Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_QUaR2D834b2ZjhG281LKKm5bDo.roa
File: _QUaR2D834b2ZjhG281LKKm5bDo.roa (raw, json)
Hash identifier: 7lqabIz4qinmNiJd3crXc+5/VKlsjAcLhiFz6fOkk5w=
Subject key identifier: FD:05:1A:47:60:FC:DF:86:F6:66:38:46:DB:CD:4B:28:A9:B9:6C:3A
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0190A5F375C436BBBD78E5A958D3D4CB0EA5
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_QUaR2D834b2ZjhG281LKKm5bDo.roa
Signing time: Fri 12 Jul 2024 07:58:34 +0000
ROA not before: Fri 12 Jul 2024 07:58:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 15:16:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a5:f3:75:c4:36:bb:bd:78:e5:a9:58:d3:d4:cb:0e:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 12 07:58:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd051a4760fcdf86f6663846dbcd4b28a9b96c3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1e:16:f8:27:af:2e:fb:ce:57:fb:d6:45:64:
ee:9d:f3:d5:59:a7:4c:01:1e:92:c2:21:60:ee:6b:
fe:4e:eb:40:e6:bd:3a:8e:12:38:35:a6:da:37:fa:
59:7d:1c:d4:1e:50:51:71:bc:92:7d:2f:28:29:b5:
95:62:2e:7b:d9:c7:f1:d3:8d:5d:c9:05:90:61:b6:
c8:15:e0:2a:40:61:42:4f:73:f8:ce:09:9b:92:3f:
8f:55:9c:a4:b5:90:bb:10:c0:0d:fd:ae:8b:aa:9e:
8b:0f:bb:5b:84:d4:b9:93:25:9c:ff:2f:45:0b:fe:
be:e3:f5:67:51:a0:5a:9a:75:c5:e9:c0:85:49:50:
79:64:c5:d3:7d:63:17:ef:31:6a:7b:95:11:7a:f0:
0b:a5:b3:cd:8b:25:1a:78:f6:92:66:81:82:51:f8:
10:ac:41:be:50:90:42:07:44:9e:50:b6:1e:fb:c3:
da:16:84:60:df:ff:d3:b4:3c:97:1b:c6:16:49:72:
53:f5:08:fa:88:22:71:18:1e:9e:82:e1:5d:3f:96:
7d:7b:39:84:b5:66:1a:c5:49:9e:8d:f7:25:f8:82:
2a:69:ca:d6:5d:bc:31:c3:d2:93:da:63:7e:8b:a8:
06:64:e6:85:1c:eb:98:81:1a:16:a1:79:4c:16:9a:
90:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:05:1A:47:60:FC:DF:86:F6:66:38:46:DB:CD:4B:28:A9:B9:6C:3A
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_QUaR2D834b2ZjhG281LKKm5bDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.51.0/24
163.5.71.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.162.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
79:c8:a8:dc:a9:66:7f:b3:a7:0a:5d:ef:c3:9c:98:83:e6:39:
0b:45:57:a6:7c:97:5c:07:37:65:9c:ed:87:a8:08:83:77:5d:
29:86:2c:82:ff:b2:58:da:05:cd:5a:72:c5:c5:c8:2a:1e:b2:
63:60:39:94:80:91:02:ce:fb:bb:0a:8f:83:20:a8:5b:67:dd:
7d:cd:4e:f7:de:9c:e4:b0:9c:a6:db:9b:1d:31:9e:fe:33:26:
50:35:b7:fd:6b:79:13:3d:31:71:08:c5:d4:b8:75:0b:b8:cf:
0c:91:c3:15:4d:39:bb:af:74:23:ea:02:13:06:c3:3e:b4:eb:
1a:4f:d6:1d:f0:38:58:4d:f7:7e:87:91:07:63:74:e2:79:d0:
07:c6:68:bc:8a:10:cf:96:70:80:4d:d5:10:8f:d8:98:f0:e5:
52:ae:15:df:ea:ec:00:36:3d:c3:8a:31:91:b8:1a:7f:88:89:
a5:95:4b:a2:a5:46:38:ca:c6:f5:5f:6d:bc:09:48:ff:a1:66:
f8:5e:3e:cd:63:74:e6:f0:f2:e2:6f:8f:8f:1c:90:86:52:ba:
d8:42:d9:b7:cc:90:e9:95:e0:7f:34:91:4a:62:c9:73:3e:7d:
2b:13:7f:74:61:fd:ab:15:5d:1e:07:11:df:12:72:b3:07:03:
41:54:e5:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 18:09:41 2024 by rpki-client on console-fra.rpki-client.org