Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/q5sPhLOV81HH5cNfsI4qvZ0ayXQ.roa
File: q5sPhLOV81HH5cNfsI4qvZ0ayXQ.roa (raw, json)
Hash identifier: 0Y/dXHhI85RjK+KTRnqhb2eZQdZ/TuJUYxrS3X/9PbY=
Subject key identifier: AB:9B:0F:84:B3:95:F3:51:C7:E5:C3:5F:B0:8E:2A:BD:9D:1A:C9:74
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019276E32B2F43EE719334BF7BF766A43CD7
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/q5sPhLOV81HH5cNfsI4qvZ0ayXQ.roa
Signing time: Thu 10 Oct 2024 14:44:12 +0000
ROA not before: Thu 10 Oct 2024 14:44:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.44.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.92.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.144.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Oct 2024 15:51:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:76:e3:2b:2f:43:ee:71:93:34:bf:7b:f7:66:a4:3c:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 10 14:44:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab9b0f84b395f351c7e5c35fb08e2abd9d1ac974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e6:86:68:98:5e:c5:cd:4c:9f:89:12:1e:a2:
62:f0:49:a9:33:f3:36:cc:e9:34:57:d8:45:74:02:
a4:88:da:7a:75:81:11:f9:bc:3f:4e:f6:51:54:b8:
af:5c:40:7a:c9:d2:97:54:aa:af:2d:02:57:9a:1f:
8f:91:cf:2f:70:1d:82:25:cc:c8:26:68:2b:ca:b9:
0f:80:24:95:9a:c7:41:7c:41:55:7a:d4:dc:45:b7:
b6:73:1b:80:2e:73:a6:4c:c2:2b:95:59:98:46:a1:
9e:a7:28:da:74:79:dd:f9:c1:13:e8:6f:93:6f:82:
cc:1a:f6:3e:55:ef:99:1b:49:05:74:77:d8:ec:6a:
a0:b7:86:5d:fd:a8:b2:84:be:9b:17:ad:75:5e:49:
c0:05:66:91:ad:9c:17:e4:b6:f7:6b:c1:d9:bc:ed:
1f:12:e3:31:4c:a4:25:76:b9:ac:34:73:c0:7a:2c:
19:c9:d6:dd:3d:44:a7:8d:2c:72:9f:2e:f5:ce:27:
0a:78:63:53:87:9f:fa:43:21:3d:67:a3:79:99:9f:
d9:cd:8c:18:53:89:d9:54:bf:70:ae:6a:f2:b2:01:
3e:ed:1e:1a:a2:99:2a:38:6f:f2:e5:69:a0:04:fd:
75:57:0d:c3:78:56:0c:82:85:95:76:22:29:98:fb:
8e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:9B:0F:84:B3:95:F3:51:C7:E5:C3:5F:B0:8E:2A:BD:9D:1A:C9:74
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/q5sPhLOV81HH5cNfsI4qvZ0ayXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.44.0/24
163.5.59.0/24
163.5.73.0/24
163.5.89.0/24
163.5.92.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.139.0/24
163.5.143.0-163.5.144.255
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.247.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
