Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mT0CQPUUrDfNAYN6q0Spd7wgvu0.roa
File: mT0CQPUUrDfNAYN6q0Spd7wgvu0.roa (raw, json)
Hash identifier: OhahwuSX1wMUyoIjDJFdf4J/yamHds9wvRM5O9K4cYk=
Subject key identifier: 99:3D:02:40:F5:14:AC:37:CD:01:83:7A:AB:44:A9:77:BC:20:BE:ED
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01882E3AEF0BB8AF87B8E9BD579EF5C264F5
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mT0CQPUUrDfNAYN6q0Spd7wgvu0.roa
Signing time: Thu 18 May 2023 09:39:54 +0000
ROA not before: Thu 18 May 2023 09:39:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 163.5.71.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.229.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.238.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.60.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.183.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2e:3a:ef:0b:b8:af:87:b8:e9:bd:57:9e:f5:c2:64:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: May 18 09:39:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=993d0240f514ac37cd01837aab44a977bc20beed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6d:36:9f:89:b0:68:b1:b1:6e:a4:cd:4d:31:
ea:7f:1a:13:6d:b6:d3:66:94:fe:b7:03:2f:5e:ee:
f0:9b:9d:5e:96:35:7e:9d:13:c7:59:aa:83:90:f3:
33:fb:31:a0:b7:d5:d4:c8:ec:32:7a:2a:6c:c1:2a:
86:8c:94:57:17:26:13:80:bb:9e:28:e3:32:96:e3:
45:89:ac:1b:86:56:c0:e6:b2:f9:c6:54:f4:04:5a:
b0:b2:ea:3d:c9:4e:58:24:06:21:6b:95:c9:8f:dd:
0d:01:a6:6a:9e:1a:69:05:79:43:4f:19:55:e7:d9:
a9:cc:5a:ee:e8:b1:ee:c9:95:23:5f:a2:b7:a2:99:
35:07:8b:7d:0f:b6:87:66:75:28:b5:cc:a6:6a:c9:
85:c8:a6:8f:8b:a7:41:83:b9:fa:92:ee:c4:dc:b1:
55:06:9d:d6:0d:1d:08:7c:a0:c5:7f:20:f7:a4:a2:
e4:b6:24:14:7e:f3:24:f1:bc:ac:b7:01:bf:fd:fe:
c6:2a:69:1b:d5:8d:e8:a4:d2:18:5b:bb:35:48:fd:
b6:68:ad:26:65:00:bb:dd:b4:44:6c:af:5c:b8:4e:
2a:8b:3c:7e:59:21:3b:29:4a:3f:f1:99:5d:14:da:
69:5c:bc:89:28:1e:65:5a:e5:9d:7a:ca:1f:22:c3:
dc:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3D:02:40:F5:14:AC:37:CD:01:83:7A:AB:44:A9:77:BC:20:BE:ED
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mT0CQPUUrDfNAYN6q0Spd7wgvu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.39.0/24
163.5.60.0/24
163.5.71.0/24
163.5.93.0/24
163.5.101.0-163.5.102.255
163.5.108.0/24
163.5.116.0/24
163.5.131.0/24
163.5.134.0/24
163.5.174.0/24
163.5.183.0/24
163.5.189.0/24
163.5.192.0/24
163.5.225.0/24
163.5.228.0/23
163.5.238.0/24
163.5.246.0/24
Signature Algorithm: sha256WithRSAEncryption
74:60:96:69:18:5f:ad:46:90:0e:f8:57:33:2c:08:5f:30:9d:
8e:4c:dc:5d:ec:43:e1:77:07:48:f5:7a:1d:90:14:03:f3:55:
e2:83:90:50:6d:ce:7f:90:a2:e4:62:b8:a4:40:33:bf:31:10:
27:07:d3:09:80:14:3b:bb:93:cd:74:95:be:5a:bc:2e:42:ba:
e8:50:ab:6f:94:be:1d:8f:32:61:94:c9:6e:09:76:0b:d7:3b:
44:93:f1:40:62:f4:c2:3d:6e:25:e2:4b:05:fb:ce:25:05:9d:
7f:7e:d2:91:0d:4e:a4:97:b3:6e:5a:f1:d6:20:b4:76:34:49:
02:be:f9:ed:07:ba:4d:95:97:ee:83:10:94:51:81:5b:48:46:
0d:a9:8c:47:b0:b2:f0:1c:0c:a3:4d:76:f4:2b:b7:0b:da:f8:
b5:35:c4:3f:b3:aa:48:ff:65:7f:9c:d0:54:82:1f:66:49:dd:
f7:7e:cd:eb:f5:aa:f1:37:9c:c4:5f:42:38:53:b6:60:70:9a:
32:dc:a8:60:ca:6f:fe:ac:92:f4:7b:dc:d6:86:71:4a:ab:23:
44:37:c6:05:5f:32:d1:de:f1:5f:a9:25:ab:62:56:08:6b:11:
f0:ee:1a:2e:c3:c4:77:1b:45:8d:ce:a9:58:65:28:8d:2a:7a:
f1:ef:48:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org