Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YKRkd_yNj9lO0eA7MfyuhJlhdjo.roa
File: YKRkd_yNj9lO0eA7MfyuhJlhdjo.roa (raw, json)
Hash identifier: WPLImHUUUY9aKvu13un8iP4UPftaC0fboJcU5nFNpjs=
Subject key identifier: 60:A4:64:77:FC:8D:8F:D9:4E:D1:E0:3B:31:FC:AE:84:99:61:76:3A
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018D7E78FFC33B1C65D57425CF6F63ED20D0
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YKRkd_yNj9lO0eA7MfyuhJlhdjo.roa
Signing time: Tue 06 Feb 2024 12:51:15 +0000
ROA not before: Tue 06 Feb 2024 12:51:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.27.0/24 maxlen: 24
163.5.28.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.145.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.202.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Feb 2024 15:59:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7e:78:ff:c3:3b:1c:65:d5:74:25:cf:6f:63:ed:20:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 6 12:51:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60a46477fc8d8fd94ed1e03b31fcae849961763a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0d:b2:a5:74:17:fd:9f:07:2c:ad:15:3e:cd:
51:50:39:ea:b1:4a:93:a0:a3:e3:b2:75:4d:41:56:
ee:0e:f8:42:35:e0:5b:ad:3c:64:8d:c3:3f:43:22:
68:88:38:d9:36:55:61:79:b6:d7:52:2f:c3:e3:1e:
0a:ef:8e:51:0d:b9:0c:ce:87:d9:01:7f:a2:c5:90:
d7:9c:4b:24:ac:c4:f9:f4:cf:16:0a:d4:eb:21:75:
33:4d:e9:ca:de:e3:c8:83:da:32:9d:2b:a6:92:50:
c8:1f:d0:d0:16:65:f3:e9:cd:1c:d8:6f:b3:bd:ae:
ae:d7:ad:5f:60:36:1f:ff:2d:fb:d4:c0:33:ce:8e:
9d:f6:bf:cc:29:84:9b:53:03:23:c2:5a:7c:b5:fe:
c4:f3:25:38:3c:e3:ac:83:bf:b8:f6:c5:db:e7:d0:
bb:12:60:cf:d1:d0:f2:09:d8:17:67:9d:bc:3f:11:
a6:08:5a:f1:03:f0:ce:a1:cd:f7:a5:82:e8:92:9b:
99:2a:62:7e:1b:f8:75:18:29:44:1f:db:1e:a8:3e:
3e:19:8a:f5:e4:b3:9e:b1:e9:f3:e9:97:9c:32:c7:
4d:1e:29:dc:ff:f9:fd:27:2b:a9:c6:e3:7e:10:e7:
13:3f:73:bd:0a:7e:95:2f:d8:b7:b1:2b:36:69:92:
f7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A4:64:77:FC:8D:8F:D9:4E:D1:E0:3B:31:FC:AE:84:99:61:76:3A
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YKRkd_yNj9lO0eA7MfyuhJlhdjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.27.0-163.5.28.255
163.5.30.0/24
163.5.79.0/24
163.5.89.0/24
163.5.104.0/24
163.5.106.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.139.0/24
163.5.143.0/24
163.5.145.0-163.5.146.255
163.5.148.0/24
163.5.150.0/23
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.201.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
60:fc:5c:99:63:2f:ef:ff:7c:42:0f:21:91:98:c1:33:46:5a:
99:07:3d:0f:d4:44:17:b0:9f:f9:6a:dc:93:82:f1:c6:94:fb:
c2:97:35:a3:23:cd:4e:40:e3:58:f3:5b:ec:ab:82:8c:be:ba:
82:f8:33:b3:ad:08:f7:44:b6:31:da:ad:09:4c:83:c3:3d:cb:
8b:c0:e3:1d:5c:1c:6c:b1:83:e6:d4:af:f8:25:85:52:69:f3:
6b:06:e7:ec:81:86:a3:c6:72:41:dc:4f:eb:90:f8:88:33:ee:
e0:44:19:ff:93:01:b7:ff:04:12:f0:98:4c:58:7b:70:78:03:
44:50:c8:74:8d:8d:e0:89:68:0b:47:9a:c5:b7:22:66:20:8a:
98:ad:5e:b5:ca:ac:1c:ab:ea:bc:86:1c:41:3c:ca:d7:03:71:
76:a1:94:ab:44:07:27:9b:1d:da:90:a8:05:61:f1:2d:51:ad:
f6:94:da:34:37:99:ca:b8:9c:2c:9b:bd:78:80:58:d4:c4:9c:
14:44:77:71:a4:55:02:29:88:5a:c7:06:5f:c9:17:c7:f4:16:
16:37:8d:07:89:6f:e5:ff:57:ec:8c:f0:eb:51:fa:11:4b:81:
c6:42:1b:e4:af:d6:fe:f5:05:f8:92:be:51:6d:47:aa:6f:85:
cb:ec:bc:fb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Feb 7 20:26:36 2024 by rpki-client on console-fra.rpki-client.org