52:a0:95:b6:ec:b1:3d:9f:5f:60:45:2b:f2:c1:07:a5:1f:9b:
77:64:79:cd:18:eb:dd:64:4e:24:64:ca:86:f5:5f:2b:1c:8d:
81:54:d9:f4:23:93:14:5c:74:39:be:ff:1d:06:a6:cd:e1:84:
9f:31:7f:8f:eb:b0:a7:a3:ba:f0:97:5a:10:76:a0:b9:64:6f:
f9:07:d3:73:84:e7:21:43:98:43:ab:dc:aa:9d:cc:f1:58:e2:
53:a1:51:7d:96:4c:8c:ca:89:05:9e:94:e0:27:70:c3:9e:1f:
96:2d:f7:49:9b:2c:50:88:e2:cc:55:36:50:f4:2d:51:f5:81:
a5:cd:7e:30:8f:4d:68:b8:87:04:15:64:a8:32:3e:e7:c7:b7:
16:c1:88:43:d2:79:13:86:ba:f9:b8:49:b3:6e:10:0e:c0:cb:
5c:5b:9c:22:d3:a3:9a:ef:a2:5d:77:ae:a8:fe:f2:f5:2b:7b:
27:4d:dd:8f:13:8b:6f:fe:c9:b5:bd:bd:34:38:99:f7:b4:e0:
57:fc:81:93:ae:6a:2c:96:3a:1a:6f:51:b5:97:db:3a:4c:5f:
36:4b:f2:bb:a8:4c:b4:e9:ac:27:80:36:ff:d8:fd:2d:dd:cf:
67:0a:d3:79:fd:ed:92:8f:c3:9e:79:35:41:e1:9e:3c:44:cd:
ef:82:e0:d1
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgISAZJ24ysvQ+5xkzS/e/dmpDzXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQxMDEwMTQ0NDEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjliMGY4NGIzOTVmMzUxYzdlNWMzNWZiMDhlMmFiZDlkMWFjOTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuaGaJhexc1Mn4kSHqJi8EmpM/M2
zOk0V9hFdAKkiNp6dYER+bw/TvZRVLivXEB6ydKXVKqvLQJXmh+Pkc8vcB2CJczI
JmgryrkPgCSVmsdBfEFVetTcRbe2cxuALnOmTMIrlVmYRqGepyjadHnd+cET6G+T
b4LMGvY+Ve+ZG0kFdHfY7Gqgt4Zd/aiyhL6bF611XknABWaRrZwX5Lb3a8HZvO0f
EuMxTKQldrmsNHPAeiwZydbdPUSnjSxyny71zicKeGNTh5/6QyE9Z6N5mZ/ZzYwY
U4nZVL9wrmrysgE+7R4aopkqOG/y5WmgBP11Vw3DeFYMgoWVdiIpmPuOGQIDAQAB
o4ICzjCCAsowHQYDVR0OBBYEFKubD4SzlfNRx+XDX7COKr2dGsl0MB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvcTVzUGhMT1Y4MUhINWNOZnNJNHF2WjBheVhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHjBggrBgEFBQcBBwEB/wSB0zCB0DCBzQQCAAEwgcYDBACj
BR4DBACjBSwDBACjBTsDBACjBUkDBACjBVkDBACjBVwwDAMEAaMFbgMEAaMFcAME
AKMFeQMEAKMFfgMEAaMFgAMEAKMFizAMAwQAowWPAwQAowWQAwQAowWSAwQAowWX
AwQAowWgAwQAowWnAwQAowWyAwQAowW2AwQBowW8AwQAowW/AwQBowXIMAwDBACj
BcsDBACjBc4DBACjBdoDBACjBeADBACjBeQDBACjBfEDBACjBfcDBACjBfoDBACj
Bf0wDQYJKoZIhvcNAQELBQADggEBAFKglbbssT2fX2BFK/LBB6Ufm3dkec0Y691k
TiRkyob1XyscjYFU2fQjkxRcdDm+/x0Gps3hhJ8xf4/rsKejuvCXWhB2oLlkb/kH
03OE5yFDmEOr3KqdzPFY4lOhUX2WTIzKiQWelOAncMOeH5Yt90mbLFCI4sxVNlD0
LVH1gaXNfjCPTWi4hwQVZKgyPufHtxbBiEPSeROGuvm4SbNuEA7Ay1xbnCLTo5rv
ol13rqj+8vUreydN3Y8Ti2/+ybW9vTQ4mfe04Ff8gZOuaiyWOhpvUbWX2zpMXzZL
8ruoTLTprCeANv/Y/S3dz2cK03n97ZKPw555NUHhnjxEze+C4NE=
-----END CERTIFICATE-----
Generated at Tue Oct 15 18:52:44 2024 by rpki-client on console-fra.rpki-client.org