Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/UDXEN7x5piqW9Zc9QLTw2cxr-50.roa
File: UDXEN7x5piqW9Zc9QLTw2cxr-50.roa (raw, json)
Hash identifier: 7EjE8VClf31bChaAsnEiIq0MK9VkwzQ4u1NM9VIubU4=
Subject key identifier: 50:35:C4:37:BC:79:A6:2A:96:F5:97:3D:40:B4:F0:D9:CC:6B:FB:9D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018BE277C4582C11BE881128C86C4D294575
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/UDXEN7x5piqW9Zc9QLTw2cxr-50.roa
Signing time: Sat 18 Nov 2023 12:46:21 +0000
ROA not before: Sat 18 Nov 2023 12:46:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.254.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.74.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.199.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e2:77:c4:58:2c:11:be:88:11:28:c8:6c:4d:29:45:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 18 12:46:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5035c437bc79a62a96f5973d40b4f0d9cc6bfb9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:14:c4:8d:da:d9:75:40:be:55:08:d5:02:4f:
17:17:94:f9:aa:af:c7:e7:9a:77:d0:2a:c5:01:ce:
ee:85:88:f9:66:dd:33:8c:8b:a7:f5:b4:54:06:13:
b4:a0:43:af:63:cb:c7:6e:6c:06:3c:34:27:70:0c:
0d:24:f0:82:bc:0c:fa:e3:b8:a3:4e:6e:7a:e2:2f:
55:23:dd:6d:d1:dc:1a:cc:88:5f:41:9b:41:f9:88:
c7:69:06:d6:f3:06:6b:98:57:51:55:5f:8e:8d:0b:
56:5d:7f:26:d0:e8:fc:97:07:90:4f:f8:14:d0:31:
60:35:75:fc:ec:d1:db:7d:fb:da:ce:57:55:f2:1b:
c4:3d:7f:84:58:a9:24:d7:74:b6:c8:ca:72:c6:09:
8f:c6:b5:d8:ef:a6:3c:7f:55:3c:03:66:1d:5d:21:
f9:70:24:85:da:5b:e4:a0:94:70:6d:2e:47:75:eb:
3e:c7:20:10:78:c1:71:3e:6b:ae:7c:c2:e7:fc:56:
17:b3:b6:e5:4d:b4:eb:9c:f7:dd:59:48:a8:7d:36:
e4:4a:27:ec:ea:46:b5:fe:d6:53:dd:49:56:ec:75:
ef:1e:6e:a1:73:63:32:10:d1:5b:af:0e:2f:1e:60:
1a:46:3c:7e:70:b6:2e:cb:b1:bc:9c:09:71:dd:fb:
9b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:35:C4:37:BC:79:A6:2A:96:F5:97:3D:40:B4:F0:D9:CC:6B:FB:9D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/UDXEN7x5piqW9Zc9QLTw2cxr-50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.35.0-163.5.36.255
163.5.62.0/24
163.5.74.0/24
163.5.79.0/24
163.5.83.0/24
163.5.89.0/24
163.5.94.0/23
163.5.99.0/24
163.5.106.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.142.0/23
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.156.0/24
163.5.160.0/24
163.5.167.0/24
163.5.170.0/24
163.5.176.0/24
163.5.178.0/24
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.199.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.248.0/24
163.5.250.0/24
163.5.252.0/22
Signature Algorithm: sha256WithRSAEncryption
55:d3:c8:68:52:0e:33:e5:90:41:64:f8:5a:7c:54:98:86:29:
f9:5a:28:d5:2f:b1:33:62:de:f9:29:8a:46:1b:a4:5c:3c:d3:
3c:ca:32:58:e6:0a:de:6e:41:12:e1:ee:41:e8:a6:1e:0d:be:
87:48:a7:19:b2:1d:d5:12:6b:e5:b5:d5:4e:a5:83:b0:29:3a:
b4:f5:7c:19:ba:11:ca:59:85:02:16:be:fc:7e:d8:c5:5f:fc:
08:90:cf:66:01:cb:52:11:bb:6f:e9:68:47:48:91:bd:23:0c:
47:59:a9:24:09:3a:37:97:7b:55:4b:4c:bd:d8:57:ca:a4:3e:
bb:fc:0b:63:61:a1:d8:74:b0:a2:a3:a2:b5:a4:bc:58:09:95:
26:03:99:ec:f7:de:0a:af:e6:df:52:f8:6a:59:50:48:f3:72:
2c:4f:28:ee:76:c5:d9:e0:81:cd:e3:3f:e7:1d:11:f5:2d:2d:
26:3e:89:b0:9c:40:92:23:ff:32:2e:f0:ef:b5:b2:c5:b4:d8:
ee:fe:72:25:51:a1:e3:9d:ba:4c:ff:15:82:8c:96:aa:df:92:
a5:53:0e:61:9d:22:3d:0d:5e:3a:ae:0c:8a:33:31:ae:d3:58:
83:a8:15:2f:fe:b1:d4:be:e1:cf:c1:d0:10:e6:ea:ee:34:ef:
f2:46:05:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 20 12:47:48 2023 by rpki-client on console-fra.rpki-client.org