Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nN9UQjoofpXYus_Pq35bdvpnFVQ.roa
File: nN9UQjoofpXYus_Pq35bdvpnFVQ.roa (raw, json)
Hash identifier: QGlCbt2CgLa7SkL6xVuCBXecqItsp3ELnS5a0uFnTns=
Subject key identifier: 9C:DF:54:42:3A:28:7E:95:D8:BA:CF:CF:AB:7E:5B:76:FA:67:15:54
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0190AC18563C1E1E108FCEDE6F82C52A6EF2
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nN9UQjoofpXYus_Pq35bdvpnFVQ.roa
Signing time: Sat 13 Jul 2024 12:36:34 +0000
ROA not before: Sat 13 Jul 2024 12:36:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.232.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jul 2024 07:13:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ac:18:56:3c:1e:1e:10:8f:ce:de:6f:82:c5:2a:6e:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 13 12:36:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9cdf54423a287e95d8bacfcfab7e5b76fa671554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:54:fe:f2:d0:da:05:e3:de:b8:78:c4:83:f6:
34:6d:be:b5:d5:05:28:6a:6e:83:81:9f:5f:73:65:
14:b9:da:e9:4b:c9:42:be:e5:65:22:81:a1:c4:7d:
25:2e:20:cb:58:1a:58:dd:ca:0a:e8:18:02:9e:5f:
5d:56:56:19:18:8f:df:db:7e:f5:25:be:04:bc:35:
d7:18:a1:28:ec:e2:ab:58:b4:c7:7c:52:3e:59:ce:
42:32:e2:99:b9:40:15:fc:5f:f3:96:60:b7:db:96:
44:ec:34:3b:34:8c:ab:e9:f8:0a:01:d7:a6:14:25:
70:25:78:0c:78:f5:69:00:86:84:1e:f7:f6:48:64:
04:b8:ce:3a:92:31:72:ee:51:d3:c5:6d:92:3e:2e:
8b:0b:fc:7d:9d:d3:ef:31:05:9d:e5:3e:e8:4a:39:
15:56:da:e0:60:7f:7e:76:1a:4b:84:e9:b1:af:f6:
98:5c:46:11:aa:13:36:24:fd:bf:c1:7e:2a:5a:e3:
02:aa:a6:93:e6:6a:6b:df:b5:e3:6d:d0:10:96:98:
a7:4a:8a:c8:fc:bd:c7:6a:74:d5:72:c2:1c:0a:65:
e2:77:5b:79:b9:c9:52:00:1f:89:04:31:75:cd:e0:
42:a6:c3:e0:a9:df:98:a2:eb:a7:d6:0b:4b:3f:fc:
da:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:DF:54:42:3A:28:7E:95:D8:BA:CF:CF:AB:7E:5B:76:FA:67:15:54
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nN9UQjoofpXYus_Pq35bdvpnFVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.51.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.162.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.232.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
06:68:18:58:f0:9b:a9:dd:23:a8:54:75:2e:c8:9f:01:5f:c6:
df:4e:fd:b4:e1:fd:c6:5d:a2:02:ba:3a:5b:70:45:b3:c2:8d:
41:3e:f4:f5:a1:b8:14:3b:45:0d:1c:17:8f:15:e3:c5:aa:d6:
76:58:a6:55:81:e5:ca:aa:95:76:61:a3:16:a5:58:60:a9:0e:
91:f8:88:96:eb:98:e2:68:66:21:ab:9e:97:fb:74:4d:c1:6e:
cd:52:5e:1e:3b:4d:8b:ef:78:b8:ca:ca:c9:fe:7d:37:bc:9c:
2b:46:6a:cf:96:c0:b7:20:0e:29:bf:76:a5:dd:a7:c4:53:a2:
5a:9b:77:a0:a0:14:72:dd:46:40:96:f9:7c:bd:d8:73:c2:e1:
e3:68:26:e6:4e:28:04:0c:3f:3b:b8:b7:ce:10:1a:d3:1d:8a:
77:f1:9b:eb:d4:65:17:a0:55:ef:b8:0d:3f:99:56:90:60:ca:
f4:57:e2:7b:9e:93:73:78:47:e4:d9:2e:1b:01:f3:20:e0:7f:
09:6f:a1:31:fb:1e:f3:44:91:53:fa:ab:ce:72:c7:be:66:61:
74:04:d6:73:44:7e:6b:05:ab:31:91:40:14:9d:2b:a7:88:3f:
b6:dc:25:30:1b:bc:c3:5c:51:34:1f:fb:04:13:4f:39:af:6f:
cf:92:8a:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 09:18:59 2024 by rpki-client on console-fra.rpki-client.org