Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/M_U_mF6Ygc5Sljrg90Zm6QGPnAI.roa
File: M_U_mF6Ygc5Sljrg90Zm6QGPnAI.roa (raw, json)
Hash identifier: 7EpoMVN6QOcTQbwGzWeb1o5oB2Npv8VntsvTRqDpbrc=
Subject key identifier: 33:F5:3F:98:5E:98:81:CE:52:96:3A:E0:F7:46:66:E9:01:8F:9C:02
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018D6AAD9150328E38EE3733DF91DE8E4D49
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/M_U_mF6Ygc5Sljrg90Zm6QGPnAI.roa
Signing time: Fri 02 Feb 2024 16:36:16 +0000
ROA not before: Fri 02 Feb 2024 16:36:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Feb 2024 11:48:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6a:ad:91:50:32:8e:38:ee:37:33:df:91:de:8e:4d:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 2 16:36:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33f53f985e9881ce52963ae0f74666e9018f9c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b2:89:98:49:a3:7f:45:01:6d:9c:cd:76:f1:
8e:ff:70:54:0c:3f:e7:00:86:4a:64:b1:8b:c2:4a:
4b:77:ad:94:2e:73:0a:c6:87:51:5a:d0:8f:52:d3:
01:42:3d:85:f2:14:d8:f4:b4:08:5b:fa:76:cd:35:
58:2c:3c:ba:39:b0:0c:76:39:17:d8:25:f6:b0:57:
08:d2:59:38:82:c5:32:46:03:9f:37:d5:1b:bc:b9:
79:2a:65:49:7b:e4:01:19:1e:b2:c9:d5:c6:6c:9a:
cf:5a:6b:f8:28:3f:82:ff:c7:a9:4e:09:d1:e2:8c:
1b:d3:1f:13:cd:74:82:17:4b:be:67:8b:b9:0f:6f:
d6:df:ff:49:87:2e:75:a6:21:de:3f:2d:68:05:a3:
81:04:d3:d4:a8:76:8d:87:27:68:a5:12:b8:5c:0b:
52:20:66:44:e0:3b:fa:ac:14:2a:65:58:79:d3:ff:
54:b2:50:9a:62:50:47:ab:ac:63:23:23:68:ea:3a:
cd:62:c2:e1:df:17:1f:89:82:4c:01:64:f9:a0:5b:
10:69:46:b3:fc:e6:59:e3:21:98:8a:01:11:32:80:
55:18:fb:d1:cc:58:2e:bf:9f:8f:bc:43:0f:79:15:
fa:2f:07:a3:76:6d:02:25:fe:95:ed:8b:33:5f:2d:
0a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F5:3F:98:5E:98:81:CE:52:96:3A:E0:F7:46:66:E9:01:8F:9C:02
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/M_U_mF6Ygc5Sljrg90Zm6QGPnAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.79.0/24
163.5.83.0/24
163.5.89.0/24
163.5.94.0/24
163.5.104.0/24
163.5.106.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
30:ed:e1:af:82:9b:48:79:b0:c3:69:b3:94:bf:68:1c:a6:dc:
6f:b3:4f:1f:e5:58:df:8f:11:21:4a:29:f7:fb:e9:a6:a3:07:
d3:21:f3:e1:fb:70:b0:0b:a4:80:00:ba:31:7d:57:d7:b7:41:
24:f6:e7:c7:df:78:7f:46:e9:bc:6b:37:e7:51:fb:31:43:9a:
1b:81:9c:33:f7:65:4a:c7:3d:0e:36:01:1b:7b:ef:69:07:b8:
33:7f:fc:a5:75:27:3a:2c:40:9d:d9:e3:53:00:b5:96:cb:20:
5f:5b:54:d9:75:eb:f9:ea:af:cb:f4:2c:ec:59:e0:9d:50:8b:
e5:a4:1c:c3:91:0f:7a:77:5f:60:ae:a0:17:fd:52:34:5d:d5:
7a:f3:d1:6c:a4:fa:26:6e:41:f9:c1:b5:cd:7f:75:c0:e6:d3:
54:de:a0:90:fa:d4:66:99:09:ee:a2:84:c1:ac:93:0e:99:16:
aa:01:08:c3:b7:b7:b7:cc:bf:c3:50:0f:1e:95:46:12:7c:29:
5c:93:74:62:0b:a1:67:b3:ca:1d:91:dc:20:e2:90:ed:f9:b7:
26:2e:c1:7d:0d:0d:0e:38:e9:07:09:b8:0f:3f:20:f2:23:9e:
8d:b4:38:5d:3a:3f:4c:a6:fe:ec:f2:eb:6d:cf:fd:41:cb:19:
f3:29:41:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 4 14:31:17 2024 by rpki-client on console-fra.rpki-client.org