Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/kGOLlQj29ZGUcw6Wz2Ceya5dlcw.roa
File: kGOLlQj29ZGUcw6Wz2Ceya5dlcw.roa (raw, json)
Hash identifier: gWPuHXkFLZn1FPKnbUtsNQaV81aL/I5BQdzxHnmMAF4=
Subject key identifier: 90:63:8B:95:08:F6:F5:91:94:73:0E:96:CF:60:9E:C9:AE:5D:95:CC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0192142C6DF8FD710175C17E463365989336
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/kGOLlQj29ZGUcw6Wz2Ceya5dlcw.roa
Signing time: Sat 21 Sep 2024 10:41:48 +0000
ROA not before: Sat 21 Sep 2024 10:41:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 163.5.62.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.193.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
163.5.213.0/24 maxlen: 24
163.5.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Sep 2024 17:07:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:14:2c:6d:f8:fd:71:01:75:c1:7e:46:33:65:98:93:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 21 10:41:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90638b9508f6f59194730e96cf609ec9ae5d95cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e7:be:08:d0:22:94:4a:90:8c:85:57:a8:c6:
e4:1c:2e:3b:ba:d8:eb:b6:b6:ac:3f:9a:9d:b4:0b:
59:60:09:ee:7d:69:2f:dd:0b:51:99:57:35:68:bd:
70:aa:8a:65:fa:03:62:9f:38:d7:e2:b3:d7:11:ef:
fe:63:bc:00:69:90:dd:8a:68:50:b0:68:ce:05:89:
8a:7d:ee:80:fb:04:6a:fe:e3:fc:09:d4:60:1a:f4:
8b:13:d0:f5:a4:79:79:5d:6e:0f:62:db:5d:a1:a5:
02:58:0d:9e:dd:71:ee:b5:86:77:8d:64:5c:58:0b:
a0:dd:c8:ac:c2:33:ec:68:5d:7f:72:aa:0a:98:00:
2c:f1:03:58:93:75:47:29:28:db:7c:c1:d0:14:de:
9b:2a:99:9f:fb:1a:f2:fb:02:9f:9f:c5:3d:69:51:
1c:60:94:d7:c0:23:1a:c7:4e:eb:17:8b:cf:51:2f:
44:fa:dd:93:f9:47:0c:36:ae:af:8a:fc:de:32:d1:
22:2b:da:6f:15:8b:bf:25:df:a8:dd:cd:88:dd:e5:
de:06:16:4c:0a:5f:88:40:ba:0d:b7:94:fe:56:6f:
5a:40:88:8d:a0:a0:eb:5d:a2:15:09:58:9b:a2:a8:
61:0b:05:3b:c3:2b:c3:4a:3c:92:dd:3f:b2:55:85:
8e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:63:8B:95:08:F6:F5:91:94:73:0E:96:CF:60:9E:C9:AE:5D:95:CC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/kGOLlQj29ZGUcw6Wz2Ceya5dlcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.62.0/24
163.5.192.0/23
163.5.195.0/24
163.5.213.0-163.5.214.255
Signature Algorithm: sha256WithRSAEncryption
9f:b4:ae:3f:7c:5c:28:c8:49:5f:f8:de:fa:e8:6b:ff:f0:46:
2a:c9:1c:1c:62:a4:ca:5f:05:6a:e5:af:c4:60:92:5c:87:24:
21:8d:81:15:c6:9f:81:57:73:9f:f7:36:16:8d:3c:d5:06:ee:
9e:11:9b:1d:a1:36:1b:35:02:9e:7f:85:0c:ce:2c:e6:87:bb:
a5:d9:1f:b5:91:25:21:4b:12:19:5f:76:f8:54:ce:3e:14:7b:
a9:ae:1c:b6:d2:8c:60:6a:d2:9e:3b:7b:bf:ad:fc:09:79:f0:
14:bc:11:bc:b4:e9:c8:2c:5d:f9:10:22:bf:7a:2f:43:76:d7:
17:b6:a4:a5:f7:a2:4a:c6:5b:65:a1:df:ca:e3:b9:3e:0c:64:
17:3c:35:23:2e:14:0b:df:e1:65:1c:49:89:60:fb:1d:e5:11:
e0:79:3f:e0:f1:c8:0b:2a:7b:16:a3:bd:6e:aa:d3:8b:58:fb:
91:b6:80:1c:82:d0:62:96:f4:be:13:6f:69:42:fc:ed:c7:47:
42:28:46:88:57:89:bb:31:b7:ad:d4:b9:75:08:78:e8:83:65:
ac:08:4f:ef:e6:2d:89:10:17:17:2c:54:87:66:99:24:12:95:
1e:67:99:28:6c:93:64:a0:4d:01:cc:8a:fd:53:85:cc:8e:94:
31:58:37:a9
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAZIULG34/XEBdcF+RjNlmJM2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwOTIxMTA0MTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDYzOGI5NTA4ZjZmNTkxOTQ3MzBlOTZjZjYwOWVjOWFlNWQ5NWNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzue+CNAilEqQjIVXqMbkHC47utjr
trasP5qdtAtZYAnufWkv3QtRmVc1aL1wqopl+gNinzjX4rPXEe/+Y7wAaZDdimhQ
sGjOBYmKfe6A+wRq/uP8CdRgGvSLE9D1pHl5XW4PYttdoaUCWA2e3XHutYZ3jWRc
WAug3ciswjPsaF1/cqoKmAAs8QNYk3VHKSjbfMHQFN6bKpmf+xry+wKfn8U9aVEc
YJTXwCMax07rF4vPUS9E+t2T+UcMNq6vivzeMtEiK9pvFYu/Jd+o3c2I3eXeBhZM
Cl+IQLoNt5T+Vm9aQIiNoKDrXaIVCViboqhhCwU7wyvDSjyS3T+yVYWOywIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFJBji5UI9vWRlHMOls9gnsmuXZXMMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEva0dPTGxRajI5WkdVY3c2V3oyQ2V5YTVkbGN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAowU+AwQB
owXAAwQAowXDMAwDBACjBdUDBACjBdYwDQYJKoZIhvcNAQELBQADggEBAJ+0rj98
XCjISV/43vroa//wRirJHBxipMpfBWrlr8RgklyHJCGNgRXGn4FXc5/3NhaNPNUG
7p4Rmx2hNhs1Ap5/hQzOLOaHu6XZH7WRJSFLEhlfdvhUzj4Ue6muHLbSjGBq0p47
e7+t/Al58BS8Eby06cgsXfkQIr96L0N21xe2pKX3okrGW2Wh38rjuT4MZBc8NSMu
FAvf4WUcSYlg+x3lEeB5P+DxyAsqexajvW6q04tY+5G2gByC0GKW9L4Tb2lC/O3H
R0IoRohXibsxt63UuXUIeOiDZawIT+/mLYkQFxcsVIdmmSQSlR5nmShsk2SgTQHM
iv1ThcyOlDFYN6k=
-----END CERTIFICATE-----
Generated at Thu Sep 26 19:18:10 2024 by rpki-client on console-ams.rpki-client.org