Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/c1wdyVuJ7GnuhtKSD2ePM29nCLw.roa
File: c1wdyVuJ7GnuhtKSD2ePM29nCLw.roa (raw, json)
Hash identifier: YXE5JePAI6GM51iw4qtbkdN57B0agXD4FFNyYyTUpHQ=
Subject key identifier: 73:5C:1D:C9:5B:89:EC:69:EE:86:D2:92:0F:67:8F:33:6F:67:08:BC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019138CBC9B2AE90A3E15851C7C2C5C08CF6
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/c1wdyVuJ7GnuhtKSD2ePM29nCLw.roa
Signing time: Fri 09 Aug 2024 20:19:25 +0000
ROA not before: Fri 09 Aug 2024 20:19:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 163.5.38.0/23 maxlen: 23
163.5.38.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.60.0/24 maxlen: 24
163.5.63.0/24 maxlen: 24
163.5.88.0/24 maxlen: 24
163.5.90.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.117.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.226.0/24 maxlen: 24
163.5.227.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.229.0/24 maxlen: 24
163.5.238.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.243.0/24 maxlen: 24
163.5.244.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 13:19:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:38:cb:c9:b2:ae:90:a3:e1:58:51:c7:c2:c5:c0:8c:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 9 20:19:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=735c1dc95b89ec69ee86d2920f678f336f6708bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ec:a8:e9:e8:7a:63:db:d6:d8:eb:16:7f:75:
4b:e4:73:67:3b:6b:37:05:ec:26:fe:6d:22:63:e9:
b8:0b:db:85:92:6c:27:e7:d5:77:ad:2d:59:7e:b6:
60:e1:01:e9:b9:fd:2f:4d:62:dc:53:c0:79:e8:61:
98:c7:63:1b:e1:a3:ca:3d:18:b0:a3:d7:bc:04:28:
9a:1a:85:ba:1b:41:55:bb:df:fa:72:ed:ae:49:8b:
93:30:c8:8b:fa:b6:a7:ac:47:a8:53:57:ca:94:99:
5a:55:e3:1a:12:dc:6a:98:98:3f:cb:6d:b7:92:ac:
ff:ff:ab:06:88:b0:1e:bb:0b:d1:34:a6:1d:bf:cf:
fb:c3:0b:ae:43:22:7d:08:0a:79:7b:ac:45:34:82:
23:f1:04:22:7a:fe:ab:df:08:93:19:d4:0a:0f:e6:
23:52:e8:9a:6c:60:a2:55:33:31:71:e2:a5:af:6d:
c2:78:2e:8c:c6:f5:a1:e9:49:90:b9:ef:53:42:2f:
21:7a:bd:49:1d:be:a7:88:b5:a5:7c:86:4e:d2:6f:
b6:c2:a9:7f:cb:47:db:cc:eb:2b:e4:b8:32:ac:57:
7c:e5:1a:17:de:d4:46:7b:bb:4c:b8:89:91:e2:dd:
c5:e4:dd:ca:88:27:23:1a:02:aa:85:b8:76:1d:60:
e7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:5C:1D:C9:5B:89:EC:69:EE:86:D2:92:0F:67:8F:33:6F:67:08:BC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/c1wdyVuJ7GnuhtKSD2ePM29nCLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.38.0/23
163.5.60.0/24
163.5.63.0/24
163.5.88.0/24
163.5.90.0/24
163.5.93.0/24
163.5.100.0-163.5.102.255
163.5.108.0/23
163.5.114.0/24
163.5.116.0/23
