Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/WKv1GuCjM1Bn_pkMCRwfprwzN24.roa
File: WKv1GuCjM1Bn_pkMCRwfprwzN24.roa (raw, json)
Hash identifier: XcFjed6+X7ARuyVCAHNM2Y/nAIOW59ZlKeKJ0YyvL1w=
Subject key identifier: 58:AB:F5:1A:E0:A3:33:50:67:FE:99:0C:09:1C:1F:A6:BC:33:37:6E
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0192C8E35F2DF5F4A7A5E3AD308B68849397
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/WKv1GuCjM1Bn_pkMCRwfprwzN24.roa
Signing time: Sat 26 Oct 2024 12:53:17 +0000
ROA not before: Sat 26 Oct 2024 12:53:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.44.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.92.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.237.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 27 Oct 2024 08:29:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c8:e3:5f:2d:f5:f4:a7:a5:e3:ad:30:8b:68:84:93:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 26 12:53:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58abf51ae0a3335067fe990c091c1fa6bc33376e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:51:80:11:41:8b:9b:9a:c1:db:1c:1c:99:4a:
3f:b5:c3:81:f2:cd:0c:85:93:83:5d:56:27:2f:19:
81:de:a1:73:37:1f:8c:0b:e1:1c:c2:84:f1:ba:25:
d8:f0:a1:9e:0c:db:f1:99:ff:f1:df:c0:fa:db:14:
e9:7d:65:ca:f9:36:13:c6:dc:1d:f3:92:e9:65:d4:
f5:a5:87:e2:41:1e:40:ea:db:b2:c2:16:88:00:70:
f4:2f:9a:eb:21:a3:29:39:dc:32:76:04:43:5e:97:
65:05:09:d7:c0:55:5f:6d:51:e4:e6:16:57:6c:29:
af:80:80:0e:e9:b0:c6:e2:3c:ee:e8:fe:ad:a2:bd:
19:38:44:bb:d0:a2:3c:ec:e9:0d:41:c9:95:6b:15:
22:46:c0:3d:83:ca:41:5e:cd:ad:bd:85:49:aa:b1:
77:1b:cb:33:57:95:75:56:55:bd:6c:90:b2:f8:b4:
f2:af:19:76:64:c1:6c:7c:c4:d1:54:8a:65:2e:29:
5b:5f:74:55:ca:5c:90:01:bc:1a:18:67:a4:9b:fc:
ba:d6:8a:cf:d9:75:15:d4:cc:43:38:f4:e5:9e:56:
e0:90:6b:79:8a:fb:5c:10:a8:01:43:fb:bf:06:75:
d0:25:32:43:da:75:58:50:56:08:f2:5e:91:ca:47:
07:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:AB:F5:1A:E0:A3:33:50:67:FE:99:0C:09:1C:1F:A6:BC:33:37:6E
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/WKv1GuCjM1Bn_pkMCRwfprwzN24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.44.0/24
163.5.59.0/24
163.5.73.0/24
163.5.89.0/24
163.5.92.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.237.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
85:47:13:b9:17:be:2d:a4:49:f9:15:8f:6f:ec:90:28:ac:51:
9a:6c:6b:7a:c7:72:7f:59:59:66:8e:c8:89:ae:a0:d5:e2:2a:
22:0f:92:e0:ee:39:8f:e5:1a:b3:9e:bd:33:73:43:f3:96:e6:
6f:c2:97:1e:77:d2:0c:1a:e3:33:02:ed:97:de:a5:f4:fd:32:
b8:49:a9:40:57:86:e4:c5:b5:e8:54:3c:26:40:bf:64:ee:37:
4f:75:2b:80:d9:88:92:91:3c:50:1f:3a:62:b5:55:38:b5:4c:
35:fc:c1:a1:02:79:0b:33:c5:f5:c8:93:11:ca:16:95:ce:d6:
15:e8:d5:02:88:44:30:03:38:93:fa:ea:f1:64:bc:dc:d7:ae:
b9:8d:12:1e:c7:3d:2a:fb:10:cc:26:f8:7a:bc:b1:e5:f7:d1:
be:94:d8:e2:ee:f9:88:03:be:19:8a:38:9d:11:ef:aa:c1:e1:
ef:7b:bc:c3:f0:85:da:01:a6:13:e9:d7:6b:81:9d:84:ec:48:
90:60:f5:4b:6e:6c:19:86:01:bc:51:21:76:4d:d0:44:19:0f:
54:d3:4e:37:06:f5:4a:f5:9b:eb:24:18:70:67:0e:f7:94:50:
75:59:43:bf:51:b5:e3:4b:1d:d1:8e:fa:05:e0:79:15:fb:eb:
cd:2c:ea:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 27 10:29:18 2024 by rpki-client on console-ams.rpki-client.org