:d0:91:9d:b6:07:52:95:
38:35:4a:d4:d7:09:d3:97:09:69:e3:d1:8c:cd:46:82:9c:8f:
e7:c1:57:bd:6d:69:f8:ac:45:40:3b:21:f8:9f:6d:62:52:3f:
cd:f5:b3:2c:9c:c8:b3:63:5e:c5:fe:ba:da:84:ad:b9:e9:55:
33:de:0f:49:02:e4:92:d3:c6:ff:cf:2d:27:2c:54:5e:57:56:
ba:9b:3a:9e:a9:08:ff:eb:c8:3f:db:3f:fd:50:2c:8c:bd:d3:
98:82:5b:79:3c:d2:0c:d6:94:2f:ce:64:d6:1c:5a:8c:df:72:
d2:36:ad:90:55:a5:b8:8e:b2:9b:b5:fb:57:87:ff:da:1b:27:
c4:b3:f5:f3
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgISAY22c9lZ1aQM1JHPyY24LVifMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwMjE3MDk0NDIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2QzOTUzMmJhMzc2MWMxYTA4MTU0OTk5NmMyMGI1YjM5ZmVmMzZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2+8XYu4sUDbZP6xq4wVeHdAkzz7
sl0XQAkwnA77igWCwCnZQCVeBQ+mUt/ZPhaJq8QoA5vL4INXiimhpNHj7P2tey4Z
1BZjqQ1/uW9+CFjN8Ph01bUbbObKZtT9dAcajwZ08hBBxc2v0pmfYvwVxQehFfKe
gBtfuPa6SpA8GLzoVZ/vCFSknr6UEgYOWYDKW16j/igTR8QgtfLSoq4Xr/Fyxaek
aWaOQ/xXymblxAtyEJrArg1s9KzdWFhFTeSmeihJLBdGA/Eug0JQ0FvB3aKgoVqh
PmpKZ9t0WxfECZ1pyUY1puMVqY3nC5idsBIOnlJj+4CwzF+IPjLpFz4zIQIDAQAB
o4ICzjCCAsowHQYDVR0OBBYEFDPTlTK6N2HBoIFUmZbCC1s5/vNsMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvTTlPVk1ybzNZY0dnZ1ZTWmxzSUxXem4tODJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHjBggrBgEFBQcBBwEB/wSB0zCB0DCBzQQCAAEwgcYDBACj
BR4DBACjBU8DBACjBVkwDAMEAaMFbgMEAaMFcAMEAKMFeQMEAKMFfgMEAKMFgAME
AKMFhgMEAKMFiwMEAKMFjzAMAwQAowWRAwQAowWSAwQAowWUAwQAowWXAwQBowWg
AwQAowWnAwQAowWyAwQAowW2AwQBowW8AwQAowW/AwQAowXJMAwDBACjBcsDBAGj
BcwDBACjBdQDBACjBdoDBACjBeADBACjBeQDBACjBfEDBACjBfgDBACjBfoDBACj
Bf0wDQYJKoZIhvcNAQELBQADggEBAK0WY3KClgRZIvqNA+5mYxM42T2O38Qmky6G
k6lbn1NIWmfJ203fS4lbJA697yg7mdqt+tst2M0xfaHoHpotqnnex5p675zLGJk8
BjWL43AdACCU+TTwZVP5FQNGRl9VAMzXfR0zbsxgSXNhpEj8RdFnT1a6uQl20JGd
tgdSlTg1StTXCdOXCWnj0YzNRoKcj+fBV71tafisRUA7IfifbWJSP831syycyLNj
XsX+utqErbnpVTPeD0kC5JLTxv/PLScsVF5XVrqbOp6pCP/ryD/bP/1QLIy905iC
W3k80gzWlC/OZNYcWozfctI2rZBVpbiOspu1+1eH/9obJ8Sz9fM=
-----END CERTIFICATE-----
Generated at Thu Feb 22 02:26:27 2024 by rpki-client on console-fra.rpki-client.org