Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dNxThhI-TbV5y6uCEL4xJUkgGs0.roa
File: dNxThhI-TbV5y6uCEL4xJUkgGs0.roa (raw, json)
Hash identifier: 7kgHvG7jlqn1cr1hpXCpIB0OjNfg/3S9EmphqjV1YEM=
Subject key identifier: 74:DC:53:86:12:3E:4D:B5:79:CB:AB:82:10:BE:31:25:49:20:1A:CD
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0190D0C60EEA6928F3C3C9E56FF54CEA0073
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dNxThhI-TbV5y6uCEL4xJUkgGs0.roa
Signing time: Sat 20 Jul 2024 15:32:39 +0000
ROA not before: Sat 20 Jul 2024 15:32:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.125.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.163.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.211.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.232.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 14:09:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d0:c6:0e:ea:69:28:f3:c3:c9:e5:6f:f5:4c:ea:00:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 20 15:32:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74dc5386123e4db579cbab8210be312549201acd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5f:8b:37:cf:71:3f:b1:46:a6:2e:1d:b1:62:
db:79:92:91:23:fa:a5:b7:00:11:b5:70:a3:57:97:
2d:b5:25:1f:d2:17:fe:56:2c:41:2d:7c:a5:81:2c:
e5:c0:8a:46:9d:ff:4a:ff:22:8e:e3:47:89:99:50:
57:22:b5:e6:a1:62:31:e3:66:35:a1:28:5b:a1:31:
5e:5b:67:23:7d:23:ca:74:12:60:81:03:d0:7a:74:
2f:d7:4e:ce:f4:06:03:45:45:be:72:72:3e:ea:aa:
0e:66:ab:c3:b4:b9:79:5c:b3:d9:a6:b0:c2:26:28:
a7:9a:1a:8c:11:e7:c8:0c:e6:a3:9b:ee:a3:86:bf:
3c:ed:6d:15:85:7f:e3:04:fb:91:77:bc:53:84:3f:
32:a1:0a:09:9d:e1:ee:12:c8:06:ea:c9:94:e5:25:
f9:a1:47:e9:39:3c:be:21:98:ec:1a:ab:7a:f5:84:
85:34:ee:e8:d7:b2:d6:11:a1:a3:73:24:3c:3c:7e:
7f:c8:8b:bb:94:22:f7:36:42:03:62:46:2b:07:aa:
03:e5:ff:49:be:19:bf:c1:34:a7:69:d1:06:e9:4f:
53:43:82:f9:0d:1d:3d:79:b7:c9:ec:b6:da:96:9a:
77:23:4f:49:18:7d:ff:e8:3c:55:67:ff:f7:d9:3d:
c7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DC:53:86:12:3E:4D:B5:79:CB:AB:82:10:BE:31:25:49:20:1A:CD
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dNxThhI-TbV5y6uCEL4xJUkgGs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.51.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.125.0-163.5.126.255
163.5.128.0/23
163.5.134.0/24
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.162.0/23
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.211.0/24
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.232.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:a6:70:e1:77:e4:e0:be:89:da:58:35:95:97:f2:27:bf:da:
0d:2e:79:db:26:91:be:7d:4d:0a:50:fe:60:7a:39:62:c0:d1:
95:e1:49:7c:ca:5a:b0:18:f3:95:c7:b9:9a:12:bf:f5:d9:63:
6b:8d:fd:3b:46:e5:b8:a8:0c:2f:69:60:d2:b8:cd:54:21:c6:
1e:b1:02:d0:4e:bd:8c:2e:fe:98:62:bd:2c:e5:63:59:65:b8:
c1:8c:b4:2a:5a:25:34:b7:3e:f4:13:c6:d6:40:c8:7c:fd:f5:
0e:e0:9c:93:04:50:0a:57:ba:00:45:76:00:7a:93:ab:39:02:
22:75:93:0e:96:5e:db:2d:2e:60:64:d7:4a:88:98:82:eb:61:
c2:fe:cd:77:e4:26:1b:06:76:7a:a8:1b:3d:5b:23:cc:69:bc:
3f:18:9c:75:fd:3c:27:1e:f6:31:90:dc:7f:73:cd:32:22:c6:
5c:94:94:b5:2e:7b:9c:47:2f:52:c9:9f:53:26:70:30:ae:fb:
54:54:ab:d1:34:37:33:da:dc:92:fa:78:87:45:db:67:69:10:
a0:b7:70:7e:71:40:d8:30:a2:e2:9a:97:b7:a6:96:73:56:dc:
3d:19:1a:6f:b6:f3:07:38:dc:48:f5:78:fc:48:72:57:9a:36:
9c:7b:06:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 18:49:52 2024 by rpki-client on console-fra.rpki-client.org