Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/UlXqxoNFIOZ78e3FLtnJNJ84fJ0.roa
File: UlXqxoNFIOZ78e3FLtnJNJ84fJ0.roa (raw, json)
Hash identifier: ZSGi2wGd3L/znT8AxAGQPRdRoS7JGp8FGNvi5NgNVIA=
Subject key identifier: 52:55:EA:C6:83:45:20:E6:7B:F1:ED:C5:2E:D9:C9:34:9F:38:7C:9D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B62344BD410B41F3865F595B2FCB286A6
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/UlXqxoNFIOZ78e3FLtnJNJ84fJ0.roa
Signing time: Tue 24 Oct 2023 15:01:16 +0000
ROA not before: Tue 24 Oct 2023 15:01:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.228.0/24 maxlen: 24
163.5.235.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.66.0/24 maxlen: 24
163.5.67.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.76.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.86.0/24 maxlen: 24
163.5.98.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.37.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.64.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.207.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.217.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.222.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.122.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 05:55:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:62:34:4b:d4:10:b4:1f:38:65:f5:95:b2:fc:b2:86:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 24 15:01:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5255eac6834520e67bf1edc52ed9c9349f387c9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2c:a7:05:37:fb:08:68:16:7b:6c:76:60:60:
59:5a:bf:36:2d:26:0d:07:fa:f9:b5:de:b3:be:f0:
a6:3c:bd:47:48:8d:25:8c:29:b9:f1:d2:99:df:ba:
c8:2a:12:41:52:ea:f1:86:77:4c:b3:c1:09:e2:0f:
a7:4f:a1:2d:c9:c6:cf:05:af:13:52:16:9d:4f:cf:
1e:65:ea:fc:b9:f6:a3:83:b1:8a:38:52:71:bd:fc:
50:21:e1:5a:a2:25:d4:c0:fa:d5:64:72:88:f0:3e:
91:3f:0e:81:3f:78:2e:7d:29:f0:b9:33:64:25:08:
2a:1b:19:9a:a8:bb:8a:15:d4:bd:6c:db:8a:19:aa:
47:72:b1:79:93:63:64:8a:61:4d:0a:a3:0b:cf:78:
6d:d2:fb:76:21:5e:ab:0e:3d:04:ea:f9:a9:04:ca:
da:91:c2:72:f7:0d:c2:89:33:cf:e8:4c:c8:b2:89:
aa:a6:8a:03:c2:ea:d2:f8:d8:bc:45:eb:fe:ed:67:
fa:bc:b3:db:d1:1e:9f:07:ae:e0:f6:1e:8a:be:44:
ce:d7:1a:5e:83:0a:2e:b5:bb:87:84:3e:ef:53:dc:
30:37:87:34:4d:c3:a4:e9:5e:07:36:6c:1c:8c:b3:
e1:a3:7f:d4:38:9d:d8:f4:7a:76:b9:d5:cf:e3:6a:
f9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:55:EA:C6:83:45:20:E6:7B:F1:ED:C5:2E:D9:C9:34:9F:38:7C:9D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/UlXqxoNFIOZ78e3FLtnJNJ84fJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.33.0/24
163.5.35.0-163.5.37.255
163.5.62.0/24
163.5.64.0/24
163.5.66.0/23
163.5.71.0/24
163.5.76.0/24
163.5.79.0/24
163.5.83.0/24
163.5.86.0/24
163.5.89.0/24
163.5.94.0/23
163.5.98.0/23
163.5.104.0-163.5.106.255
163.5.110.0-163.5.114.255
163.5.121.0-163.5.122.255
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.141.0-163.5.143.255
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.156.0/24
163.5.160.0-163.5.162.255
163.5.165.0/24
163.5.167.0/24
163.5.170.0/24
163.5.172.0/24
163.5.176.0/24
163.5.178.0/24
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.198.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.207.0/24
163.5.212.0/24
163.5.217.0-163.5.218.255
163.5.222.0/24
163.5.224.0/24
163.5.228.0/24
163.5.235.0/24
163.5.241.0/24
163.5.247.0/24
163.5.249.0-163.5.253.255
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:ef:f1:4c:1a:d4:65:f6:98:b4:93:2e:2c:9e:81:db:b3:c9:
86:77:3c:1b:b8:c6:01:77:b4:65:b1:c2:4c:53:66:8d:d9:83:
96:5b:e7:7d:9f:30:07:56:45:a9:fd:a9:54:2f:92:67:fc:4b:
60:71:a5:74:ba:96:02:98:fe:e4:21:1e:df:23:d9:fc:9e:d6:
3b:3f:94:1a:0b:9c:e8:ae:02:1c:30:57:57:86:fc:6e:00:c2:
c4:41:09:77:2e:aa:b6:68:50:a6:b5:1c:0b:01:85:45:c8:1a:
4c:04:25:1c:c6:3c:53:a0:c5:fc:76:e6:2e:84:45:3c:a9:28:
b3:2b:99:ef:c9:de:7e:80:00:d7:55:ec:fd:15:72:56:06:7e:
0d:eb:35:4c:b8:dd:03:78:f8:bd:46:b9:67:da:40:c7:38:9f:
16:61:72:aa:8b:35:de:9c:79:87:83:38:ff:8b:b4:38:bd:fa:
1e:32:96:35:bb:db:6f:1c:2c:a0:af:b0:0f:5c:b9:26:ee:ee:
a1:e5:e4:36:50:f0:11:3e:c7:f6:ec:b3:24:46:8b:b7:62:dc:
3f:35:a0:f2:33:37:4a:bd:81:72:25:7f:14:1e:18:69:7b:a0:
6d:bb:86:b4:0a:2a:59:af:6e:4d:4e:82:bd:b9:93:ad:2f:d1:
49:2d:ef:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:32 2024 by rpki-client on console-ams.rpki-client.org