Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QE-g3ml1fztFUxrYtZfpSrlkd-0.roa
File: QE-g3ml1fztFUxrYtZfpSrlkd-0.roa (raw, json)
Hash identifier: oNrzGN1TTEEN8GydJCPigtr0YwWL6y6w/aiG1/zaoHE=
Subject key identifier: 40:4F:A0:DE:69:75:7F:3B:45:53:1A:D8:B5:97:E9:4A:B9:64:77:ED
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0191FA8902EC183D18657E01F84A4361ECCA
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QE-g3ml1fztFUxrYtZfpSrlkd-0.roa
Signing time: Mon 16 Sep 2024 11:12:48 +0000
ROA not before: Mon 16 Sep 2024 11:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.34.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.211.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.221.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.230.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.245.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 14:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:89:02:ec:18:3d:18:65:7e:01:f8:4a:43:61:ec:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 16 11:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=404fa0de69757f3b45531ad8b597e94ab96477ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:20:c8:91:ce:bb:01:db:37:50:2c:f9:f9:18:
ae:ec:c7:e5:ce:7d:cc:59:0d:6b:c4:f8:a7:1f:10:
87:7f:44:01:0a:e0:0a:c8:0a:0d:32:16:86:5a:19:
e6:50:22:c1:0c:e0:f7:65:58:f3:24:b5:ff:d7:cc:
e7:cc:50:c5:20:4a:cc:39:5f:c9:3f:46:87:f5:c0:
4e:93:91:f3:72:d9:93:7a:36:8e:07:3d:28:ce:b0:
9d:e4:1b:14:bb:2b:e0:5c:0d:fb:c4:55:4c:02:bc:
d6:1b:c8:b8:83:40:4a:80:eb:35:5b:11:03:7c:8f:
a4:7f:64:53:2c:7f:32:58:d1:ea:df:48:8c:7c:8c:
37:1a:30:63:42:9e:4f:cc:5f:61:1c:36:ee:77:30:
bf:f8:9e:d4:b5:d3:31:62:6a:c6:62:c4:ea:7c:d2:
47:dc:40:45:ce:16:02:ad:6d:e3:19:91:05:e6:49:
82:a3:8e:c9:31:bb:49:1a:23:1e:0e:3d:1f:c7:05:
a3:e7:e4:4e:05:cf:22:79:db:be:5c:c5:11:1c:eb:
63:40:fe:4f:81:82:ed:37:f6:2a:dc:58:5c:d5:19:
9c:0e:81:20:13:a0:91:2d:cb:bd:76:3a:ca:7d:6c:
e1:41:d3:0e:e4:5e:1f:c0:3c:bf:93:99:b8:93:a2:
44:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:4F:A0:DE:69:75:7F:3B:45:53:1A:D8:B5:97:E9:4A:B9:64:77:ED
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QE-g3ml1fztFUxrYtZfpSrlkd-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.34.0/24
163.5.59.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.118.0/23
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.132.0/24
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.158.0/24
163.5.160.0/24
163.5.162.0/24
163.5.167.0/24
163.5.178.0/23
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.211.0/24
163.5.218.0/24
163.5.221.0/24
163.5.224.0/24
163.5.228.0/24
163.5.230.0/24
163.5.241.0/24
163.5.245.0/24
163.5.247.0-163.5.248.255
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
16:5d:d7:a2:38:29:40:0d:cd:4c:76:94:48:f0:eb:b1:16:96:
15:f4:9a:8e:0b:95:c9:0a:c3:e2:37:e7:70:05:17:47:4d:aa:
47:6a:f8:41:3d:d6:f6:47:ff:5b:a4:b4:5a:c4:c0:2b:79:f5:
26:f5:2c:c6:41:d7:59:cc:23:51:58:2a:b8:ef:66:33:ec:b1:
53:6e:58:22:93:ec:1c:89:52:bc:6c:bb:a0:d5:54:95:fd:b5:
25:9a:72:ad:10:e5:1e:97:c5:56:ba:15:88:02:01:04:15:9f:
73:62:0c:35:5e:9f:8b:01:72:2e:fd:09:12:4a:31:9d:37:34:
7a:9b:d7:10:bf:88:7f:76:4e:47:09:7a:4d:af:33:f1:c4:46:
11:4e:b1:60:4f:a0:63:29:d9:ff:83:b8:d5:6a:7a:0d:c7:5b:
a0:fd:bf:df:8d:3c:66:0d:4f:f5:8c:00:d7:ab:af:50:50:e6:
53:d8:f6:62:d0:90:4d:f2:a8:6e:7d:92:25:ea:16:ce:cc:be:
8f:38:51:47:1f:46:2a:04:07:fc:ae:ea:77:59:4d:61:9b:03:
ab:55:dc:87:3d:c5:7e:c3:67:b9:68:59:f6:d1:ca:ef:0e:0e:
ad:e3:5a:85:ee:98:49:13:fb:3f:7b:e3:19:b5:c5:eb:13:46:
ff:b2:b5:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 18:52:24 2024 by rpki-client on console-fra.rpki-client.org