Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ekulmKYG6smzDHvDcErCQG8HMOs.roa
File: ekulmKYG6smzDHvDcErCQG8HMOs.roa (raw, json)
Hash identifier: dXkhEas4KwfiDmqNPgsejsqr/tLFdCuNNYWhzNpXRgc=
Subject key identifier: 7A:4B:A5:98:A6:06:EA:C9:B3:0C:7B:C3:70:4A:C2:40:6F:07:30:EB
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B86DA9E098ED84DAC52C035E1BC938647
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ekulmKYG6smzDHvDcErCQG8HMOs.roa
Signing time: Tue 31 Oct 2023 17:49:16 +0000
ROA not before: Tue 31 Oct 2023 17:49:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.228.0/24 maxlen: 24
163.5.235.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.76.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:86:da:9e:09:8e:d8:4d:ac:52:c0:35:e1:bc:93:86:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 31 17:49:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a4ba598a606eac9b30c7bc3704ac2406f0730eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:71:a1:47:93:ed:20:bb:ac:96:7b:a5:d7:50:
60:6c:2f:2d:80:92:b4:c8:e8:a8:ef:85:a9:35:b7:
79:c3:a1:46:fd:fb:28:ab:01:9a:07:41:c5:c7:e9:
59:b7:72:74:a0:95:84:98:fa:39:4a:42:ea:40:bb:
f5:fd:35:c1:ed:4f:86:bc:7b:21:7a:b5:a6:be:0f:
4f:39:90:94:9b:f0:f7:e0:0a:c1:c7:db:c9:0b:38:
cb:87:b8:af:18:3f:df:b6:53:b1:12:e3:fe:a8:ff:
0b:32:70:8b:14:1e:ec:3d:8a:59:e0:76:83:36:88:
16:9c:b4:bf:7a:27:12:93:72:41:1e:1c:23:1d:b8:
39:ba:6c:54:b4:cd:99:ea:8d:ca:84:cf:d2:fa:b6:
3c:02:02:a3:34:66:6f:e7:fb:d5:b7:00:0b:04:77:
1c:2c:1d:f4:b6:19:5f:29:93:a6:4d:2a:43:be:7b:
24:2f:af:f7:9a:68:ae:05:7d:55:0a:27:9d:c0:0b:
83:2c:80:a2:ad:eb:ad:70:b2:20:7a:fa:c0:08:c8:
7c:b2:5d:46:d7:e1:91:dd:a7:be:64:8b:5b:b0:51:
b2:1c:e2:cf:49:39:fe:9e:5c:df:76:1d:3b:8d:33:
11:5b:95:54:59:0e:66:bb:9a:ea:50:76:64:62:0e:
02:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:4B:A5:98:A6:06:EA:C9:B3:0C:7B:C3:70:4A:C2:40:6F:07:30:EB
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ekulmKYG6smzDHvDcErCQG8HMOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.35.0-163.5.36.255
163.5.62.0/24
163.5.76.0/24
163.5.79.0/24
163.5.83.0/24
163.5.89.0/24
163.5.94.0/23
163.5.99.0/24
163.5.104.0-163.5.106.255
163.5.110.0-163.5.114.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.141.0-163.5.143.255
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.156.0/24
163.5.160.0/23
163.5.165.0/24
163.5.167.0/24
163.5.170.0/24
163.5.172.0/24
163.5.176.0/24
163.5.178.0/24
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.235.0/24
163.5.241.0/24
163.5.250.0-163.5.253.255
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
55:8e:31:27:f2:13:d9:0a:b9:89:76:6c:57:d2:d2:10:1e:95:
3e:89:e1:ee:db:04:d1:1b:e8:a9:a2:ce:02:74:bb:9e:ec:2e:
36:1c:c7:0d:3f:63:66:52:8b:9f:ea:8f:b9:14:70:dc:3d:85:
f9:7f:1d:7e:9b:46:08:5f:52:ba:e0:d1:2b:02:0a:1d:31:7f:
7e:85:5c:57:91:a9:e4:96:c2:91:23:26:0e:bf:ca:6a:a4:9f:
e8:96:e2:7b:4d:90:32:90:22:7b:82:fa:0a:a7:70:da:80:8a:
01:92:c8:e7:1b:b0:f2:f9:44:c9:a4:69:3d:2a:24:e3:2e:8c:
0a:58:be:38:41:cd:4e:63:b7:96:02:fd:1c:56:30:3a:b1:8b:
e2:f4:94:09:07:94:e6:a9:ac:6d:d4:7f:48:a3:cd:c7:a8:fc:
e2:b3:e6:cf:97:3b:92:5a:1f:fb:f2:1d:11:1d:ea:b2:5f:5c:
0d:db:72:6d:d9:01:d5:4a:52:b6:d5:20:06:0b:08:db:ae:7e:
9c:30:2b:7b:af:b1:89:f3:c9:0e:c1:bb:b7:16:2c:ad:02:2d:
68:61:f6:96:13:39:b4:da:a3:f6:4d:3e:de:35:77:48:4e:f7:
72:a1:95:71:b3:d6:d1:b6:4c:7a:0c:ed:62:c8:cf:93:45:dc:
e2:ef:f3:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 3 20:32:01 2023 by rpki-client on console-ams.rpki-client.org