Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mUH63oSXGG24XWJsG9oGiLRk5hM.roa
File: mUH63oSXGG24XWJsG9oGiLRk5hM.roa (raw, json)
Hash identifier: lQsnh2jOGtB1qZ9m2a6JkyPy/hrlfQ40ss0Iet+Y7mg=
Subject key identifier: 99:41:FA:DE:84:97:18:6D:B8:5D:62:6C:1B:DA:06:88:B4:64:E6:13
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018CD34909296E7AE90284257AC06DABD42C
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mUH63oSXGG24XWJsG9oGiLRk5hM.roa
Signing time: Thu 04 Jan 2024 07:03:48 +0000
ROA not before: Thu 04 Jan 2024 07:03:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d3:49:09:29:6e:7a:e9:02:84:25:7a:c0:6d:ab:d4:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 4 07:03:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9941fade8497186db85d626c1bda0688b464e613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:57:4d:d8:7c:7d:72:68:f5:d5:e8:12:87:c6:
b3:36:99:0c:ae:3e:ce:dd:ea:71:4c:3e:00:b8:82:
0f:2b:14:64:7e:81:db:31:20:cd:ec:39:68:39:ea:
14:e7:c6:71:ea:2c:68:d4:71:59:fd:0a:6b:07:0c:
92:b7:aa:07:06:d7:e7:e1:27:c9:3f:54:27:02:e4:
df:92:8f:b8:62:09:ae:a0:5e:5c:15:e4:74:63:5a:
e9:62:d3:17:e1:2d:46:0b:2f:29:8b:b9:c7:13:4b:
a1:f4:d1:d7:3e:c0:1f:a0:55:cf:7d:b1:84:ab:e3:
30:2e:81:f7:0c:05:aa:17:cd:08:a1:44:dc:f2:8e:
57:8b:aa:ac:00:76:c7:d0:a6:31:53:96:c4:e9:26:
d6:39:a2:5f:26:e6:34:34:73:a4:19:83:5b:6e:00:
a9:a9:57:27:a8:8b:b7:df:21:c3:9c:02:23:ba:bc:
93:c4:b4:0f:6a:f2:c5:08:bf:5a:64:82:3a:c2:ab:
80:c0:8e:be:5a:fd:78:3e:e7:2c:f6:19:76:1e:58:
77:fa:65:50:66:c7:6f:e8:70:13:0c:7e:1c:83:6b:
47:86:a1:55:c2:81:10:34:82:d2:2e:1e:ed:84:8a:
99:e2:e5:e1:b1:74:4a:20:b6:12:11:e7:f8:3f:87:
7f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:41:FA:DE:84:97:18:6D:B8:5D:62:6C:1B:DA:06:88:B4:64:E6:13
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mUH63oSXGG24XWJsG9oGiLRk5hM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.36.0/24
163.5.79.0/24
163.5.83.0/24
163.5.89.0/24
163.5.95.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.181.0-163.5.182.255
163.5.188.0/23
163.5.191.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:98:72:13:f6:4b:09:92:78:90:4b:d5:77:2d:2f:f5:bb:9a:
31:4b:81:c6:aa:58:06:0e:b9:2a:9e:f5:95:f6:ec:ef:1d:aa:
46:6f:7f:6e:cb:75:b7:73:ae:06:dc:4b:6b:43:10:47:13:5e:
6d:f9:65:ab:5b:16:32:9b:97:b7:04:48:4e:8c:a4:c3:6b:a9:
09:77:3c:b9:ac:98:07:ae:4c:52:c4:2a:14:4f:28:32:c1:0c:
65:e4:13:80:39:ee:24:ac:f1:7f:ef:fa:fa:91:3c:06:94:30:
a6:54:ba:22:e9:e2:26:7c:7b:76:f4:a3:4a:e2:51:a9:7a:b1:
a8:e4:03:9c:42:25:dd:b5:4b:db:14:f3:4f:31:64:fe:f4:f2:
36:7e:cb:5a:77:de:37:54:c3:f8:30:cd:f0:2a:93:9e:e5:41:
63:b7:22:55:ab:8d:e6:ac:d8:03:c6:07:25:7a:41:a7:3b:af:
87:e6:0b:3f:73:74:5d:b6:54:27:b3:83:fc:87:37:ee:cb:49:
ce:a5:f6:f8:67:b6:ca:9e:5d:d0:1f:52:13:89:c5:d5:07:57:
06:f3:01:c1:3c:20:fb:cb:80:1e:18:60:c1:34:40:64:91:2e:
be:61:7c:37:88:e3:ac:6e:34:89:61:ad:31:d7:62:63:6c:21:
0a:68:70:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 5 21:07:49 2024 by rpki-client on console-ams.rpki-client.org