Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mQFj21mcNOwM2WgmCGS_-QrhvkU.roa
File: mQFj21mcNOwM2WgmCGS_-QrhvkU.roa (raw, json)
Hash identifier: P5cfKBD8c03fPb3vl4V7QOD2wGqN/steTpqgz6zK0B4=
Subject key identifier: 99:01:63:DB:59:9C:34:EC:0C:D9:68:26:08:64:BF:F9:0A:E1:BE:45
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B5E2F3E2AB167FD878D337CAA8EA0882C
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mQFj21mcNOwM2WgmCGS_-QrhvkU.roa
Signing time: Mon 23 Oct 2023 20:17:16 +0000
ROA not before: Mon 23 Oct 2023 20:17:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.228.0/24 maxlen: 24
163.5.235.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.66.0/24 maxlen: 24
163.5.67.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.76.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.86.0/24 maxlen: 24
163.5.98.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.64.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.207.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.217.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.222.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.120.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.122.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 14:34:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5e:2f:3e:2a:b1:67:fd:87:8d:33:7c:aa:8e:a0:88:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 23 20:17:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=990163db599c34ec0cd968260864bff90ae1be45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:51:69:a4:3a:3c:68:30:21:8f:22:11:cf:4a:
0a:ca:38:e0:87:02:06:9b:0f:d7:8b:4c:de:5f:07:
4a:49:cb:57:e7:68:71:1a:cd:a7:75:1f:1d:73:29:
95:e5:18:f1:49:13:f3:8b:da:56:58:59:78:ab:ad:
50:f1:5c:ac:e3:12:bb:4e:5e:31:ec:0d:52:b8:75:
4f:f7:2c:a5:55:49:d2:62:57:81:e8:ab:cb:b9:d6:
85:0f:a4:5b:b4:6b:c0:07:43:12:7b:12:24:63:f5:
42:14:70:b8:34:32:54:96:43:63:a8:b6:57:2c:84:
e5:41:29:fc:81:cc:d6:39:9a:75:95:de:4a:d0:0c:
b8:4d:b9:bf:31:60:f3:c1:af:9d:e6:8c:a8:09:7f:
88:30:98:5a:c2:88:1e:75:47:2b:1d:23:bb:11:10:
1d:fd:5a:05:df:07:9f:3a:4e:23:d0:51:70:bc:7c:
00:65:56:f0:e4:8e:6e:ce:aa:fe:29:80:8e:cc:6c:
11:bf:d6:76:82:91:44:97:85:fb:77:f7:7c:bf:fd:
62:75:b1:b4:63:b2:f4:92:2c:d6:56:f4:d4:c7:31:
ef:4f:9a:2d:9a:76:6a:64:5f:49:f2:92:94:9c:47:
ec:e0:c2:55:ed:b7:f9:a0:32:a8:bd:78:8f:e0:37:
e8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:01:63:DB:59:9C:34:EC:0C:D9:68:26:08:64:BF:F9:0A:E1:BE:45
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mQFj21mcNOwM2WgmCGS_-QrhvkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.33.0/24
163.5.35.0-163.5.36.255
163.5.62.0/24
163.5.64.0/24
163.5.66.0/23
163.5.71.0/24
163.5.76.0/24
163.5.79.0/24
163.5.83.0/24
163.5.86.0/24
163.5.89.0/24
163.5.94.0/23
163.5.98.0/23
163.5.104.0-163.5.106.255
163.5.110.0-163.5.114.255
163.5.120.0-163.5.122.255
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.141.0-163.5.143.255
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.156.0/24
163.5.160.0-163.5.162.255
163.5.165.0/24
163.5.167.0/24
163.5.170.0/24
