Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/eRN6R-ctuhaPypSIrYgcQXIqXRo.roa
File: eRN6R-ctuhaPypSIrYgcQXIqXRo.roa (raw, json)
Hash identifier: qb3EWHlLUC5L51Iyn33fpi5u0vDWBNAcOltH7Nb9e6s=
Subject key identifier: 79:13:7A:47:E7:2D:BA:16:8F:CA:94:88:AD:88:1C:41:72:2A:5D:1A
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01934D74F26D9B29666D32E7FF58508170FF
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/eRN6R-ctuhaPypSIrYgcQXIqXRo.roa
Signing time: Thu 21 Nov 2024 06:42:10 +0000
ROA not before: Thu 21 Nov 2024 06:42:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.7.0/24 maxlen: 24
163.5.8.0/24 maxlen: 24
163.5.9.0/24 maxlen: 24
163.5.12.0/24 maxlen: 24
163.5.13.0/24 maxlen: 24
163.5.17.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.92.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.124.0/24 maxlen: 24
163.5.125.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.149.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Nov 2024 16:27:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4d:74:f2:6d:9b:29:66:6d:32:e7:ff:58:50:81:70:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 21 06:42:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79137a47e72dba168fca9488ad881c41722a5d1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bd:bf:d5:ff:19:0e:d3:a6:50:ff:54:5a:0a:
cc:3d:c4:41:05:b4:ca:f8:ba:83:95:16:ae:bc:ce:
41:bc:89:64:7f:0e:2d:41:55:3f:18:a0:1b:3f:03:
ba:fa:98:fd:b9:34:e0:bf:9c:38:aa:47:0c:dd:0c:
d1:a7:df:44:31:71:74:86:6c:7e:5d:2b:bd:f3:22:
3f:e0:10:17:1b:3a:a7:0f:3a:45:7e:d8:ea:4b:ba:
e6:a5:cc:27:cc:3d:3a:36:6a:0e:ac:3b:4e:34:37:
6d:12:29:e0:55:f9:ff:09:23:d2:a6:a7:72:2b:39:
30:30:20:e5:5b:e0:9e:24:5f:55:f0:91:5f:44:96:
05:5b:ad:5d:97:27:ef:d8:d3:51:4a:67:dd:b1:dd:
39:3c:e1:49:22:6d:6b:cf:5c:a1:a4:f7:81:cc:74:
a9:91:3a:98:6c:26:1b:c2:be:84:6d:66:d2:89:66:
87:f2:94:07:d1:b3:6e:f5:bb:90:eb:d8:49:0e:aa:
28:c1:f5:43:03:fb:f3:9f:f5:fb:c8:eb:2c:ec:a6:
06:89:4d:b5:ff:e7:b6:71:22:a1:27:a1:cf:e1:d0:
73:c7:d9:8a:1c:ea:53:ae:7a:31:26:52:89:8e:47:
3a:fc:4e:5f:55:b0:c4:73:a3:1d:5c:69:0f:15:ac:
4c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:13:7A:47:E7:2D:BA:16:8F:CA:94:88:AD:88:1C:41:72:2A:5D:1A
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/eRN6R-ctuhaPypSIrYgcQXIqXRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.7.0-163.5.9.255
163.5.12.0/23
163.5.17.0/24
163.5.30.0/24
163.5.59.0/24
163.5.71.0/24
163.5.73.0/24
163.5.89.0/24
163.5.92.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.124.0-163.5.126.255
163.5.128.0/23
163.5.138.0/23
163.5.143.0/24