163.5.119.0/24
163.5.130.0/23
163.5.133.0/24
163.5.147.0/24
163.5.174.0/24
163.5.189.0/24
163.5.192.0/24
163.5.225.0-163.5.229.255
163.5.238.0/24
163.5.240.0/24
163.5.243.0-163.5.244.255
163.5.246.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:bb:e0:9e:bb:2a:8b:7b:8c:8f:2b:5c:29:38:b7:7c:7a:ed:
a1:80:95:99:99:2f:b4:f4:98:68:44:fd:49:b4:5b:b3:8a:05:
2a:67:61:e6:97:06:8e:cd:55:36:6c:17:96:3f:ba:3a:fe:7b:
0c:d3:c4:e6:0b:30:97:18:c3:ea:f3:e5:76:6e:a4:35:32:40:
af:87:3a:4d:7c:ed:f9:a0:3d:2e:c0:26:8c:5c:5b:53:08:8d:
9a:db:c5:b2:e5:01:30:40:7d:b2:c2:1d:3c:13:a5:c6:7d:76:
34:81:3d:58:dd:66:5e:46:ed:c5:6e:8d:18:0d:c2:aa:ce:e7:
e4:b1:db:43:7a:5a:a9:1e:eb:b4:9d:d4:94:4e:00:3f:c4:06:
03:75:7c:de:91:ab:44:3b:aa:9d:c3:86:ab:15:21:e7:2e:d8:
0c:3c:2a:76:82:7e:de:12:e5:96:99:33:e2:bd:37:fd:d3:ee:
95:1d:c4:0d:34:9a:d7:ae:00:84:88:89:57:27:b4:5f:fa:aa:
e8:fc:0e:71:24:c9:bf:9e:8a:4f:29:3e:a8:3c:76:ba:0c:ad:
e2:ee:c8:f4:27:6a:00:79:70:e0:4c:b0:77:3a:49:db:7c:1e:
f8:b3:e7:4c:6f:49:6c:63:3d:48:d4:13:a8:27:13:15:60:7c:
f6:07:25:c9
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgISAZE4y8myrpCj4VhRx8LFwIz2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwODA5MjAxOTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MzVjMWRjOTViODllYzY5ZWU4NmQyOTIwZjY3OGYzMzZmNjcwOGJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Oyo6eh6Y9vW2OsWf3VL5HNnO2s3
Bewm/m0iY+m4C9uFkmwn59V3rS1ZfrZg4QHpuf0vTWLcU8B56GGYx2Mb4aPKPRiw
o9e8BCiaGoW6G0FVu9/6cu2uSYuTMMiL+ranrEeoU1fKlJlaVeMaEtxqmJg/y223
kqz//6sGiLAeuwvRNKYdv8/7wwuuQyJ9CAp5e6xFNIIj8QQiev6r3wiTGdQKD+Yj
UuiabGCiVTMxceKlr23CeC6MxvWh6UmQue9TQi8her1JHb6niLWlfIZO0m+2wql/
y0fbzOsr5LgyrFd85RoX3tRGe7tMuImR4t3F5N3KiCcjGgKqhbh2HWDntwIDAQAB
o4ICpDCCAqAwHQYDVR0OBBYEFHNcHclbiexp7obSkg9njzNvZwi8MB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvYzF3ZHlWdUo3R251aHRLU0QyZVBNMjluQ0x3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG5BggrBgEFBQcBBwEB/wSBqTCBpjCBowQCAAEwgZwDBAGj
BSYDBACjBTwDBACjBT8DBACjBVgDBACjBVoDBACjBV0wDAMEAqMFZAMEAKMFZgME
AaMFbAMEAKMFcgMEAaMFdAMEAKMFdwMEAaMFggMEAKMFhQMEAKMFkwMEAKMFrgME
AKMFvQMEAKMFwDAMAwQAowXhAwQBowXkAwQAowXuAwQAowXwMAwDBACjBfMDBACj
BfQDBACjBfYwDQYJKoZIhvcNAQELBQADggEBAJy74J67Kot7jI8rXCk4t3x67aGA
lZmZL7T0mGhE/Um0W7OKBSpnYeaXBo7NVTZsF5Y/ujr+ewzTxOYLMJcYw+rz5XZu
pDUyQK+HOk187fmgPS7AJoxcW1MIjZrbxbLlATBAfbLCHTwTpcZ9djSBPVjdZl5G
7cVujRgNwqrO5+Sx20N6Wqke67Sd1JROAD/EBgN1fN6Rq0Q7qp3DhqsVIecu2Aw8
KnaCft4S5ZaZM+K9N/3T7pUdxA00mteuAISIiVcntF/6quj8DnEkyb+eik8pPqg8
droMreLuyPQnagB5cOBMsHc6Sdt8Hviz50xvSWxjPUjUE6gnExVgfPYHJck=
-----END CERTIFICATE-----
Generated at Mon Sep 2 15:00:46 2024 by rpki-client on console-fra.rpki-client.org