Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RtLwwQauL9STmKgm1ZJbs1bV_9Q.roa
File: RtLwwQauL9STmKgm1ZJbs1bV_9Q.roa (raw, json)
Hash identifier: efd6ZOXShWtdjmR1Uc1KjyYwz91rLjn2oi0pEWdvHbY=
Subject key identifier: 46:D2:F0:C1:06:AE:2F:D4:93:98:A8:26:D5:92:5B:B3:56:D5:FF:D4
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018ADD9676B64BE810134070A4777C996A61
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RtLwwQauL9STmKgm1ZJbs1bV_9Q.roa
Signing time: Thu 28 Sep 2023 20:59:00 +0000
ROA not before: Thu 28 Sep 2023 20:59:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 163.5.230.0/24 maxlen: 24
163.5.227.0/24 maxlen: 24
163.5.229.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.238.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.245.0/24 maxlen: 24
163.5.243.0/24 maxlen: 24
163.5.88.0/24 maxlen: 24
163.5.90.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.117.0/24 maxlen: 24
163.5.38.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.63.0/24 maxlen: 24
163.5.60.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.177.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.226.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:dd:96:76:b6:4b:e8:10:13:40:70:a4:77:7c:99:6a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 28 20:59:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46d2f0c106ae2fd49398a826d5925bb356d5ffd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:68:2f:2b:94:a9:1e:83:6b:e6:88:56:da:47:
4f:06:2d:ce:2e:29:1d:f5:bf:2f:aa:2d:0f:e5:00:
3d:f6:92:1f:c4:0a:06:c7:52:ad:73:f0:07:f6:da:
0d:bc:4f:f1:1b:6d:2e:50:35:38:91:3a:f6:77:c5:
b4:0f:cf:9c:e7:c6:51:b7:ca:88:7e:18:d0:9f:cb:
7a:d2:dd:39:81:fe:85:e9:59:9a:e2:e1:65:e1:6c:
4b:1c:07:93:15:71:1f:1d:be:00:ad:ab:6d:0f:9c:
54:37:5e:37:a8:e2:81:11:b3:71:bc:95:83:54:d4:
5d:68:61:d9:81:a4:8c:df:4f:49:b2:27:23:1c:d7:
dd:44:41:82:b1:28:ec:26:c5:21:7c:5b:51:da:f9:
bd:ce:61:f4:09:52:05:4d:10:84:a5:93:48:21:74:
49:b4:f8:38:01:6a:f1:99:ab:cf:c4:35:e4:3f:fe:
9b:ae:2d:08:3c:17:27:16:77:27:30:a2:bd:22:b3:
e9:9e:56:e9:f1:cf:48:11:0c:8d:76:f4:cf:78:9e:
bf:ea:4c:d3:50:78:d3:da:72:55:69:ea:56:42:bb:
a1:ef:50:2d:30:ed:65:aa:37:c3:27:32:c0:77:ab:
50:9a:e8:fe:2f:b9:a7:a5:ed:68:5d:63:5f:ef:bd:
c9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D2:F0:C1:06:AE:2F:D4:93:98:A8:26:D5:92:5B:B3:56:D5:FF:D4
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/RtLwwQauL9STmKgm1ZJbs1bV_9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.38.0/23
163.5.60.0/24
163.5.63.0/24
163.5.88.0/24
163.5.90.0/24
163.5.93.0/24
163.5.101.0-163.5.102.255
163.5.108.0/23
163.5.116.0/22
163.5.130.0/23
163.5.133.0-163.5.134.255
163.5.147.0/24
163.5.174.0/24
163.5.177.0/24
163.5.189.0/24
163.5.192.0/24
163.5.225.0-163.5.230.255
163.5.238.0/24
163.5.240.0/24
163.5.243.0/24
163.5.245.0-163.5.246.255
Signature Algorithm: sha256WithRSAEncryption
2f:95:42:46:9e:26:70:1f:2f:bc:9f:46:7e:85:85:cb:14:1d:
2a:e8:86:24:fb:0e:92:c1:59:98:88:eb:a5:41:fc:4b:6d:b3:
5d:63:18:d8:a6:7d:e0:e2:78:f1:79:95:ab:48:d1:0a:8e:6c:
45:fe:2a:78:be:37:86:d7:eb:90:38:16:84:ea:8f:01:fd:21:
0a:f3:aa:16:98:37:6d:bd:4f:8c:a8:c8:5c:a2:36:37:43:e9:
76:11:1c:6d:f9:f0:7d:8c:49:dc:24:cb:e3:25:92:59:7e:53:
be:aa:f3:66:06:49:48:67:4a:1e:9e:88:4b:4d:88:41:28:57:
f6:d6:c3:cd:8e:9a:d6:cc:49:b6:8f:8e:bb:f9:4e:46:c1:eb:
2b:08:ca:77:83:7e:84:ae:22:45:c9:fd:a6:62:ab:46:b3:ac:
6d:5b:04:ef:82:78:c6:4b:27:4f:00:bf:cb:0e:4a:08:68:73:
26:22:98:44:36:12:ba:dd:a6:74:44:76:bd:80:1e:1c:48:df:
16:fe:e2:fd:04:21:d6:89:c4:e6:79:8f:d7:57:4c:45:ea:6e:
2f:f7:d2:de:f1:46:59:6d:60:42:ea:5e:70:28:ef:16:df:a3:
8c:47:e6:3e:69:af:3d:67:e2:84:c9:49:90:a5:26:bd:eb:68:
95:46:df:8b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Sep 29 14:07:29 2023 by rpki-client on console-ams.rpki-client.org