Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ObBGKKmTxq1cWr5UQRb2exg6rEQ.roa
File: ObBGKKmTxq1cWr5UQRb2exg6rEQ.roa (raw, json)
Hash identifier: wfFI9Vnyh+fVPsY0yq2Qe1I8uG9MfEETkqqhx1+8d0w=
Subject key identifier: 39:B0:46:28:A9:93:C6:AD:5C:5A:BE:54:41:16:F6:7B:18:3A:AC:44
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018BF7BF27B759A5F7801E93B75BB591C99E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ObBGKKmTxq1cWr5UQRb2exg6rEQ.roa
Signing time: Wed 22 Nov 2023 15:56:21 +0000
ROA not before: Wed 22 Nov 2023 15:56:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 163.5.230.0/24 maxlen: 24
163.5.227.0/24 maxlen: 24
163.5.229.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.238.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.245.0/24 maxlen: 24
163.5.243.0/24 maxlen: 24
163.5.88.0/24 maxlen: 24
163.5.90.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.117.0/24 maxlen: 24
163.5.38.0/24 maxlen: 24
163.5.34.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.63.0/24 maxlen: 24
163.5.60.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.177.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.226.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Dec 2023 17:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f7:bf:27:b7:59:a5:f7:80:1e:93:b7:5b:b5:91:c9:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 22 15:56:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39b04628a993c6ad5c5abe544116f67b183aac44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:54:06:f3:b6:5d:d7:30:3c:10:59:d5:8a:d4:
d9:78:3f:fd:a9:9f:44:c6:2e:c7:e0:f2:42:b4:11:
ff:f5:15:5e:6c:71:65:14:09:46:7a:1c:4a:26:40:
c8:70:5c:a8:8f:3f:8d:89:0b:17:49:ed:8a:cc:d8:
d8:f6:db:ba:8c:b6:d4:5a:eb:11:3b:98:6b:a9:9e:
35:ad:f5:99:36:34:f9:a6:83:48:5c:24:cd:26:16:
6a:51:72:cd:ae:02:f8:d5:e2:a7:17:a7:71:87:89:
6a:0c:c6:8b:45:21:64:aa:9d:4a:1a:ed:c3:d1:b7:
80:d0:4a:d1:06:92:10:4a:bf:bd:d4:a9:55:bb:0e:
bd:b8:79:78:bf:33:5c:fe:a6:df:2e:5d:8f:e0:2e:
3c:dd:0b:e9:c9:4a:fc:ef:9e:03:e4:c7:df:10:fe:
78:1a:2d:9c:5c:0c:66:19:94:a7:44:91:00:7b:6f:
f5:d1:6e:bf:3d:cf:89:13:32:c7:6b:0c:b4:4f:68:
72:5f:95:36:8f:7e:ca:5c:44:36:ae:bf:9b:29:9c:
29:96:dc:63:73:6a:d6:16:f3:5a:63:d3:28:4b:98:
e8:c6:16:21:19:76:70:d8:bc:c2:7e:8e:de:a3:83:
33:f2:b0:13:01:50:d8:26:f8:a0:3e:e6:f1:6e:fb:
36:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B0:46:28:A9:93:C6:AD:5C:5A:BE:54:41:16:F6:7B:18:3A:AC:44
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ObBGKKmTxq1cWr5UQRb2exg6rEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.34.0/24
163.5.38.0/23
163.5.60.0/24
163.5.63.0/24
163.5.88.0/24
163.5.90.0/24
163.5.93.0/24
163.5.100.0-163.5.102.255
163.5.108.0/23
163.5.114.0/24
163.5.116.0/22
163.5.130.0/23
163.5.133.0-163.5.134.255
163.5.147.0/24
163.5.161.0/24
163.5.171.0/24
163.5.174.0/24
163.5.177.0/24
163.5.179.0/24
163.5.189.0/24
163.5.192.0/24
163.5.225.0-163.5.230.255
163.5.238.0/24
163.5.240.0/24
163.5.243.0/24
163.5.245.0-163.5.246.255
Signature Algorithm: sha256WithRSAEncryption
98:3f:b2:c9:68:35:ef:b5:27:a6:bb:31:ff:8f:1e:8c:44:23:
0a:20:a0:1f:11:05:a5:74:8b:c9:95:c3:4f:bf:f6:5c:a8:2d:
c1:6f:d8:1a:95:b3:fa:83:af:dd:69:8d:92:c5:82:8c:c7:7a:
c0:4d:24:7a:0a:73:1f:9f:1d:86:fb:7d:f0:cd:d1:75:46:e1:
51:91:45:bd:2f:fd:96:e8:31:96:2b:cf:81:8c:09:33:a4:3a:
b0:83:d7:c1:9b:d5:b4:2c:63:ba:4a:e9:3d:db:47:e5:d0:e5:
10:5b:90:8d:ba:18:88:6e:e2:8f:03:90:79:09:5b:dc:11:cc:
54:4e:f3:b2:51:f0:ab:cb:8e:07:b7:7d:3d:bc:4c:c5:b4:f1:
7b:9a:1a:9e:33:ba:b1:31:f1:5b:4b:d0:65:39:5b:1a:e5:6f:
ff:c8:83:6f:f9:d9:0e:d8:36:b1:b8:26:45:4c:18:39:93:3e:
60:a9:a3:c3:3f:eb:3d:17:03:a4:9d:2a:90:5b:74:84:bb:e9:
77:41:62:6a:e2:ab:6c:cf:c8:dc:ab:f2:7c:08:92:05:32:86:
9e:94:80:b5:ef:03:5e:b3:63:e8:6e:b1:2c:b6:36:b1:00:51:
61:55:32:78:b8:02:86:db:fb:20:11:53:15:13:6a:25:15:77:
d7:07:11:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:31 2024 by rpki-client on console-ams.rpki-client.org