Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uKOdUXqdufdb9GR7buqSyMF9WKc.roa
File: uKOdUXqdufdb9GR7buqSyMF9WKc.roa (raw, json)
Hash identifier: aNk58Bk/d52SUQZ86o0kzhyduRsS8FIRRU362mHeHuI=
Subject key identifier: B8:A3:9D:51:7A:9D:B9:F7:5B:F4:64:7B:6E:EA:92:C8:C1:7D:58:A7
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B25270375D6D6141442014242D2C300C8
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uKOdUXqdufdb9GR7buqSyMF9WKc.roa
Signing time: Thu 12 Oct 2023 18:29:55 +0000
ROA not before: Thu 12 Oct 2023 18:29:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.228.0/24 maxlen: 24
163.5.235.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.86.0/24 maxlen: 24
163.5.87.0/24 maxlen: 24
163.5.98.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.207.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.217.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.220.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.120.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.122.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.155.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:25:27:03:75:d6:d6:14:14:42:01:42:42:d2:c3:00:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 12 18:29:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8a39d517a9db9f75bf4647b6eea92c8c17d58a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:af:65:6e:d1:bc:f8:97:47:af:43:1e:17:6f:
1f:45:90:0a:03:87:c8:9f:04:cd:6d:19:65:b3:70:
53:45:5e:55:e8:7e:42:42:e8:f0:09:71:5f:05:c4:
97:0b:48:ac:1c:3a:c5:fc:67:ce:45:c2:7c:19:9b:
1d:fe:e5:2b:a7:c2:ae:7f:8b:d6:93:81:50:67:77:
7f:b5:46:1b:a9:df:50:49:53:b4:c9:16:f2:cd:e6:
90:c7:4c:4c:48:3c:fd:67:1f:b9:fd:3a:04:9e:ce:
f8:a3:2f:ef:87:a4:a3:ec:8f:a0:7f:68:13:94:dd:
f8:b6:e8:0e:c1:6c:0b:8d:73:4c:b2:b2:04:45:ee:
7e:5d:77:33:ee:91:4b:9b:d9:d8:ea:ef:b6:21:f4:
60:52:d3:90:d7:27:4c:fc:b8:a8:a9:0d:e8:b7:55:
c8:30:67:65:98:eb:fc:ec:94:dd:96:93:a7:97:39:
ff:97:86:cf:35:2c:fb:fd:7d:f8:cc:b2:ee:6a:9c:
74:54:21:3f:67:fb:96:e8:e0:f6:28:37:c2:0d:ac:
6f:93:25:a4:6a:1e:d1:e8:ba:d1:a9:0e:8f:d3:28:
8f:e6:f5:6b:e7:93:6c:b8:ec:6d:e8:c9:5b:71:72:
9f:8b:f2:50:47:77:87:68:2c:9a:a7:38:34:af:f2:
cd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A3:9D:51:7A:9D:B9:F7:5B:F4:64:7B:6E:EA:92:C8:C1:7D:58:A7
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uKOdUXqdufdb9GR7buqSyMF9WKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.33.0/24
163.5.35.0-163.5.36.255
163.5.62.0/24
163.5.71.0/24
163.5.79.0/24
163.5.83.0/24
163.5.86.0/23
163.5.89.0/24
163.5.94.0/23
163.5.98.0/23
163.5.104.0-163.5.106.255
163.5.110.0-163.5.114.255
163.5.120.0-163.5.122.255
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.141.0-163.5.143.255
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.155.0-163.5.156.255
163.5.160.0-163.5.162.255
163.5.165.0/24
163.5.167.0/24
163.5.170.0-163.5.172.255
163.5.176.0/24
163.5.178.0/23
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.195.0/24
163.5.198.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.207.0/24
163.5.212.0/24
163.5.217.0-163.5.218.255
163.5.220.0/24
163.5.224.0/24
163.5.228.0/24
163.5.235.0/24
163.5.241.0/24
163.5.247.0-163.5.253.255
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:35:d9:e5:80:73:76:f4:ad:52:7c:97:f9:5f:13:25:36:d6:
41:04:63:6d:5b:74:30:ee:1b:f3:c1:9f:cf:27:ce:7a:5d:c3:
40:00:2d:52:aa:ea:c0:e3:b8:0d:db:f7:91:b5:fd:68:d7:4d:
85:94:e4:a2:29:83:a8:ff:74:d1:f2:c3:9c:07:92:43:88:6e:
05:23:67:94:7c:bb:b0:58:12:43:9d:41:27:79:0c:ce:08:f0:
47:d4:75:b0:6c:d8:1c:a3:5e:29:da:3b:f3:0c:e4:a7:7d:5c:
dc:cc:b1:f3:1c:07:ff:1d:eb:65:48:3d:28:3d:fe:b0:41:67:
eb:63:da:bb:5b:37:1e:d2:e3:c4:23:a6:22:40:0f:d5:a0:bf:
e2:99:9f:7e:ce:79:9f:99:77:25:69:8b:30:3a:c5:8a:72:08:
58:15:91:af:74:23:47:ac:b5:20:b9:d0:99:2b:8d:9f:f0:ee:
69:aa:79:44:d9:bd:94:7c:d4:a3:4f:fd:fd:ce:8d:9e:d2:34:
9d:f3:52:71:3f:95:0c:1a:a4:6f:99:2a:1b:09:cf:3f:c4:f0:
ee:9b:53:52:b3:7a:22:39:ae:fe:c9:13:a9:53:2e:69:92:01:
90:6d:8a:9d:99:de:77:8b:eb:1b:4e:95:fc:e2:da:52:93:f8:
c5:1e:c2:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 12 19:32:55 2023 by rpki-client on console-ams.rpki-client.org