Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/VH4ntxo5DrKeb0mAfgeLIEAGSck.roa
File: VH4ntxo5DrKeb0mAfgeLIEAGSck.roa (raw, json)
Hash identifier: jZ29Y6E9PPyACzVWYZ0WqseLGf/qqfiym+69ieklXaQ=
Subject key identifier: 54:7E:27:B7:1A:39:0E:B2:9E:6F:49:80:7E:07:8B:20:40:06:49:C9
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018D844C1BF1D1B38A63A4AA8D175D358469
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/VH4ntxo5DrKeb0mAfgeLIEAGSck.roa
Signing time: Wed 07 Feb 2024 15:59:56 +0000
ROA not before: Wed 07 Feb 2024 15:59:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.27.0/24 maxlen: 24
163.5.28.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.145.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Feb 2024 13:49:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:4c:1b:f1:d1:b3:8a:63:a4:aa:8d:17:5d:35:84:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 7 15:59:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=547e27b71a390eb29e6f49807e078b20400649c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:98:fa:fe:6e:38:a1:13:13:19:6d:5a:c5:2d:
65:fd:fc:f6:8d:12:62:a4:88:f3:f1:b8:f3:5b:ec:
2d:8a:ae:b0:08:94:3c:39:e5:f7:31:31:eb:a0:cc:
16:d9:a5:98:2d:72:00:9a:30:d1:b2:b0:73:21:13:
5b:1c:2e:ec:d9:d1:54:87:24:3d:39:99:39:b9:06:
37:12:28:b4:00:ee:20:8c:e8:42:e5:46:da:d4:71:
50:22:3d:a3:8c:0c:a7:ef:2c:fa:42:4a:07:23:d8:
0c:82:bf:f7:73:a0:62:58:4b:aa:d3:b6:62:ef:f7:
86:07:16:78:48:02:f2:2a:c0:9a:f4:40:5e:f2:64:
a3:c5:e4:74:f2:5b:6f:1a:9d:3c:8d:39:3c:ca:5b:
f9:06:50:5a:76:39:56:ad:06:38:f4:21:12:a4:0d:
cf:4f:35:b5:20:51:01:b8:41:f8:bf:f3:e5:21:2c:
df:48:93:7d:4e:b3:88:cd:0c:5a:be:21:f5:c8:20:
16:35:9c:59:5f:fc:34:67:01:ad:64:15:b7:61:d3:
06:2b:27:47:6c:ba:8d:c4:9e:29:8e:40:ba:60:6b:
9f:0e:da:f9:c0:01:36:a6:db:ee:82:11:4a:fe:be:
80:55:74:fe:39:33:23:30:9c:86:be:df:84:2a:7a:
47:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:7E:27:B7:1A:39:0E:B2:9E:6F:49:80:7E:07:8B:20:40:06:49:C9
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/VH4ntxo5DrKeb0mAfgeLIEAGSck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.27.0-163.5.28.255
163.5.30.0/24
163.5.79.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.139.0/24
163.5.143.0/24
163.5.145.0-163.5.146.255
163.5.148.0/24
163.5.150.0/23
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
36:6e:98:5c:94:ad:9d:bf:06:43:d6:38:72:3e:b9:fc:4d:b9:
bc:25:cf:5e:cf:71:8a:8f:73:e2:9a:27:81:e2:7d:f5:ca:ae:
c3:ff:8f:48:39:2d:23:bb:c2:ff:e1:62:fc:b3:8f:b9:24:af:
78:0e:ff:f2:71:bc:03:88:db:66:e1:51:ab:dd:94:a6:f6:21:
19:00:fa:bd:d1:e0:39:66:2f:1f:32:4e:14:11:a6:1f:87:46:
41:bf:4e:11:1f:21:f5:0c:f2:f9:30:e9:80:4c:ab:7f:75:e8:
63:9b:ea:c9:41:14:82:f0:94:2e:08:3b:24:ee:b6:51:85:87:
8c:16:a8:ac:d1:8a:c9:8a:d9:de:c6:d6:e5:ca:f9:69:c6:97:
d5:35:49:c9:25:76:42:67:8d:a8:78:cb:22:e9:71:67:df:7d:
af:c3:5c:8a:d3:66:c7:6d:e3:28:26:c0:a2:e6:1c:c4:e4:bf:
ed:d3:61:74:24:69:98:1e:2f:a4:93:e2:49:77:ea:8f:63:f1:
51:d9:03:95:d7:de:ad:2b:60:04:07:06:cb:55:96:82:6c:b0:
f2:12:dc:3c:10:ff:cc:6c:e1:0a:8a:d4:86:01:75:80:7a:9d:
91:ab:7e:d9:56:9f:42:90:b9:fe:4b:f8:98:76:03:63:bd:d7:
72:e8:51:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 9 18:37:58 2024 by rpki-client on console-fra.rpki-client.org