163.5.146.0/24
163.5.149.0/24
163.5.151.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
44:75:c7:8a:23:05:a9:19:d5:27:50:dc:6f:47:92:c0:55:e6:
b3:48:30:0f:9f:24:1a:3b:e4:c0:7d:06:ef:03:d0:2c:1d:24:
f4:99:b0:fc:5f:1d:b9:5d:66:98:9f:3b:8b:c6:cd:0d:26:26:
02:fc:10:17:37:d0:20:21:15:13:b7:ea:8f:49:a5:28:bf:ce:
e0:21:44:d4:b6:40:58:f5:23:51:23:0d:4b:d2:d7:bd:ef:e3:
55:c1:e1:ee:90:7c:0c:e7:8d:2f:33:19:b6:de:b6:b1:5a:e5:
f0:f8:10:64:24:fa:f8:cb:85:fe:1d:aa:11:19:52:47:33:c4:
a3:dd:ad:8a:e3:b8:8b:11:f9:a1:49:33:fa:26:00:47:e0:b2:
7d:95:af:82:be:d6:10:2a:ec:e8:18:9b:7c:99:8a:09:9c:b0:
f9:0b:9d:ab:82:67:36:0c:58:63:d6:aa:94:30:e7:ba:ad:04:
e2:61:9b:20:0f:14:ec:b6:91:8e:56:e9:ff:74:69:cd:dd:3e:
a5:31:56:25:5d:3e:73:ee:36:f7:8a:a5:a9:65:2b:5d:c7:8f:
7b:e9:8f:60:7d:53:f4:c6:3e:06:74:2b:5b:c5:09:fd:7d:bd:
98:1e:6d:dc:49:e9:96:1a:c7:8d:2c:fa:9f:31:d8:53:51:72:
60:ee:ed:a5
-----BEGIN CERTIFICATE-----
MIIF3DCCBMSgAwIBAgISAZNNdPJtmylmbTLn/1hQgXD/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQxMTIxMDY0MjEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTEzN2E0N2U3MmRiYTE2OGZjYTk0ODhhZDg4MWM0MTcyMmE1ZDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsb2/1f8ZDtOmUP9UWgrMPcRBBbTK
+LqDlRauvM5BvIlkfw4tQVU/GKAbPwO6+pj9uTTgv5w4qkcM3QzRp99EMXF0hmx+
XSu98yI/4BAXGzqnDzpFftjqS7rmpcwnzD06NmoOrDtONDdtEingVfn/CSPSpqdy
KzkwMCDlW+CeJF9V8JFfRJYFW61dlyfv2NNRSmfdsd05POFJIm1rz1yhpPeBzHSp
kTqYbCYbwr6EbWbSiWaH8pQH0bNu9buQ69hJDqoowfVDA/vzn/X7yOss7KYGiU21
/+e2cSKhJ6HP4dBzx9mKHOpTrnoxJlKJjkc6/E5fVbDEc6MdXGkPFaxMsQIDAQAB
o4IC6DCCAuQwHQYDVR0OBBYEFHkTekfnLboWj8qUiK2IHEFyKl0aMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvZVJONlItY3R1aGFQeXBTSXJZZ2NRWElxWFJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH9BggrBgEFBQcBBwEB/wSB7TCB6jCB5wQCAAEwgeAwDAME
AKMFBwMEAaMFCAMEAaMFDAMEAKMFEQMEAKMFHgMEAKMFOwMEAKMFRwMEAKMFSQME
AKMFWQMEAKMFXDAMAwQBowVuAwQBowVwAwQAowV5MAwDBAKjBXwDBACjBX4DBAGj
BYADBAGjBYoDBACjBY8DBACjBZIDBACjBZUDBACjBZcDBACjBaADBACjBacDBACj
BbIDBACjBbYDBAGjBbwDBACjBb8DBAGjBcgwDAMEAKMFywMEAKMFzgMEAKMF2gME
AKMF4AMEAKMF5AMEAKMF8QMEAKMF+gMEAKMF/TANBgkqhkiG9w0BAQsFAAOCAQEA
RHXHiiMFqRnVJ1Dcb0eSwFXms0gwD58kGjvkwH0G7wPQLB0k9Jmw/F8duV1mmJ87
i8bNDSYmAvwQFzfQICEVE7fqj0mlKL/O4CFE1LZAWPUjUSMNS9LXve/jVcHh7pB8
DOeNLzMZtt62sVrl8PgQZCT6+MuF/h2qERlSRzPEo92tiuO4ixH5oUkz+iYAR+Cy
fZWvgr7WECrs6BibfJmKCZyw+Qudq4JnNgxYY9aqlDDnuq0E4mGbIA8U7LaRjlbp
/3Rpzd0+pTFWJV0+c+4294qlqWUrXcePe+mPYH1T9MY+BnQrW8UJ/X29mB5t3Enp
lhrHjSz6nzHYU1FyYO7tpQ==
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:21 2024 by rpki-client on console-fra.rpki-client.org