Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Yvwdw-n5N8y2MtZf2H7drXZlm9s.roa
File: Yvwdw-n5N8y2MtZf2H7drXZlm9s.roa (raw, json)
Hash identifier: MxyDGzKMNEUORcEFqBkyloURtuwhe7DuhsNV1ST9akI=
Subject key identifier: 62:FC:1D:C3:E9:F9:37:CC:B6:32:D6:5F:D8:7E:DD:AD:76:65:9B:DB
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019054FE6E37E6F2D3B508C902072CB3D983
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Yvwdw-n5N8y2MtZf2H7drXZlm9s.roa
Signing time: Wed 26 Jun 2024 14:41:18 +0000
ROA not before: Wed 26 Jun 2024 14:41:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 13:19:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:54:fe:6e:37:e6:f2:d3:b5:08:c9:02:07:2c:b3:d9:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 26 14:41:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62fc1dc3e9f937ccb632d65fd87eddad76659bdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e3:2f:2e:be:42:10:0d:5f:10:67:14:3f:c1:
5b:2e:c5:6d:e2:29:45:ed:fa:3a:10:b5:e9:7a:f6:
5a:c0:68:18:2c:a1:38:2d:ea:4a:73:fa:21:ad:57:
ae:ce:03:60:a7:71:e6:fb:07:87:3a:d6:d4:cf:b7:
b0:e2:4c:86:26:46:7e:38:13:75:5d:72:8b:19:37:
35:a3:b0:95:62:79:b0:aa:0f:d6:53:cf:ad:bb:de:
ed:a3:67:0b:4b:cb:04:d2:86:c4:2d:e8:61:fd:d9:
b1:ae:86:d7:07:cb:02:16:77:03:7e:de:4f:76:fb:
6d:88:af:0f:03:d7:5f:f6:0d:be:53:df:a0:f4:d1:
26:ee:38:0d:ba:59:eb:a5:7e:88:70:e4:4f:c3:ef:
79:e4:e5:03:43:d3:ec:7c:a3:e4:61:45:fe:96:cd:
5b:1b:2f:8a:43:ee:4c:1d:55:e2:b7:bd:ce:80:59:
55:26:4e:ef:ef:94:6d:a9:81:91:dd:01:b6:08:28:
75:87:d4:ef:4e:f5:79:f6:a6:6e:d7:4c:30:05:4f:
6e:a3:b6:6e:d5:92:89:b6:3d:20:0c:69:c2:96:c1:
03:e9:17:11:bc:07:79:23:04:87:86:3b:21:63:92:
ee:c0:c6:e9:59:eb:33:9d:31:d8:30:d9:57:9c:15:
86:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:FC:1D:C3:E9:F9:37:CC:B6:32:D6:5F:D8:7E:DD:AD:76:65:9B:DB
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Yvwdw-n5N8y2MtZf2H7drXZlm9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.71.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.138.0/23
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.212.0/24
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:43:cb:30:ee:65:0d:39:95:53:b1:5c:75:42:4e:07:3d:82:
93:8a:07:4f:2c:b2:0c:ac:98:91:d0:57:19:7a:cb:5e:98:10:
04:28:bc:98:c4:44:e0:2b:98:35:d2:05:0e:c9:74:fd:12:f6:
37:8e:79:1c:39:3c:a2:a3:2d:d6:5d:b9:95:7a:35:07:e6:f7:
41:17:e5:48:b4:77:50:86:53:e2:63:fb:9d:1d:db:32:e2:1c:
c7:25:5f:a8:83:85:38:fc:e6:fa:8f:93:81:71:01:7d:07:2a:
74:e5:ff:53:6d:e3:97:ed:bf:5b:6e:a5:01:5b:0b:51:0c:90:
88:5b:2d:a1:1d:7d:20:f8:04:3f:0f:f6:f7:8e:1c:8a:39:98:
1e:8f:9d:3e:73:f7:ad:15:cb:88:ed:9e:8c:55:46:5c:e0:e3:
dc:05:ee:53:6f:72:6a:0d:0d:7f:be:aa:a9:c8:2f:dc:21:f8:
71:ba:a1:11:0d:60:65:c6:9f:ad:68:63:ac:de:60:da:97:a1:
27:25:ab:ff:be:53:3d:ac:a3:2f:c8:95:06:38:80:2e:ec:9c:
cd:b5:8f:01:68:b0:f4:c6:4d:73:62:07:a8:29:b4:df:3f:2c:
c6:2b:3e:fa:44:99:e4:de:78:50:33:b4:7c:e3:b4:ba:a5:e2:
a6:7e:50:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 16:42:01 2024 by rpki-client on console-ams.rpki-client.org