Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Xg8S1X-gXh4YcbeJ6JtQL_3TMo0.roa
File: Xg8S1X-gXh4YcbeJ6JtQL_3TMo0.roa (raw, json)
Hash identifier: OHXLkDuFj0OKQyj8ThraDtUexn+xYQIvqtCgT4uLKh8=
Subject key identifier: 5E:0F:12:D5:7F:A0:5E:1E:18:71:B7:89:E8:9B:50:2F:FD:D3:32:8D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0187E60F4184359D6D7DF24579E96591A6A0
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Xg8S1X-gXh4YcbeJ6JtQL_3TMo0.roa
Signing time: Thu 04 May 2023 09:19:32 +0000
ROA not before: Thu 04 May 2023 09:19:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204372
IP address blocks: 163.5.227.0/24 maxlen: 24
163.5.230.0/24 maxlen: 24
163.5.239.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.254.0/24 maxlen: 24
163.5.86.0/24 maxlen: 24
163.5.87.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.107.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.117.0/24 maxlen: 24
163.5.31.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.61.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.202.0/24 maxlen: 24
163.5.211.0/24 maxlen: 24
163.5.210.0/24 maxlen: 24
163.5.216.0/24 maxlen: 24
163.5.223.0/24 maxlen: 24
163.5.221.0/24 maxlen: 24
163.5.226.0/24 maxlen: 24
163.5.222.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.127.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.145.0/24 maxlen: 24
163.5.149.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.166.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e6:0f:41:84:35:9d:6d:7d:f2:45:79:e9:65:91:a6:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 4 09:19:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e0f12d57fa05e1e1871b789e89b502ffdd3328d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:04:e6:14:a7:2e:cd:16:bd:a7:7e:b4:a9:73:
90:1e:95:a9:e1:05:89:97:c0:50:f6:21:b5:b1:1f:
20:c4:47:4a:fa:ee:54:0f:d5:6b:9d:38:e9:02:63:
20:ac:82:fd:c2:ae:1e:40:03:6b:0f:2c:41:26:b6:
f8:ac:c9:eb:38:c0:e6:46:8d:51:6c:18:37:80:8e:
6c:48:1d:63:12:c2:e9:79:71:4e:72:22:72:73:a1:
83:6e:d6:77:90:9b:1f:e8:a7:3e:c3:b2:90:68:88:
a1:69:9b:67:5f:a1:5f:0d:74:1e:76:ca:46:70:dd:
28:9f:6f:e2:5e:b0:90:1c:cd:00:a1:6c:0a:50:0b:
ae:71:4c:1f:33:e5:3c:9f:9d:c5:d5:0f:3e:d1:ed:
5b:b6:bd:3b:d0:00:e0:d4:af:96:ad:c6:ab:b2:05:
20:86:69:97:d2:3d:33:4f:4f:39:4f:e4:62:bc:9d:
c5:52:0f:f8:2b:49:a6:60:0b:81:c9:ea:3a:ae:71:
24:23:68:cd:1b:6a:48:fb:c0:64:d1:55:a8:0a:9d:
98:1a:57:0f:d9:84:e1:14:f9:5e:63:51:fe:ff:5f:
b5:d2:0a:52:9e:17:0f:75:19:2e:ab:a6:ea:ef:03:
fd:48:07:70:49:41:4b:6a:22:2b:de:10:77:ef:72:
35:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:0F:12:D5:7F:A0:5E:1E:18:71:B7:89:E8:9B:50:2F:FD:D3:32:8D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Xg8S1X-gXh4YcbeJ6JtQL_3TMo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.31.0/24
163.5.35.0/24
163.5.61.0-163.5.62.255
163.5.86.0/23
163.5.99.0-163.5.100.255
163.5.107.0/24
163.5.109.0/24
163.5.117.0/24
163.5.127.0/24
163.5.130.0/24
163.5.132.0/23
163.5.136.0/24
163.5.138.0/24
163.5.145.0/24
163.5.149.0/24
163.5.158.0/24
163.5.161.0/24
163.5.166.0/24
163.5.198.0/24
163.5.202.0/24
163.5.210.0/23
163.5.216.0/24
163.5.221.0-163.5.223.255
163.5.226.0/23
163.5.230.0/24
163.5.239.0-163.5.240.255
163.5.248.0/24
163.5.254.0/24
Signature Algorithm: sha256WithRSAEncryption
65:8b:41:90:79:a0:e4:79:54:08:b7:1d:82:aa:5f:99:89:06:
e8:ad:c4:03:e3:d4:eb:9b:14:9e:01:1f:42:4f:f0:af:63:4b:
9a:13:f2:72:f0:31:84:f7:48:b0:bb:25:e9:81:bf:f6:4d:58:
78:99:8b:e6:60:4a:eb:f8:fe:98:88:d9:45:6a:0f:bb:3e:d7:
a4:18:10:8c:57:47:8e:d3:05:7b:97:22:25:cf:6c:fd:04:f8:
05:20:00:aa:db:11:a4:d7:07:c9:68:b6:6b:87:6a:22:82:be:
cd:0a:90:29:3a:05:9c:09:9e:2d:a8:3f:46:db:70:cb:d4:81:
1e:80:c6:1b:e3:7d:3a:f0:ca:8f:a6:70:29:8c:a2:1b:92:ba:
2e:72:27:11:e3:71:a1:69:5b:a8:92:d0:bf:c1:76:0a:97:9d:
2a:64:f9:9e:f7:cb:79:31:ae:a1:83:12:fb:0e:79:7e:4f:28:
4c:d2:69:4c:97:59:3e:c5:ca:16:3e:14:23:c9:74:9d:9d:8e:
30:1d:5c:d0:30:23:e9:24:f3:54:27:b9:9f:ad:7a:6e:a4:47:
11:be:3a:ad:b5:6b:90:95:9d:1f:ef:9e:f2:cf:b1:ae:56:09:
d8:76:2d:a0:6a:94:72:60:df:00:e8:29:ef:06:85:88:4b:06:
8c:a0:29:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org