163.5.172.0/24
163.5.176.0/24
163.5.178.0/24
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.198.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.207.0/24
163.5.212.0/24
163.5.217.0-163.5.218.255
163.5.222.0/24
163.5.224.0/24
163.5.228.0/24
163.5.235.0/24
163.5.241.0/24
163.5.247.0/24
163.5.249.0-163.5.253.255
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
88:00:e5:09:f0:ce:c2:90:81:e6:46:3f:8e:f5:54:c5:b8:c8:
b5:88:13:13:82:5f:77:8e:3b:20:fc:87:0a:56:b4:0f:93:bc:
fe:3a:6e:7d:27:16:d6:69:a9:c1:f8:88:7e:24:8a:90:8d:5e:
28:53:6f:9a:93:12:27:bf:c8:87:3c:69:a3:b5:43:3c:c5:81:
13:43:57:25:e1:e6:7a:cb:b4:7f:02:72:89:84:84:01:d2:fe:
5b:8a:29:56:a8:d3:ca:86:fd:d1:48:f5:4d:ed:90:d0:8d:5c:
83:e2:09:ac:ca:5e:7a:77:c4:43:1f:bd:4a:83:b7:2f:ee:31:
fd:b9:d8:fe:b7:0a:0b:96:4e:9e:c0:88:b5:45:35:e1:0d:d0:
fd:35:68:e5:e6:a6:97:7a:2d:0a:33:1e:24:62:06:b3:f9:58:
6d:fc:6a:55:e8:ff:ce:52:9b:56:d5:97:9b:4d:85:62:9c:a2:
87:31:40:45:14:18:53:83:a1:13:5f:f1:52:dc:2e:66:17:42:
77:45:86:2e:d5:22:3a:37:2a:12:7d:f5:d1:75:bf:b5:b9:a1:
83:2b:93:40:2b:72:c3:53:a0:0f:4e:e6:bd:82:71:8c:27:63:
b2:c7:9d:36:17:22:6b:39:d3:23:c3:ed:24:cc:bb:d2:f6:35:
3d:5b:a2:75
-----BEGIN CERTIFICATE-----
MIIGgzCCBWugAwIBAgISAYteLz4qsWf9h40zfKqOoIgsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjMxMDIzMjAxNzE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTAxNjNkYjU5OWMzNGVjMGNkOTY4MjYwODY0YmZmOTBhZTFiZTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVFppDo8aDAhjyIRz0oKyjjghwIG
mw/Xi0zeXwdKSctX52hxGs2ndR8dcymV5RjxSRPzi9pWWFl4q61Q8Vys4xK7Tl4x
7A1SuHVP9yylVUnSYleB6KvLudaFD6RbtGvAB0MSexIkY/VCFHC4NDJUlkNjqLZX
LITlQSn8gczWOZp1ld5K0Ay4Tbm/MWDzwa+d5oyoCX+IMJhawogedUcrHSO7ERAd
/VoF3wefOk4j0FFwvHwAZVbw5I5uzqr+KYCOzGwRv9Z2gpFEl4X7d/d8v/1idbG0
Y7L0kizWVvTUxzHvT5otmnZqZF9J8pKUnEfs4MJV7bf5oDKovXiP4DfoUQIDAQAB
o4IDjzCCA4swHQYDVR0OBBYEFJkBY9tZnDTsDNloJghkv/kK4b5FMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvbVFGajIxbWNOT3dNMldnbUNHU18tUXJodmtVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBowYIKwYBBQUHAQcBAf8EggGSMIIBjjCCAYoEAgABMIIB
ggMEAKMFHgMEAKMFITAMAwQAowUjAwQAowUkAwQAowU+AwQAowVAAwQBowVCAwQA
owVHAwQAowVMAwQAowVPAwQAowVTAwQAowVWAwQAowVZAwQBowVeAwQBowViMAwD
BAOjBWgDBACjBWowDAMEAaMFbgMEAKMFcjAMAwQDowV4AwQAowV6AwQAowV+AwQA
owWAAwQAowWGAwQBowWKMAwDBACjBY0DBASjBYADBACjBZIDBACjBZQDBAGjBZYD
BACjBZwwDAMEBaMFoAMEAKMFogMEAKMFpQMEAKMFpwMEAKMFqgMEAKMFrAMEAKMF
sAMEAKMFsjAMAwQAowW1AwQAowW2AwQAowW6AwQBowW8AwQAowW/AwQAowXGAwQA
owXJMAwDBACjBcsDBAGjBcwDBACjBc8DBACjBdQwDAMEAKMF2QMEAKMF2gMEAKMF
3gMEAKMF4AMEAKMF5AMEAKMF6wMEAKMF8QMEAKMF9zAMAwQAowX5AwQBowX8AwQA
owX/MA0GCSqGSIb3DQEBCwUAA4IBAQCIAOUJ8M7CkIHmRj+O9VTFuMi1iBMTgl93
jjsg/IcKVrQPk7z+Om59JxbWaanB+Ih+JIqQjV4oU2+akxInv8iHPGmjtUM8xYET
Q1cl4eZ6y7R/AnKJhIQB0v5biilWqNPKhv3RSPVN7ZDQjVyD4gmsyl56d8RDH71K
g7cv7jH9udj+twoLlk6ewIi1RTXhDdD9NWjl5qaXei0KMx4kYgaz+Vht/GpV6P/O
UptW1ZebTYVinKKHMUBFFBhTg6ETX/FS3C5mF0J3RYYu1SI6NyoSffXRdb+1uaGD
K5NAK3LDU6APTua9gnGMJ2Oyx502FyJrOdMjw+0kzLvS9jU9W6J1
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:07 2024 by rpki-client on console-fra.rpki-client.org