Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gbWRpBamxNPjaYYqAVIAgtuU3Ps.roa
File: gbWRpBamxNPjaYYqAVIAgtuU3Ps.roa (raw, json)
Hash identifier: RHUpBelN/3rws/dOuibHJcnRPz9QwQkencdipxdQ40U=
Subject key identifier: 81:B5:91:A4:16:A6:C4:D3:E3:69:86:2A:01:52:00:82:DB:94:DC:FB
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018D98D6444D8AF7C3CAE7851FCABEBD2E10
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gbWRpBamxNPjaYYqAVIAgtuU3Ps.roa
Signing time: Sun 11 Feb 2024 15:43:15 +0000
ROA not before: Sun 11 Feb 2024 15:43:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.144.0/24 maxlen: 24
163.5.145.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.219.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 13:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:98:d6:44:4d:8a:f7:c3:ca:e7:85:1f:ca:be:bd:2e:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 11 15:43:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81b591a416a6c4d3e369862a01520082db94dcfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:be:dc:3e:ac:0e:ad:e3:fd:e1:f3:de:8f:e2:
e0:ba:17:aa:6b:e6:08:4d:a6:90:63:0d:8f:22:2b:
2f:96:b1:93:94:1e:9a:f0:70:56:8f:f8:76:59:f2:
f5:4e:0d:68:64:85:0f:a3:e6:c1:63:f2:f4:2f:84:
33:83:08:57:b6:f6:a2:76:b7:a1:90:67:39:dd:e7:
b6:39:65:d3:3e:57:c2:2d:92:83:fd:df:23:d0:94:
5e:90:fb:cc:db:35:b5:ef:58:88:98:a5:1e:02:a8:
7a:ad:e2:f6:1e:3f:bf:8c:18:2d:e0:21:b7:c9:a0:
f1:41:de:ae:3d:65:59:11:2d:bf:8c:88:ec:16:77:
3b:ca:d0:bb:67:5c:30:4e:88:b0:c6:fa:cf:5f:c4:
01:c9:ce:2a:d0:f6:53:4b:7d:47:78:cc:81:b1:61:
f9:4c:4a:ea:d4:b0:a9:f5:ad:5a:eb:e6:fe:4c:e9:
dc:ba:1b:ee:28:9d:a6:c2:55:59:b4:55:c2:3b:92:
37:5c:bc:aa:49:fb:f9:6d:b0:f5:95:51:f0:38:da:
19:08:b8:86:6e:3f:e9:18:eb:5a:13:5d:5f:18:1d:
cc:40:20:bc:53:46:0d:7b:26:f1:30:48:c0:ee:18:
f8:74:33:1a:81:e0:d3:c9:05:a8:11:bc:3e:87:fb:
59:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B5:91:A4:16:A6:C4:D3:E3:69:86:2A:01:52:00:82:DB:94:DC:FB
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gbWRpBamxNPjaYYqAVIAgtuU3Ps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.79.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.139.0/24
163.5.143.0-163.5.146.255
163.5.148.0/24
163.5.150.0/23
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.212.0/24
163.5.218.0/23
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.248.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
49:05:d3:c4:d2:0a:9c:4d:2a:c0:ca:a6:3e:0a:91:ff:be:cc:
b0:9d:95:64:48:d3:cf:f4:6d:fd:83:1a:fa:77:92:9d:7f:5b:
53:71:fe:e2:71:11:18:2d:e8:86:da:c4:12:41:f7:20:40:31:
0f:88:c2:e8:f9:fd:64:bc:f5:3b:17:b0:34:23:f8:89:88:81:
0c:99:7a:e4:d0:f1:14:5f:bb:3f:48:1b:8d:dd:11:76:bd:38:
2d:72:60:30:71:49:f7:76:6c:c9:92:5e:cc:37:6c:fa:a4:b3:
56:1e:b4:8b:e4:f2:39:5c:c3:59:97:6f:16:ab:1d:3f:17:f0:
9a:a0:7b:11:22:67:d0:f1:64:74:65:dc:ba:f8:f6:25:49:de:
6d:fa:7c:2b:83:08:17:ef:c8:ed:ab:52:31:af:af:eb:60:93:
4a:a7:85:9b:a7:07:4b:f6:1c:1a:a1:5a:e8:8c:56:34:76:15:
80:c1:35:ad:32:fe:0a:96:e4:9e:fb:d6:c5:ce:e2:e2:34:73:
da:b8:83:7a:73:48:5d:f3:20:ae:e6:a3:06:50:30:7a:60:e0:
b4:12:f2:71:5f:c7:52:29:ec:f1:e9:5f:c0:09:d1:7f:5d:c5:
c0:c3:70:26:dc:0e:86:73:ee:3b:f0:97:38:5d:ed:eb:46:50:
0f:c1:ba:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 12 18:07:07 2024 by rpki-client on console-fra.rpki-client.org