Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iMCpc9BmSS6xO_bU1lvNVbjCls8.roa
File: iMCpc9BmSS6xO_bU1lvNVbjCls8.roa (raw, json)
Hash identifier: XFo6NNKd3q4MT3gD7Tl5xgkgRaJxj9cwGvML0HwD9S0=
Subject key identifier: 88:C0:A9:73:D0:66:49:2E:B1:3B:F6:D4:D6:5B:CD:55:B8:C2:96:CF
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B3447B25E1EFFC184F6BD563022B2D66F
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iMCpc9BmSS6xO_bU1lvNVbjCls8.roa
Signing time: Sun 15 Oct 2023 16:59:55 +0000
ROA not before: Sun 15 Oct 2023 16:59:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.228.0/24 maxlen: 24
163.5.235.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.75.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.98.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.207.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.217.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.220.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.120.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.122.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.155.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:34:47:b2:5e:1e:ff:c1:84:f6:bd:56:30:22:b2:d6:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 15 16:59:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88c0a973d066492eb13bf6d4d65bcd55b8c296cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:97:ab:73:0c:b4:08:9f:6d:19:bc:a9:29:cd:
56:9f:d6:57:38:90:06:23:0f:b7:a7:30:06:89:a2:
18:b8:f1:88:ad:8d:60:3a:79:65:10:bc:7d:c3:15:
cf:e6:21:5d:9b:da:9b:55:a9:ec:7f:6b:8d:cd:1a:
9e:4c:af:94:27:c0:2c:5f:6a:71:d0:42:fe:55:5c:
3f:60:0b:af:2f:5c:2d:f1:c0:20:bf:3f:00:a6:2d:
c0:80:49:42:f0:36:74:1f:75:47:1e:bf:f3:10:d8:
2c:50:06:68:24:3f:ac:6d:e3:0b:e1:c7:53:ff:61:
e6:f5:b7:a4:af:10:a8:50:0a:cc:a1:99:05:cd:7e:
1a:a0:8f:57:19:f5:65:7d:d7:fa:31:9d:83:c8:67:
88:54:3e:ef:c0:70:40:60:85:c7:36:42:09:10:40:
50:87:a5:77:c8:57:d4:7d:52:45:dd:2d:0e:2b:15:
f8:5d:a3:9c:9a:7a:c7:a3:4f:ec:50:0e:6b:f7:88:
6e:e6:f8:2c:de:26:18:4b:f9:4a:16:02:15:f9:44:
54:32:1d:99:7f:5f:52:8c:cb:17:c1:92:70:de:a2:
60:f6:c9:20:47:59:d4:7e:66:e9:e9:82:92:75:50:
a6:b7:40:62:1b:2a:b7:d1:fa:3d:2d:66:aa:5c:d4:
6b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C0:A9:73:D0:66:49:2E:B1:3B:F6:D4:D6:5B:CD:55:B8:C2:96:CF
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iMCpc9BmSS6xO_bU1lvNVbjCls8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.33.0/24
163.5.35.0-163.5.36.255
163.5.62.0/24
163.5.71.0/24
163.5.75.0/24
163.5.79.0/24
163.5.83.0/24
163.5.89.0/24
163.5.94.0/23
163.5.98.0/23
163.5.104.0-163.5.106.255
163.5.110.0-163.5.114.255
163.5.120.0-163.5.122.255
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.141.0-163.5.143.255
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.155.0-163.5.156.255
163.5.160.0-163.5.162.255
163.5.165.0/24
163.5.167.0/24
163.5.170.0-163.5.172.255
163.5.176.0/24
163.5.178.0/23
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.195.0/24
163.5.198.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.207.0/24
163.5.212.0/24
163.5.217.0-163.5.218.255
163.5.220.0/24
163.5.224.0/24
163.5.228.0/24
163.5.235.0/24
163.5.241.0/24
163.5.247.0-163.5.253.255
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
00:3f:b8:15:78:fe:13:b9:a7:7f:6e:ba:44:b4:f8:2e:51:84:
f4:bb:c7:ec:1b:b6:c7:79:69:55:40:8b:2d:25:53:6f:d3:5f:
e0:0c:c0:c6:c7:e9:b5:7a:4e:d7:08:f3:1b:ce:b5:66:e0:31:
60:c6:89:7e:3c:a8:02:a4:30:b0:a3:59:bf:26:bd:ea:a3:d7:
82:e2:17:bc:7b:b9:4e:2f:70:37:14:ef:e2:02:f3:98:7c:df:
99:9b:49:58:6f:52:44:7a:b8:25:8b:40:ba:6e:c6:e6:84:7b:
ed:c1:ed:af:2a:43:08:9e:0d:69:b6:41:6c:16:a0:7a:48:30:
30:e1:9b:a9:c5:7b:e4:12:28:c8:b6:12:55:29:5c:eb:de:a7:
42:85:18:90:9b:bc:b2:09:58:9a:ff:e7:c6:60:b3:96:da:c1:
56:25:62:37:ce:83:d3:69:17:6c:d6:07:7b:7c:72:fc:75:55:
ec:03:b2:0a:ca:65:92:88:90:64:cf:c5:28:7c:f0:ff:63:47:
bf:71:c8:70:b8:90:4c:9b:1b:17:b9:8e:99:54:6e:82:cc:a9:
ca:85:6d:9c:af:7f:31:82:d5:91:a2:76:27:c9:ed:bf:1d:c6:
97:a0:65:b3:c5:8d:0d:d2:02:87:58:7d:9e:04:d9:5e:0e:b3:
c0:53:47:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 16 11:27:34 2023 by rpki-client on console-fra.rpki-client.org