Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/W5ZPpUCc5b62EZl1o5ZMuKPr0Oc.roa
File: W5ZPpUCc5b62EZl1o5ZMuKPr0Oc.roa (raw, json)
Hash identifier: XSK0xg72AzRVO2EHrR6vlKnlSXQ1ReRxpJoTss3LmlM=
Subject key identifier: 5B:96:4F:A5:40:9C:E5:BE:B6:11:99:75:A3:96:4C:B8:A3:EB:D0:E7
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01897DB9FBFA827DDDAF9943BC466F7CA6C3
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/W5ZPpUCc5b62EZl1o5ZMuKPr0Oc.roa
Signing time: Sat 22 Jul 2023 13:11:27 +0000
ROA not before: Sat 22 Jul 2023 13:11:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 163.5.229.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.88.0/24 maxlen: 24
163.5.90.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.117.0/24 maxlen: 24
163.5.38.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.63.0/24 maxlen: 24
163.5.60.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7d:b9:fb:fa:82:7d:dd:af:99:43:bc:46:6f:7c:a6:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 22 13:11:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b964fa5409ce5beb6119975a3964cb8a3ebd0e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ff:73:53:31:62:5a:40:45:9d:8c:e7:c8:ec:
d2:14:d4:71:39:00:ad:d1:e0:69:07:48:f8:33:57:
49:a8:41:13:85:a5:6c:7a:e5:d1:ad:14:99:cb:b9:
a1:b6:56:30:d2:81:e0:0f:9d:68:12:08:e9:4a:a4:
91:ec:f7:98:73:43:99:b4:f2:b6:7c:49:64:da:7b:
a6:19:00:9f:7a:e3:0b:bf:6e:b1:49:a4:55:52:fa:
8d:18:03:2f:88:9e:ee:57:dd:b4:b9:c1:a3:52:cf:
40:a4:05:4b:06:1a:a8:78:9b:44:1c:72:df:54:10:
d7:5f:4e:7f:60:42:36:cc:91:61:07:f1:a3:0f:07:
ff:52:a5:66:90:a3:c4:b2:89:82:50:67:2d:c2:df:
26:fa:a6:e8:a0:85:2f:73:43:d0:97:87:50:8c:ba:
16:a5:9d:ee:21:93:94:fa:61:4b:2c:41:5d:d7:9f:
6f:90:87:ee:00:90:47:37:74:9d:21:b7:85:34:0c:
6f:7b:60:bc:99:b1:2f:e0:06:bb:2d:e8:06:0c:77:
43:47:d9:dc:da:5e:3a:0f:b7:05:6e:c1:cb:a4:56:
97:32:b7:ae:c7:82:d3:07:e8:06:39:24:69:67:86:
dc:de:c3:d2:9f:66:d3:97:41:81:65:44:38:cd:6a:
bd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:96:4F:A5:40:9C:E5:BE:B6:11:99:75:A3:96:4C:B8:A3:EB:D0:E7
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/W5ZPpUCc5b62EZl1o5ZMuKPr0Oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.38.0/23
163.5.60.0/24
163.5.63.0/24
163.5.71.0/24
163.5.88.0/24
163.5.90.0/24
163.5.93.0/24
163.5.101.0-163.5.102.255
163.5.108.0/23
163.5.116.0/23
163.5.119.0/24
163.5.131.0/24
163.5.134.0/24
163.5.147.0/24
163.5.171.0/24
163.5.174.0/24
163.5.189.0/24
163.5.192.0/24
163.5.225.0/24
163.5.228.0/23
163.5.240.0/24
163.5.246.0/24
Signature Algorithm: sha256WithRSAEncryption
56:59:6d:ad:b5:d8:04:7f:c2:c1:90:0e:18:a0:de:9a:c2:9a:
ad:54:b3:81:1b:3f:1d:89:e1:4c:e8:cb:0c:09:3a:cf:39:a0:
be:c4:4d:cd:e8:a8:57:e0:cf:fa:57:c0:16:c8:85:73:56:00:
9b:00:7e:9e:f6:48:54:c3:eb:eb:46:b4:e2:78:e2:b2:65:88:
bc:3c:6a:4e:fd:42:45:fe:89:71:7d:7e:9a:83:28:b8:38:2b:
e2:61:a1:54:5b:2c:69:b6:44:9a:b1:5b:b4:d5:d9:6d:82:eb:
a1:a3:d8:0f:04:20:53:c3:b7:ee:db:23:3a:f0:b2:b7:a6:6d:
a3:9d:43:11:a9:6b:c3:ed:df:30:a3:1a:72:30:de:b5:9f:fc:
12:0c:31:63:ab:7f:5f:ad:71:b9:0e:8f:41:0e:f1:18:12:e8:
8f:d8:55:b8:c4:bb:51:5c:2c:34:f9:49:b1:a9:b4:8b:2b:99:
3f:26:d3:5e:54:52:c8:69:0a:61:1a:8e:2a:a4:95:24:b4:03:
ba:43:08:59:6e:74:31:99:d1:30:cf:0e:a1:64:51:83:19:18:
06:dd:32:3b:29:a7:00:8f:15:10:ba:46:14:d1:39:89:49:9c:
f2:3f:43:4a:3e:e3:64:85:c9:61:c9:44:11:74:74:7e:f0:48:
c9:64:ee:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 23 19:54:55 2023 by rpki-client on console-ams.rpki-client.org