Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RI_8B_mGTAyTv1E0UiFnx9_mTZc.roa
File: RI_8B_mGTAyTv1E0UiFnx9_mTZc.roa (raw, json)
Hash identifier: CD7HZZyQ2RO+rdJOwiilnzgOWXZQrlhDVzBX8rnrSyo=
Subject key identifier: 44:8F:FC:07:F9:86:4C:0C:93:BF:51:34:52:21:67:C7:DF:E6:4D:97
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018AEF90D157377AD12901313BECBA41B37B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RI_8B_mGTAyTv1E0UiFnx9_mTZc.roa
Signing time: Mon 02 Oct 2023 08:45:59 +0000
ROA not before: Mon 02 Oct 2023 08:45:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.231.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.235.0/24 maxlen: 24
163.5.242.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.66.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.78.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.86.0/24 maxlen: 24
163.5.87.0/24 maxlen: 24
163.5.97.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.58.0/24 maxlen: 24
163.5.64.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.175.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.213.0/24 maxlen: 24
163.5.216.0/24 maxlen: 24
163.5.217.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.220.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.120.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.122.0/24 maxlen: 24
163.5.123.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:90:d1:57:37:7a:d1:29:01:31:3b:ec:ba:41:b3:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 2 08:45:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=448ffc07f9864c0c93bf5134522167c7dfe64d97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:55:4d:d7:44:a3:45:f9:91:56:09:b2:65:5f:
f5:73:ed:93:a6:86:97:25:6a:01:de:93:5a:43:e0:
69:c7:b8:11:c4:6b:16:ec:0c:6f:8c:6b:8b:6c:b5:
3d:8a:8c:a6:34:2c:52:12:b1:e4:b0:97:dc:84:89:
25:0a:fc:32:89:e4:d8:c6:5b:a3:a4:56:c8:d3:93:
a2:48:b7:f7:df:49:47:9c:95:fe:52:8a:2c:c8:68:
94:7f:27:d1:76:43:58:fa:71:a4:32:99:a3:b8:5c:
7d:5e:70:db:04:da:d3:22:35:b2:98:97:71:32:fa:
ad:7c:3d:e8:39:c1:86:c0:82:fe:d4:60:5c:2b:6d:
39:17:0e:90:be:db:b7:97:78:4f:e5:f6:9c:48:67:
df:6b:e6:d5:dd:d7:2c:6e:89:34:43:53:73:90:c4:
aa:8c:63:ed:af:2a:34:99:3f:57:f3:58:f9:6c:92:
91:69:29:db:59:11:77:e3:4c:f7:88:c8:32:3a:0e:
52:10:b3:65:69:8d:6b:1a:42:4e:e0:0f:90:5d:d8:
a6:e2:af:5a:3a:ec:d6:9c:70:60:23:22:ef:5f:d9:
17:98:76:07:74:1e:ea:f9:07:02:27:69:d3:88:74:
3e:6c:71:8d:04:f7:b0:ed:eb:fa:b2:9a:10:ef:4d:
6e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:8F:FC:07:F9:86:4C:0C:93:BF:51:34:52:21:67:C7:DF:E6:4D:97
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RI_8B_mGTAyTv1E0UiFnx9_mTZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.33.0/24
163.5.35.0-163.5.36.255
163.5.58.0/24
163.5.62.0/24
163.5.64.0/24
163.5.66.0/24
163.5.71.0/24
163.5.78.0/23
163.5.83.0/24
163.5.86.0/23
163.5.89.0/24
163.5.94.0/23
163.5.97.0/24
163.5.99.0-163.5.100.255
163.5.104.0-163.5.106.255
163.5.110.0-163.5.114.255
163.5.120.0/22
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.141.0-163.5.143.255
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.156.0/24
163.5.160.0/23
163.5.165.0/24
163.5.167.0/24
163.5.170.0-163.5.172.255
163.5.175.0-163.5.176.255
163.5.178.0/23
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.195.0/24
163.5.198.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.212.0/23
163.5.216.0-163.5.218.255
163.5.220.0/24
163.5.224.0/24
163.5.228.0/24
163.5.231.0/24
163.5.235.0/24
163.5.241.0-163.5.242.255
163.5.247.0/24
163.5.249.0-163.5.253.255
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
72:10:fe:b4:9f:cf:3d:26:10:4d:f2:3f:b1:be:6e:ca:a0:70:
9b:f3:6b:43:6e:cb:22:30:1e:75:9d:14:9d:4c:cc:77:4e:cd:
ea:d3:95:06:fa:ba:48:e0:12:6e:61:85:46:6a:d9:c6:78:4a:
37:1a:4c:5f:48:e1:30:86:f5:d2:a2:aa:d6:0d:de:ca:d8:d2:
5f:72:b2:8d:77:65:0f:4f:a4:64:aa:ca:d5:76:fb:34:c0:fc:
c6:0c:27:fd:c9:af:8d:d3:17:87:ce:fb:58:b1:d1:45:b4:dc:
70:2d:52:a2:6a:d6:a2:df:d4:6c:d4:05:2c:03:f3:82:ca:99:
63:3f:fc:5e:3b:8d:ac:44:26:21:26:3d:eb:40:56:cf:7c:66:
bd:cc:0b:68:29:d8:9c:d4:56:f3:cf:7b:16:51:89:26:cb:c1:
a9:85:03:a2:93:c8:34:ab:a8:1a:d5:7d:37:96:50:63:cb:3c:
c9:68:b1:16:d5:42:c8:2a:07:cf:a3:8f:98:20:0d:e2:ba:7c:
25:e1:50:87:fd:bb:2d:4a:11:1f:c1:61:24:4e:e4:c6:99:04:
84:bd:a9:9c:2a:bf:f6:9f:2f:67:4b:1c:bd:47:ce:8e:e5:f3:
c2:99:22:a8:e0:a5:6b:51:39:59:4e:73:91:b2:66:33:c6:37:
45:43:f5:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 3 13:15:58 2023 by rpki-client on console-ams.rpki-client.org