Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iuvsDPBvUtjLcqiq2T4_Oiqp41U.roa
File: iuvsDPBvUtjLcqiq2T4_Oiqp41U.roa (raw, json)
Hash identifier: wUFuyzXHHMv21rWooaY3Kgg9gr3RDzqi44rwRuxAWQw=
Subject key identifier: 8A:EB:EC:0C:F0:6F:52:D8:CB:72:A8:AA:D9:3E:3F:3A:2A:A9:E3:55
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0189BB337450915DCAED263A9309F0B6AA7C
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iuvsDPBvUtjLcqiq2T4_Oiqp41U.roa
Signing time: Thu 03 Aug 2023 11:40:58 +0000
ROA not before: Thu 03 Aug 2023 11:40:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 163.5.229.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.88.0/24 maxlen: 24
163.5.90.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.117.0/24 maxlen: 24
163.5.38.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.63.0/24 maxlen: 24
163.5.60.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Aug 2023 09:42:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bb:33:74:50:91:5d:ca:ed:26:3a:93:09:f0:b6:aa:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 3 11:40:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8aebec0cf06f52d8cb72a8aad93e3f3a2aa9e355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:50:be:16:d3:7a:aa:7d:e9:ac:9a:e1:39:9c:
8e:46:17:9c:d5:62:3e:a4:de:56:f2:77:0d:13:bb:
73:af:70:09:72:8c:b5:80:f1:b0:62:e6:01:62:b8:
d0:05:7a:47:02:db:80:1c:c3:fe:6a:2c:e7:a6:fe:
2d:3a:b9:9d:d9:54:1e:da:47:64:5f:db:f6:4c:84:
2a:d1:69:7c:f5:6e:91:be:76:b1:4e:31:12:96:b7:
c0:19:ff:ff:8c:5b:33:31:57:3a:61:6d:6d:6e:9f:
f6:6b:2c:b8:e6:a6:50:df:27:37:8d:75:71:de:76:
d4:92:6e:e1:eb:6e:39:7b:70:3c:98:54:49:a6:aa:
da:e2:71:fa:3a:79:8d:c8:f5:d1:a8:f5:24:f5:99:
7d:55:5b:d2:b6:12:29:38:7c:ab:02:58:f3:7f:80:
b1:22:30:cd:2d:50:a2:5b:38:7b:a0:50:5a:bc:85:
5a:09:68:29:ee:45:63:57:6a:d3:f5:11:ee:02:ca:
ed:87:d8:78:07:9d:e7:b6:cd:3e:86:50:15:8f:66:
26:38:19:34:ba:09:a1:49:50:21:64:68:cc:08:60:
2f:85:2c:2c:f8:6d:02:0b:cc:cb:98:da:c1:6c:43:
38:33:ee:0c:f6:7f:d9:5b:26:76:cb:46:92:84:71:
26:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EB:EC:0C:F0:6F:52:D8:CB:72:A8:AA:D9:3E:3F:3A:2A:A9:E3:55
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iuvsDPBvUtjLcqiq2T4_Oiqp41U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.38.0/23
163.5.60.0/24
163.5.63.0/24
163.5.88.0/24
163.5.90.0/24
163.5.93.0/24
163.5.101.0-163.5.102.255
163.5.108.0/23
163.5.116.0/23
163.5.119.0/24
163.5.130.0/23
163.5.133.0-163.5.134.255
163.5.147.0/24
163.5.171.0/24
163.5.174.0/24
163.5.189.0/24
163.5.192.0/24
163.5.225.0/24
163.5.228.0/23
163.5.240.0/24
163.5.246.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:0b:0e:45:0d:6b:74:d6:ae:3b:fc:a2:1d:fa:f0:58:f1:7a:
96:53:ff:73:14:68:d2:03:a1:ee:e5:0e:fe:c9:ac:df:a2:77:
28:08:3f:f9:ac:3a:a8:39:9d:07:91:40:56:01:39:dc:6c:9d:
ac:5c:1b:b5:f1:15:08:cf:bb:bc:50:be:33:02:b3:93:c4:1c:
8b:33:49:9b:07:c4:ea:76:d3:a4:80:90:50:85:3d:9e:fe:77:
95:a4:8b:34:d6:a0:8c:4c:77:a9:66:a0:fb:ec:45:5e:78:8d:
0d:86:b7:76:52:19:de:e5:f4:e2:84:d1:1b:ba:26:59:d5:38:
21:03:63:6e:2e:d6:ee:c0:19:1a:b9:9e:f3:79:f7:36:9e:0f:
7e:0d:86:cd:4f:eb:ac:07:52:7b:a3:b2:31:f2:37:ed:fc:f4:
24:2d:7f:70:dc:d5:0b:2b:50:f0:f3:56:44:59:2e:10:fe:04:
60:47:6e:53:9f:c1:62:71:b9:86:84:53:98:9e:2b:67:ab:75:
e8:79:57:c0:22:ae:01:2f:e7:30:08:62:3e:de:c7:30:85:d2:
a5:b9:57:0d:ce:5e:60:21:66:47:21:91:8c:29:d1:70:f4:1f:
b3:52:76:74:ba:75:bd:16:89:a5:f0:ad:d9:cc:6c:00:70:db:
08:59:89:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:07 2024 by rpki-client on console-fra.rpki-client.org