Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/pOLr2Syq3np8oB2jvSJVHbMUwXU.roa
File: pOLr2Syq3np8oB2jvSJVHbMUwXU.roa (raw, json)
Hash identifier: +2WtHIyQM08XcqoVOG0HeeRVUdlxIjzzvwZhuFjWsYE=
Subject key identifier: A4:E2:EB:D9:2C:AA:DE:7A:7C:A0:1D:A3:BD:22:55:1D:B3:14:C1:75
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0191CCC0F30D0F1F1D38D80FE558BF340A14
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/pOLr2Syq3np8oB2jvSJVHbMUwXU.roa
Signing time: Sat 07 Sep 2024 13:51:22 +0000
ROA not before: Sat 07 Sep 2024 13:51:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.34.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.211.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.244.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 16:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:cc:c0:f3:0d:0f:1f:1d:38:d8:0f:e5:58:bf:34:0a:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 7 13:51:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4e2ebd92caade7a7ca01da3bd22551db314c175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:df:85:98:ed:4b:1c:06:4e:b1:92:51:26:10:
f3:6a:17:b7:80:e9:12:5e:cb:31:af:50:2d:9f:0d:
9b:0e:9f:da:3e:33:2a:a1:0a:65:20:f3:83:c6:4b:
ee:93:63:3c:65:a7:82:f4:9f:17:77:14:c2:ce:64:
bc:f9:b4:bc:94:41:9a:3d:c3:62:8b:5d:73:8a:7d:
1f:cd:b2:15:14:df:8b:02:0e:f4:f8:6a:15:c7:20:
35:0c:bf:f2:8d:e1:d1:ea:e9:83:92:e0:bf:01:02:
60:b0:68:f5:ee:b1:52:7e:89:4f:98:de:a3:d4:e8:
e9:88:92:d9:ac:7e:2d:18:62:bf:2c:bd:6a:0a:85:
e4:aa:75:7f:d6:4f:65:ea:80:d2:3a:f1:75:6c:79:
0b:3f:ea:0d:83:f7:f7:80:52:22:25:c7:51:20:cb:
11:fc:e6:1c:bf:a5:f1:1d:38:c8:2b:94:ad:2e:cb:
cd:c4:70:31:da:d4:63:15:0f:98:32:fa:ed:b3:07:
45:49:de:c3:2c:9f:87:47:c5:8a:bc:26:05:ec:77:
b7:9a:96:ed:7d:11:91:33:43:b8:ab:cc:e3:43:fa:
f8:7b:58:3b:80:9b:cf:03:7a:5c:50:ba:9c:c8:80:
a1:bb:96:fa:fc:4c:5a:6d:5c:ba:a7:2d:3d:5b:19:
04:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E2:EB:D9:2C:AA:DE:7A:7C:A0:1D:A3:BD:22:55:1D:B3:14:C1:75
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/pOLr2Syq3np8oB2jvSJVHbMUwXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.33.0-163.5.35.255
163.5.59.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.118.0/23
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.132.0/24
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.158.0/24
163.5.160.0/24
163.5.162.0/24
163.5.167.0/24
163.5.178.0/23
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.211.0/24
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.244.0/24
163.5.247.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:ad:1a:31:1d:13:19:bb:2a:bb:69:e5:6e:cc:36:57:f6:a7:
0e:88:55:69:55:04:59:07:89:c7:f4:56:7e:9b:4b:f2:81:45:
6a:ee:c0:0a:da:37:5d:24:ea:89:cd:1e:2a:4c:ac:fc:2d:d8:
8b:e3:ee:2b:19:d3:5f:90:9c:21:54:1d:5a:9f:cd:56:a2:ef:
70:21:58:b4:48:90:5c:f6:d1:f5:50:26:d6:68:bc:11:3d:75:
ea:13:90:92:47:56:03:73:0b:e1:0f:9e:d2:2a:7d:22:be:77:
dc:9a:55:2f:24:06:77:7b:0f:47:e3:4b:67:dd:74:df:22:38:
cd:8e:ca:de:92:51:15:7d:d7:98:fa:3b:4f:20:4c:52:40:a0:
31:16:ca:81:0a:37:23:5f:9b:38:17:5b:af:92:09:6c:6b:c4:
26:68:e7:2b:56:5f:bb:67:77:d7:ff:6d:d2:87:59:f1:b7:d9:
46:7d:0d:50:bb:bc:13:a5:3f:9f:9b:5d:e2:a4:7d:b5:1f:42:
62:4f:88:b6:1a:4b:b5:20:14:2f:15:ed:f8:fc:12:bb:db:a5:
71:78:8e:f0:96:ba:52:6f:7c:58:a9:c1:d9:ab:a0:7c:25:9c:
b2:5c:39:2c:46:1f:fa:22:3b:1e:de:52:1d:43:fd:a3:31:0c:
9b:4d:33:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 18:35:55 2024 by rpki-client on console-ams.rpki-client.org