Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_oRffj99ykGJMKIzIBNA1LfWhJA.roa
File: _oRffj99ykGJMKIzIBNA1LfWhJA.roa (raw, json)
Hash identifier: Y/LcDOWZXP6nqG0XcG+GhtqOxkATeV9GujX8bYxXiac=
Subject key identifier: FE:84:5F:7E:3F:7D:CA:41:89:30:A2:33:20:13:40:D4:B7:D6:84:90
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018FAC46F60C99395A8B61ABB21AFCEB3857
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_oRffj99ykGJMKIzIBNA1LfWhJA.roa
Signing time: Fri 24 May 2024 20:24:42 +0000
ROA not before: Fri 24 May 2024 20:24:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.53.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.124.0/24 maxlen: 24
163.5.125.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.199.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 08:40:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ac:46:f6:0c:99:39:5a:8b:61:ab:b2:1a:fc:eb:38:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 24 20:24:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe845f7e3f7dca418930a233201340d4b7d68490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5a:81:d9:a8:10:1d:08:db:ba:9f:9e:0c:f6:
3f:84:6a:d9:db:3f:7e:e6:c3:36:84:d1:e3:d1:7f:
fa:97:60:b3:a0:a0:87:e6:48:fa:7f:b2:b1:f6:0d:
c6:c3:7f:01:b0:5e:7b:41:f3:98:2f:30:40:bd:b1:
7c:08:6c:51:f6:54:fd:29:c5:23:dc:d0:ea:ab:f3:
3f:d3:a3:ec:6e:ac:97:43:87:bd:86:f1:e6:b9:22:
1b:ce:8d:fc:df:1c:df:0b:14:25:6f:83:08:c0:26:
b2:8f:e5:2a:3b:d4:18:20:f3:5c:85:29:e4:ad:19:
3d:d2:41:be:83:ff:37:77:16:70:2e:d4:03:73:03:
77:7b:ff:c7:ea:e1:47:2f:de:90:5d:d3:60:ea:67:
d4:48:93:5e:92:27:01:4a:f3:85:00:24:ef:a2:7b:
61:1c:bb:f5:68:8d:39:29:b7:d2:f9:3a:db:85:a7:
a4:b9:f8:fc:f6:51:e7:e2:9a:82:4c:cf:d9:3b:54:
1b:b2:58:07:c0:ec:fe:48:6e:3b:28:99:7d:5b:ac:
89:4a:57:7b:e4:3e:c9:7a:bb:47:e1:46:97:6d:0b:
93:47:cf:86:be:27:29:e6:71:98:78:71:b1:26:59:
21:dd:70:43:d5:d8:3e:1c:92:67:db:e4:20:bd:ca:
97:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:84:5F:7E:3F:7D:CA:41:89:30:A2:33:20:13:40:D4:B7:D6:84:90
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_oRffj99ykGJMKIzIBNA1LfWhJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.53.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.124.0-163.5.126.255
163.5.128.0/23
163.5.136.0/24
163.5.139.0/24
163.5.141.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.199.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
04:a8:25:2d:dc:03:71:7c:21:e9:22:fb:4a:33:af:47:87:81:
68:00:11:99:81:ad:93:6a:75:46:16:7b:53:46:b4:66:73:19:
d0:47:18:bd:5e:8d:5d:c8:8f:51:1a:27:9f:11:48:5c:07:ff:
38:0f:0e:c5:d0:06:79:be:8a:d5:8a:89:8d:91:f2:7c:fe:b4:
ee:1e:82:68:80:e6:f7:d6:e6:96:9c:59:df:c6:4b:29:30:10:
e3:2b:02:4e:c3:a5:72:17:49:0d:06:cb:a7:7f:da:7e:19:9f:
41:a9:30:eb:1c:55:e0:37:c2:81:18:8e:20:fb:87:2a:52:69:
ef:ea:3a:db:33:37:13:39:5a:56:ff:3d:0e:bb:c6:2f:2c:91:
c2:eb:d0:40:2e:94:58:fa:d3:6f:ac:bf:32:a0:c9:8a:da:b2:
d2:07:4c:5f:53:21:c4:a7:97:b2:3f:7d:19:34:cb:fe:ef:98:
00:26:f8:54:55:15:14:77:c5:71:00:fe:5b:3c:8c:58:2f:ac:
98:a7:74:8f:66:e3:56:39:1d:9c:43:db:7d:81:19:82:ed:30:
4e:47:4b:4f:b8:3c:a7:d0:fc:de:78:14:42:41:40:65:a9:7e:
2f:04:0c:72:c7:e3:79:a9:31:91:4f:72:3f:8d:88:91:38:26:
66:94:99:40
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgISAY+sRvYMmTlai2Grshr86zhXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwNTI0MjAyNDQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTg0NWY3ZTNmN2RjYTQxODkzMGEyMzMyMDEzNDBkNGI3ZDY4NDkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8FqB2agQHQjbup+eDPY/hGrZ2z9+
5sM2hNHj0X/6l2CzoKCH5kj6f7Kx9g3Gw38BsF57QfOYLzBAvbF8CGxR9lT9KcUj
3NDqq/M/06PsbqyXQ4e9hvHmuSIbzo383xzfCxQlb4MIwCayj+UqO9QYIPNchSnk
rRk90kG+g/83dxZwLtQDcwN3e//H6uFHL96QXdNg6mfUSJNekicBSvOFACTvonth
HLv1aI05KbfS+Trbhaekufj89lHn4pqCTM/ZO1QbslgHwOz+SG47KJl9W6yJSld7
5D7JertH4UaXbQuTR8+Gvicp5nGYeHGxJlkh3XBD1dg+HJJn2+QgvcqXdQIDAQAB
o4ICyDCCAsQwHQYDVR0OBBYEFP6EX34/fcpBiTCiMyATQNS31oSQMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvX29SZmZqOTl5a0dKTUtJeklCTkExTGZXaEpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHdBggrBgEFBQcBBwEB/wSBzTCByjCBxwQCAAEwgcADBACj
BR4DBACjBTUDBACjBVkwDAMEAaMFbgMEAaMFcAMEAKMFeTAMAwQCowV8AwQAowV+
AwQBowWAAwQAowWIAwQAowWLAwQAowWNAwQAowWPAwQAowWSAwQAowWXAwQAowWg
AwQAowWnAwQAowWyAwQAowW2AwQBowW8AwQAowW/AwQAowXHAwQAowXJMAwDBACj
BcsDBAGjBcwDBACjBdoDBACjBeADBACjBeQDBACjBfEDBACjBfoDBACjBf0wDQYJ
KoZIhvcNAQELBQADggEBAASoJS3cA3F8Ieki+0ozr0eHgWgAEZmBrZNqdUYWe1NG
tGZzGdBHGL1ejV3Ij1EaJ58RSFwH/zgPDsXQBnm+itWKiY2R8nz+tO4egmiA5vfW
5pacWd/GSykwEOMrAk7DpXIXSQ0Gy6d/2n4Zn0GpMOscVeA3woEYjiD7hypSae/q
OtszNxM5Wlb/PQ67xi8skcLr0EAulFj602+svzKgyYrastIHTF9TIcSnl7I/fRk0
y/7vmAAm+FRVFRR3xXEA/ls8jFgvrJindI9m41Y5HZxD232BGYLtME5HS0+4PKfQ
/N54FEJBQGWpfi8EDHLH43mpMZFPcj+NiJE4JmaUmUA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:06 2024 by rpki-client on console-fra.rpki-client.org