Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_OwzyZg0cxhNCxAEOJJsSESzyDg.roa
File: _OwzyZg0cxhNCxAEOJJsSESzyDg.roa (raw, json)
Hash identifier: +5lKcjXmXzRqffT3F5213oc0KyMEG9jBQonzmLwyQpk=
Subject key identifier: FC:EC:33:C9:98:34:73:18:4D:0B:10:04:38:92:6C:48:44:B3:C8:38
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018AE1131A2738D17F443A464AE44EA8C48E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_OwzyZg0cxhNCxAEOJJsSESzyDg.roa
Signing time: Fri 29 Sep 2023 13:14:00 +0000
ROA not before: Fri 29 Sep 2023 13:14:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.231.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.235.0/24 maxlen: 24
163.5.242.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.66.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.78.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.86.0/24 maxlen: 24
163.5.87.0/24 maxlen: 24
163.5.97.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.58.0/24 maxlen: 24
163.5.64.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.175.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.213.0/24 maxlen: 24
163.5.216.0/24 maxlen: 24
163.5.217.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.219.0/24 maxlen: 24
163.5.220.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.122.0/24 maxlen: 24
163.5.123.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.137.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e1:13:1a:27:38:d1:7f:44:3a:46:4a:e4:4e:a8:c4:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 29 13:14:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcec33c9983473184d0b100438926c4844b3c838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c5:76:03:af:2f:19:62:32:2b:24:ab:43:bf:
2d:a0:ce:dc:c2:37:0a:f0:ad:dc:81:fb:39:c7:ed:
5e:24:a7:f8:42:93:55:ff:96:18:4e:57:d4:9e:39:
06:c0:88:8c:8b:79:24:47:cf:36:dd:3f:5f:12:27:
31:ed:41:f4:73:f1:52:5d:73:df:e4:f8:f7:6a:c4:
12:10:3e:11:bf:2e:cf:72:fd:4f:8a:99:4a:9b:22:
fb:c1:09:b8:ba:0e:01:b0:27:f6:c5:b0:1a:44:27:
d6:7e:5a:38:1d:f0:4c:a7:3a:03:f6:fe:62:31:32:
3c:11:31:24:6a:f6:bd:66:83:1c:cd:d4:c6:51:65:
1a:28:7a:69:db:ec:ab:0a:60:5d:3b:50:f4:1b:ea:
15:b9:24:67:f9:e8:a2:4a:29:66:a2:8a:cc:6b:4a:
90:ef:e5:5b:e8:de:5b:46:46:de:4f:c6:ed:c6:b8:
8c:1e:c1:23:f2:2e:fb:ef:86:40:ca:77:0e:45:e8:
0b:3a:e3:74:ff:07:d9:25:ac:19:b1:92:67:df:2e:
b9:8f:d1:c5:1c:24:49:6c:9c:a6:7d:cb:33:f4:9b:
a9:04:bc:f3:ee:45:97:f3:bb:15:bb:cd:e7:57:5c:
ef:04:99:4e:dd:60:d1:28:56:93:0c:0f:23:dd:37:
cc:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:EC:33:C9:98:34:73:18:4D:0B:10:04:38:92:6C:48:44:B3:C8:38
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_OwzyZg0cxhNCxAEOJJsSESzyDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.33.0/24
163.5.35.0-163.5.36.255
163.5.58.0/24
163.5.62.0/24
163.5.64.0/24
163.5.66.0/24
163.5.71.0/24
163.5.78.0/23
163.5.83.0/24
163.5.86.0/23
163.5.89.0/24
163.5.94.0/23
163.5.97.0/24
163.5.99.0-163.5.100.255
163.5.104.0-163.5.106.255
163.5.110.0-163.5.114.255
163.5.121.0-163.5.123.255
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.137.0/24
163.5.139.0/24
163.5.141.0-163.5.143.255
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.156.0/24
163.5.160.0/24
163.5.165.0/24
163.5.167.0/24
163.5.170.0-163.5.172.255
163.5.175.0-163.5.176.255
163.5.178.0/23
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.195.0/24
163.5.198.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.212.0/23
163.5.216.0-163.5.220.255
163.5.224.0/24
163.5.228.0/24
163.5.231.0/24
163.5.235.0/24
163.5.241.0-163.5.242.255
163.5.247.0/24
163.5.249.0-163.5.253.255
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
25:66:9c:48:eb:c8:5c:c7:0c:53:b8:92:81:e8:0b:db:e9:8f:
be:72:93:14:a3:a6:e1:9b:dc:04:8a:8e:4a:69:b6:9b:c3:0c:
ca:b0:5b:7a:7d:4d:f6:87:43:bc:db:3c:3e:b5:eb:c1:9f:fb:
b1:20:96:b0:00:a9:07:3a:07:9a:2d:f1:80:8c:e8:67:bf:05:
0a:d6:1c:e7:69:24:10:d1:f4:73:e6:ee:2a:1d:2e:62:b9:48:
87:b4:65:e3:49:3f:04:38:49:fd:6f:45:22:ed:8a:78:10:d8:
1e:c0:3f:0a:01:f8:6b:d0:17:18:0c:1c:d7:f4:87:2a:19:62:
e9:af:75:2f:42:c7:7e:6c:c1:77:ad:32:d3:f6:c3:b3:2e:27:
76:e6:0f:1c:08:ba:bb:b7:ce:2f:90:e3:cc:0d:cb:98:d0:d9:
8b:19:57:67:b0:6f:4d:00:52:b2:36:e7:be:e8:a4:58:a2:d0:
19:39:8a:9f:2b:40:b6:f6:09:99:aa:05:0b:ec:b8:4b:20:ac:
4d:fe:33:3c:dc:0f:59:c4:7d:f0:92:43:24:8f:b2:de:57:5d:
21:7e:c0:74:54:23:3e:0d:a2:de:b8:96:33:dd:cb:20:eb:9d:
94:d8:8d:08:31:0a:f3:f9:ff:4a:19:81:1b:41:0b:3e:c7:08:
51:22:b5:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 1 22:46:30 2023 by rpki-client on console-ams.rpki-client.org