Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PAE8nxnf9zLzFN0mMREgdVfo78g.roa
File: PAE8nxnf9zLzFN0mMREgdVfo78g.roa (raw, json)
Hash identifier: ZoyIKjvATUoVeYPCnrF5CY4XASZKwsSLWBuhWsRS3L0=
Subject key identifier: 3C:01:3C:9F:19:DF:F7:32:F3:14:DD:26:31:11:20:75:57:E8:EF:C8
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B022ECF60326B7A03EA9C78D6088E7C0D
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PAE8nxnf9zLzFN0mMREgdVfo78g.roa
Signing time: Thu 05 Oct 2023 23:31:44 +0000
ROA not before: Thu 05 Oct 2023 23:31:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.231.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.235.0/24 maxlen: 24
163.5.242.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.66.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.78.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.86.0/24 maxlen: 24
163.5.87.0/24 maxlen: 24
163.5.97.0/24 maxlen: 24
163.5.98.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.58.0/24 maxlen: 24
163.5.64.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.216.0/24 maxlen: 24
163.5.217.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.220.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.120.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.122.0/24 maxlen: 24
163.5.123.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:02:2e:cf:60:32:6b:7a:03:ea:9c:78:d6:08:8e:7c:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 5 23:31:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c013c9f19dff732f314dd263111207557e8efc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:97:b9:c7:30:41:4a:7b:82:c8:21:5d:96:a4:
b1:85:d6:80:f0:7f:30:6a:0d:77:7a:8c:88:14:71:
47:c6:35:a9:36:f0:38:e2:30:56:88:51:98:6f:e7:
d4:80:99:19:66:ce:55:79:2c:31:5d:57:df:73:f8:
07:64:d6:43:61:8a:18:cc:f0:fa:2b:9e:67:42:97:
ea:1c:cf:a0:8a:6c:e1:ee:a9:dc:4f:59:1c:2c:2b:
8d:83:7f:ec:d1:36:36:5d:64:80:49:21:b8:a7:4e:
71:df:f6:1a:16:35:b6:6d:98:0d:f8:c8:7c:a5:0f:
94:9e:a0:d4:d8:82:fa:e8:3d:cc:64:6a:56:8b:41:
40:f7:5b:71:91:71:e9:0e:db:16:7a:3d:49:3b:b6:
2e:95:ee:0f:2b:bb:af:2c:8e:d3:0a:c7:2b:10:b2:
c5:32:e5:a3:50:a7:73:49:5b:ad:3c:8f:3a:aa:1b:
19:61:87:0e:ee:8b:6f:0a:10:0d:6c:02:37:f9:e6:
88:a0:a4:d4:24:e9:6e:50:36:b4:e0:8e:27:90:da:
9b:54:65:6e:dd:41:fc:84:6b:ca:db:9a:fe:e6:90:
14:fa:31:55:0d:e5:70:ea:b1:91:d8:be:8e:1e:69:
b5:20:d7:3d:0c:99:43:9d:23:4c:70:22:c5:ff:64:
23:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:01:3C:9F:19:DF:F7:32:F3:14:DD:26:31:11:20:75:57:E8:EF:C8
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PAE8nxnf9zLzFN0mMREgdVfo78g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.33.0/24
163.5.35.0-163.5.36.255
163.5.58.0/24
163.5.62.0/24
163.5.64.0/24
163.5.66.0/24
163.5.71.0/24
163.5.78.0/23
163.5.83.0/24
163.5.86.0/23
163.5.89.0/24
163.5.94.0/23
163.5.97.0-163.5.100.255
163.5.104.0-163.5.106.255
163.5.110.0-163.5.114.255
163.5.120.0/22
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.141.0-163.5.143.255
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.156.0/24
163.5.160.0-163.5.162.255
163.5.165.0/24
163.5.167.0/24
163.5.170.0-163.5.172.255
