Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iSTJZRIla49dO8S7jJIzZ9cikoQ.roa
File: iSTJZRIla49dO8S7jJIzZ9cikoQ.roa (raw, json)
Hash identifier: wGkIUm7+rPVRW4wYKpTdAobXaAlAs4pvZ+ieXCnd94o=
Subject key identifier: 89:24:C9:65:12:25:6B:8F:5D:3B:C4:BB:8C:92:33:67:D7:22:92:84
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01904AD951976CDB83EDDA8197472C17E535
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iSTJZRIla49dO8S7jJIzZ9cikoQ.roa
Signing time: Mon 24 Jun 2024 15:24:34 +0000
ROA not before: Mon 24 Jun 2024 15:24:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.157.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.199.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.219.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jun 2024 14:38:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:d9:51:97:6c:db:83:ed:da:81:97:47:2c:17:e5:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 24 15:24:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8924c96512256b8f5d3bc4bb8c923367d7229284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:37:68:ad:46:a4:74:34:f8:12:2d:6d:53:e5:
ec:64:a6:39:35:31:ef:0b:b9:2f:7a:4a:03:4d:e8:
f3:71:5d:ad:43:b6:9f:1f:92:81:a8:3f:2e:e7:83:
bb:94:32:17:61:bb:98:19:24:1e:3b:10:f4:9f:f5:
41:6b:b0:2a:ce:e3:5f:20:8b:ae:c5:a5:5d:76:25:
a4:93:e2:14:93:59:18:9d:e6:30:98:45:0f:fb:61:
ad:d8:47:ef:15:75:77:d5:68:38:78:42:ae:24:62:
af:d8:fa:85:8a:26:10:b3:42:3a:7e:60:be:d3:90:
82:bc:50:80:ba:0e:38:66:ea:ca:f5:75:3d:2f:54:
ff:47:c3:82:b1:d4:00:b3:ca:2c:62:03:da:d9:cc:
ad:9d:db:f5:14:fa:10:53:43:2a:a5:c7:17:52:6d:
20:59:1b:d0:37:18:c2:86:9a:23:7f:e4:57:50:9b:
4a:d4:e7:53:d4:a2:61:34:84:46:80:3a:ac:67:8a:
11:47:6c:cc:f2:78:22:1d:3c:1b:6e:e8:9b:12:59:
1f:fb:91:5f:74:4b:32:dc:ff:17:bb:08:e5:05:92:
93:5a:24:68:d5:ae:2c:5a:19:c3:6b:5d:33:56:15:
c5:dc:8b:1f:7a:c9:33:0a:20:e8:7d:ce:4c:e6:93:
2c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:24:C9:65:12:25:6B:8F:5D:3B:C4:BB:8C:92:33:67:D7:22:92:84
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iSTJZRIla49dO8S7jJIzZ9cikoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.71.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.138.0/23
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.157.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.199.0-163.5.201.255
163.5.203.0-163.5.206.255
163.5.218.0/23
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
37:81:98:90:81:2d:29:02:72:31:a2:b0:51:dc:4c:e1:f5:f1:
7d:8a:bd:ba:ef:51:75:28:f4:de:97:24:b3:9a:db:cf:4e:84:
7c:c8:9f:3e:37:93:a9:9b:e6:45:ce:b0:b5:94:e2:c3:56:e8:
52:3c:43:50:3a:09:17:87:0f:2d:09:b8:2f:b4:05:b4:90:19:
46:5c:24:6e:14:c8:57:8f:5d:b2:62:59:3f:76:55:66:ab:ca:
ce:f7:d1:84:c6:3e:8f:2d:e6:c3:e4:13:ae:0b:fe:4d:27:c9:
d4:60:51:d4:b5:63:cb:8d:97:3e:44:6c:0b:95:f3:de:eb:82:
36:40:7b:ac:c3:5b:26:78:ea:09:01:04:f8:e1:44:a7:dd:e0:
eb:19:17:f7:be:0a:f3:75:ab:cb:a7:77:6c:88:ad:45:74:84:
78:9f:ab:6e:8f:45:ae:ee:ed:84:ff:31:63:4f:37:d9:c3:8a:
06:a6:7a:da:99:3c:8e:8a:ea:ab:2a:94:14:2e:2a:3a:9e:0e:
2d:f0:ec:49:04:1d:fc:94:1d:85:d2:88:72:eb:b5:6a:6b:f6:
1a:44:fa:a4:a7:02:61:48:8f:45:d8:40:49:ed:8c:48:b7:9f:
d4:72:8f:3d:b7:1d:d9:2d:89:a1:1d:e2:8b:dc:dc:0d:6d:f0:
c5:6d:db:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 18:22:49 2024 by rpki-client on console-ams.rpki-client.org