Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Wb8v2rMT6aZcC9oBYaRL_Qe87rg.roa
File: Wb8v2rMT6aZcC9oBYaRL_Qe87rg.roa (raw, json)
Hash identifier: /QL+My+BF6dX8XpkoCaKvU7dbTVd0IdBm5lOvngccuo=
Subject key identifier: 59:BF:2F:DA:B3:13:E9:A6:5C:0B:DA:01:61:A4:4B:FD:07:BC:EE:B8
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01937BE9A5E16CD9C52E7361958F281ECB96
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Wb8v2rMT6aZcC9oBYaRL_Qe87rg.roa
Signing time: Sat 30 Nov 2024 07:12:10 +0000
ROA not before: Sat 30 Nov 2024 07:12:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.92.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.137.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.157.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.219.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Dec 2024 14:37:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:7b:e9:a5:e1:6c:d9:c5:2e:73:61:95:8f:28:1e:cb:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 30 07:12:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59bf2fdab313e9a65c0bda0161a44bfd07bceeb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:44:f6:f9:6d:61:3c:bc:79:35:1c:bc:7d:75:
a4:b1:10:d5:55:74:dd:0e:05:e0:96:ba:65:1e:1a:
89:7c:ce:fa:c1:d7:ff:bf:25:c7:12:5b:41:00:63:
a3:37:33:41:13:c5:03:47:44:d2:7c:71:1e:67:93:
3f:a4:1f:0a:09:d7:17:57:96:fc:ce:a2:04:74:1c:
be:0e:7b:d4:d6:28:a4:d6:a4:41:d1:39:d0:4b:1a:
30:a2:23:d3:6d:72:10:62:a1:14:6f:26:f8:e9:fc:
64:80:1a:b8:2e:8c:d1:3a:d0:ed:eb:66:8d:29:4e:
b8:f2:59:dc:62:63:a1:26:08:0f:fa:83:5f:75:7c:
f1:de:54:d0:65:a3:41:24:56:38:fa:90:c8:d2:64:
9f:7b:9d:f7:ee:b3:ed:f6:37:1a:b5:ab:ef:63:70:
98:1d:0c:6b:7a:f5:a5:ba:26:a8:f9:0c:e0:fd:7d:
25:df:f3:6c:b5:55:68:3a:6b:c3:06:60:d0:3d:a0:
7d:9b:a1:07:2e:ed:f5:58:37:69:28:e8:28:3f:2a:
f2:30:53:ed:1b:17:97:3a:ec:a9:ba:d5:ae:96:09:
a8:d0:72:7d:06:5c:b0:f9:a6:75:16:46:d2:e2:45:
4d:13:b2:46:fb:73:08:c2:14:06:77:04:b1:6c:c3:
d3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:BF:2F:DA:B3:13:E9:A6:5C:0B:DA:01:61:A4:4B:FD:07:BC:EE:B8
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Wb8v2rMT6aZcC9oBYaRL_Qe87rg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.59.0/24
163.5.73.0/24
163.5.89.0/24
163.5.92.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.137.0-163.5.139.255
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.157.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/23
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
87:a9:93:27:a6:bc:30:c5:41:39:6c:0f:aa:48:49:38:26:5d:
df:b8:31:c1:8b:a2:18:82:08:6e:53:da:cf:bc:3b:15:de:70:
da:95:10:86:71:96:f4:bd:18:93:52:5d:53:f0:6a:fe:77:13:
81:17:bf:8e:53:ce:b0:49:3f:7a:1d:71:45:a0:8e:ca:91:8c:
e2:77:09:ca:3d:8e:e1:ef:c2:03:79:fc:bc:7d:6f:d9:a2:48:
bd:04:6b:ba:00:c7:a6:a4:0f:5c:f5:75:c7:50:d9:ae:8d:5a:
d7:5a:18:e7:e6:fe:ef:03:86:5e:a9:bc:54:3e:2c:72:da:a7:
85:3a:43:24:78:56:9a:29:24:ea:2f:dc:60:48:74:25:54:b8:
f0:10:cb:23:ff:18:51:52:26:7a:d2:d0:62:c1:e4:97:ac:7c:
c2:0c:61:c8:2c:70:7c:8d:ba:ea:f4:d7:d6:c4:f8:e4:fd:a1:
ec:7e:2b:7e:eb:3f:87:09:72:82:49:08:03:db:6c:ed:ee:63:
f9:b8:e8:84:f6:09:3d:ab:6b:b9:b3:f8:f0:ac:ef:c0:cc:54:
66:17:ad:d7:41:3f:20:df:37:99:43:ba:16:d2:d7:df:df:9c:
7e:0e:0b:25:78:dd:f9:e3:fa:b5:af:c1:f3:bd:57:ae:81:39:
d4:0f:ab:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:36:54 2025 by rpki-client