163.5.176.0/24
163.5.178.0/23
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.195.0/24
163.5.198.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.212.0/24
163.5.216.0-163.5.218.255
163.5.220.0/24
163.5.224.0/24
163.5.228.0/24
163.5.231.0/24
163.5.235.0/24
163.5.241.0-163.5.242.255
163.5.247.0/24
163.5.249.0-163.5.253.255
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:6c:59:de:fc:b0:8a:b6:a4:09:a2:64:a8:53:e9:1e:39:63:
04:01:20:f9:8d:42:cf:ec:76:88:01:59:f0:14:4f:b1:fd:eb:
bc:dc:41:c2:05:e7:00:d2:ed:3a:d6:81:7b:f7:3c:24:af:8f:
97:7d:38:27:62:82:ce:38:21:c9:22:93:6f:15:61:1e:dd:a3:
e3:1d:0e:c3:be:10:d6:69:b5:e2:6d:1b:60:22:fd:b9:c9:43:
c5:2e:42:a7:3b:0d:73:dd:86:63:af:f3:04:93:85:39:5b:59:
d2:e7:6a:82:df:a4:00:79:1c:d2:ac:20:ac:2e:d3:43:e4:ca:
9c:24:2f:dd:d7:bc:7b:46:89:4c:06:ba:fd:88:2f:32:c5:ef:
99:1b:56:ac:5d:8c:66:74:0a:e6:92:d2:6f:59:87:3b:c3:14:
cd:6a:40:8f:1b:ed:23:ca:d3:f2:be:30:87:41:dc:01:15:5b:
cc:25:bd:ff:4a:98:d1:0e:1a:93:b1:96:53:3b:c8:c2:0a:77:
ac:c4:fc:90:a9:6c:1a:82:17:7b:47:49:a9:19:8d:82:eb:b5:
1d:3b:24:91:43:07:7d:68:22:54:b0:96:c3:43:cf:1c:d2:84:
1f:2e:f2:ff:f8:c2:65:c5:24:8b:a7:ab:9d:f5:26:c5:26:8d:
fb:06:ff:c6
-----BEGIN CERTIFICATE-----
MIIGkzCCBXugAwIBAgISAYsCLs9gMmt6A+qceNYIjnwNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMxMDA1MjMzMTQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzAxM2M5ZjE5ZGZmNzMyZjMxNGRkMjYzMTExMjA3NTU3ZThlZmM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA35e5xzBBSnuCyCFdlqSxhdaA8H8w
ag13eoyIFHFHxjWpNvA44jBWiFGYb+fUgJkZZs5VeSwxXVffc/gHZNZDYYoYzPD6
K55nQpfqHM+gimzh7qncT1kcLCuNg3/s0TY2XWSASSG4p05x3/YaFjW2bZgN+Mh8
pQ+UnqDU2IL66D3MZGpWi0FA91txkXHpDtsWej1JO7Yule4PK7uvLI7TCscrELLF
MuWjUKdzSVutPI86qhsZYYcO7otvChANbAI3+eaIoKTUJOluUDa04I4nkNqbVGVu
3UH8hGvK25r+5pAU+jFVDeVw6rGR2L6OHmm1INc9DJlDnSNMcCLF/2QjMwIDAQAB
o4IDnzCCA5swHQYDVR0OBBYEFDwBPJ8Z3/cy8xTdJjERIHVX6O/IMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvUEFFOG54bmY5ekx6Rk4wbU1SRWdkVmZvNzhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBswYIKwYBBQUHAQcBAf8EggGiMIIBnjCCAZoEAgABMIIB
kgMEAKMFHgMEAKMFITAMAwQAowUjAwQAowUkAwQAowU6AwQAowU+AwQAowVAAwQA
owVCAwQAowVHAwQBowVOAwQAowVTAwQBowVWAwQAowVZAwQBowVeMAwDBACjBWED
BACjBWQwDAMEA6MFaAMEAKMFajAMAwQBowVuAwQAowVyAwQCowV4AwQAowV+AwQA
owWAAwQAowWGAwQBowWKMAwDBACjBY0DBASjBYADBACjBZIDBACjBZQDBAGjBZYD
BACjBZwwDAMEBaMFoAMEAKMFogMEAKMFpQMEAKMFpzAMAwQBowWqAwQAowWsAwQA
owWwAwQBowWyMAwDBACjBbUDBACjBbYDBACjBboDBAGjBbwDBACjBb8DBACjBcMD
BACjBcYDBACjBckwDAMEAKMFywMEAaMFzAMEAKMF1DAMAwQDowXYAwQAowXaAwQA
owXcAwQAowXgAwQAowXkAwQAowXnAwQAowXrMAwDBACjBfEDBACjBfIDBACjBfcw
DAMEAKMF+QMEAaMF/AMEAKMF/zANBgkqhkiG9w0BAQsFAAOCAQEAXmxZ3vywirak
CaJkqFPpHjljBAEg+Y1Cz+x2iAFZ8BRPsf3rvNxBwgXnANLtOtaBe/c8JK+Pl304
J2KCzjghySKTbxVhHt2j4x0Ow74Q1mm14m0bYCL9uclDxS5CpzsNc92GY6/zBJOF
OVtZ0udqgt+kAHkc0qwgrC7TQ+TKnCQv3de8e0aJTAa6/YgvMsXvmRtWrF2MZnQK
5pLSb1mHO8MUzWpAjxvtI8rT8r4wh0HcARVbzCW9/0qY0Q4ak7GWUzvIwgp3rMT8
kKlsGoIXe0dJqRmNguu1HTskkUMHfWgiVLCWw0PPHNKEHy7y//jCZcUki6ernfUm
xSaN+wb/xg==
-----END CERTIFICATE-----
Generated at Fri Oct 6 22:54:44 2023 by rpki-client on console-ams.rpki-client.org