Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gGQyZWCpgcENWuXcqKszKuP9TiY.roa
File: gGQyZWCpgcENWuXcqKszKuP9TiY.roa (raw, json)
Hash identifier: 4tCnHYhlqq2yuTwXxIOQkitqRkWYMK2NQMsRteUAeYY=
Subject key identifier: 80:64:32:65:60:A9:81:C1:0D:5A:E5:DC:A8:AB:33:2A:E3:FD:4E:26
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01919056F19D20784D581B98FE67C951A5AA
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gGQyZWCpgcENWuXcqKszKuP9TiY.roa
Signing time: Mon 26 Aug 2024 20:18:22 +0000
ROA not before: Mon 26 Aug 2024 20:18:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Aug 2024 17:08:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:90:56:f1:9d:20:78:4d:58:1b:98:fe:67:c9:51:a5:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 26 20:18:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8064326560a981c10d5ae5dca8ab332ae3fd4e26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0f:05:5b:64:78:87:fc:04:9b:5a:14:8a:2b:
8f:ab:2e:18:70:55:76:ca:6a:8e:95:fe:df:bd:4e:
45:34:3b:5e:49:21:e2:6e:cf:06:26:d1:49:22:5d:
1d:4b:cc:3e:32:d6:b4:71:6c:17:74:0a:0c:1d:0d:
7d:1f:be:6b:d2:4f:91:10:b0:d4:4e:62:86:d8:d0:
b1:3e:00:f4:d8:b5:b3:e7:62:c7:46:fd:3c:ba:fd:
e1:ec:82:3a:3e:36:ae:76:eb:f1:70:06:23:71:f4:
4f:60:ff:57:78:8b:26:1d:93:29:be:32:af:54:f7:
88:6b:99:ad:1f:ec:75:53:75:c8:92:c2:68:4f:d9:
d0:14:11:4a:a5:18:58:14:1e:85:03:db:56:0f:c3:
2e:5a:f6:2b:b5:30:9d:c3:9b:e7:45:fe:e1:2e:c0:
4e:28:dc:37:e7:bd:ff:5e:8f:98:b1:d0:1c:f2:d9:
34:c0:39:a0:22:74:1d:9f:51:9f:54:8e:2a:7c:f2:
77:43:12:b0:ff:f8:2f:ed:7a:78:2d:4e:a3:5e:c1:
47:f0:0e:7b:15:66:47:4d:96:77:c7:d1:56:45:ac:
8c:83:4d:f3:eb:83:39:58:55:0e:cd:fd:8b:3d:7c:
57:95:ef:60:b9:96:7d:35:45:0c:c2:80:8d:2a:65:
c3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:64:32:65:60:A9:81:C1:0D:5A:E5:DC:A8:AB:33:2A:E3:FD:4E:26
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gGQyZWCpgcENWuXcqKszKuP9TiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.51.0/24
163.5.59.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.158.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
17:02:fb:41:2e:49:7b:48:56:e5:71:7f:39:80:3a:60:5b:eb:
6a:da:f6:b5:b6:ff:c8:68:48:94:91:da:89:00:d9:c3:7c:13:
2c:97:7d:75:6a:ad:12:12:dc:a5:29:9d:de:21:34:ca:19:27:
a2:2c:31:21:d9:13:af:17:d9:3b:ee:8b:cb:c0:96:36:e9:ac:
52:ed:ff:84:49:ee:60:52:bf:cb:d6:d4:db:7f:ef:96:a4:59:
ad:d8:65:da:77:7e:41:82:21:07:c9:0a:c2:17:65:7a:94:00:
af:f7:62:30:14:9d:d9:43:f5:ad:46:0a:0d:88:8f:98:77:0b:
1f:13:fe:27:27:1e:7d:7a:80:21:36:af:0c:19:94:9a:63:b0:
50:c8:3c:e4:1a:fd:5c:33:93:89:fa:6d:24:c0:59:01:5f:6b:
2c:d1:4f:65:5d:68:02:15:26:6a:b4:67:38:f7:2b:28:80:e8:
64:1d:bc:85:46:b1:c3:33:4d:fa:c0:b6:b9:8d:13:0b:aa:05:
a6:20:87:9f:4d:51:07:71:2f:77:69:25:79:f7:23:7c:74:59:
71:69:cc:ef:a6:f8:c6:70:68:66:56:e8:54:18:58:a2:8c:78:
4c:7b:57:c4:f0:7e:4b:61:3f:57:88:bc:78:12:51:bf:2a:35:
0f:3a:05:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 27 20:06:09 2024 by rpki-client on console-fra.rpki-client.org