Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/VQG0wgZ0mCZb8GDZFTN8BbpuM1c.roa
File: VQG0wgZ0mCZb8GDZFTN8BbpuM1c.roa (raw, json)
Hash identifier: +2ynGb6EcchcpY0Iu2BYwB3AKtlU0ssZ4QGNBciExSc=
Subject key identifier: 55:01:B4:C2:06:74:98:26:5B:F0:60:D9:15:33:7C:05:BA:6E:33:57
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018D73F29DD542C9454BDD2A0CE67A5EF987
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/VQG0wgZ0mCZb8GDZFTN8BbpuM1c.roa
Signing time: Sun 04 Feb 2024 11:48:16 +0000
ROA not before: Sun 04 Feb 2024 11:48:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.27.0/24 maxlen: 24
163.5.28.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 12:45:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:73:f2:9d:d5:42:c9:45:4b:dd:2a:0c:e6:7a:5e:f9:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 4 11:48:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5501b4c2067498265bf060d915337c05ba6e3357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:40:92:05:99:f0:b1:c6:72:94:16:8e:94:1d:
62:6a:55:08:0a:c7:70:6a:97:c6:78:22:48:3f:a8:
14:97:0d:ef:fc:90:9c:7c:8c:cd:49:0f:96:bc:57:
65:72:08:1d:a4:0f:4c:a6:e5:9b:4d:7e:43:01:e8:
bb:29:88:ff:8a:65:e5:04:cc:9b:e1:e9:e2:17:d4:
ef:ed:08:4d:0f:50:b1:3b:a0:6e:d6:68:23:cb:74:
aa:79:f1:78:bf:f3:f0:3b:b3:71:bb:f3:39:ce:f5:
6b:39:88:f6:07:f5:d8:d4:fa:6b:6c:6e:f9:3c:41:
8e:3c:ba:30:7c:e6:de:e1:3e:75:0a:10:f6:7b:a2:
46:71:8d:a2:e8:46:79:04:00:ea:7e:d5:a6:e4:74:
55:e9:b0:b2:58:df:fb:98:76:b9:f5:9d:11:7f:8f:
66:c1:6a:1b:14:1a:a8:a2:9a:98:d9:ec:dd:5c:c3:
bc:e9:65:e6:1d:e7:f2:ac:f9:c3:f0:00:08:38:db:
7b:1d:81:51:3f:41:17:15:13:4a:4d:28:5e:22:64:
a0:f0:88:4b:e4:39:19:08:df:fd:fb:5b:c3:d8:b7:
74:5d:81:5d:4b:98:37:ad:42:29:5a:cd:0e:94:a2:
1d:39:b8:47:98:1a:4c:fa:c1:42:bd:dd:4a:55:94:
12:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:01:B4:C2:06:74:98:26:5B:F0:60:D9:15:33:7C:05:BA:6E:33:57
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/VQG0wgZ0mCZb8GDZFTN8BbpuM1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.27.0-163.5.28.255
163.5.30.0/24
163.5.79.0/24
163.5.83.0/24
163.5.89.0/24
163.5.94.0/24
163.5.104.0/24
163.5.106.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:5e:cc:7d:c0:8e:56:4c:12:33:92:9b:01:1c:8c:5d:2b:c1:
87:0b:fb:67:17:26:40:58:33:8b:b0:1b:dc:17:6c:7b:c6:ec:
3e:ad:2c:1a:be:ed:42:cb:21:0e:f1:25:6d:a4:67:64:96:4e:
d6:a2:dd:f8:45:0d:5e:4a:c2:e5:96:c1:02:d6:11:ef:1d:12:
4b:a5:62:bc:39:c4:4f:f1:50:e0:38:ad:e3:f1:b7:8f:d5:46:
03:94:41:3c:a5:f8:02:12:aa:f0:4c:5b:de:1f:32:78:86:f7:
7d:2a:d8:ec:73:bd:a2:2e:a9:db:d3:01:83:58:e4:c7:6c:31:
8d:2f:62:19:2b:46:60:71:e1:09:fc:7b:06:37:5e:0d:0b:bf:
4c:0a:1b:f2:c2:cd:96:a0:7b:b4:af:cd:c3:2b:6c:7a:69:fb:
90:49:89:21:52:05:16:db:81:5f:8b:88:39:89:a6:22:cc:68:
04:8a:b4:ca:bd:82:7d:ee:82:36:3e:6c:da:dc:36:06:7c:da:
14:36:f2:c7:05:71:3d:d1:e5:e1:d0:57:8a:68:b5:82:09:eb:
13:d7:df:58:52:e3:2b:db:e2:96:34:55:64:39:67:6b:ac:e3:
12:a8:0a:02:b9:14:ff:78:75:48:4c:4d:6b:b3:f8:38:4d:6d:
ab:07:f1:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 18:22:36 2024 by rpki-client on console-fra.rpki-client.org