Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xnOwYj7baAZj6w5wDUfNvqDZ4Ls.roa
File: xnOwYj7baAZj6w5wDUfNvqDZ4Ls.roa (raw, json)
Hash identifier: 4TeHcC+YytY0MYnBaA2j3PgAIiaYKwM4V/3kg1b8guY=
Subject key identifier: C6:73:B0:62:3E:DB:68:06:63:EB:0E:70:0D:47:CD:BE:A0:D9:E0:BB
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0190374C78669F57ACB0232127D2B7988ADA
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xnOwYj7baAZj6w5wDUfNvqDZ4Ls.roa
Signing time: Thu 20 Jun 2024 20:17:56 +0000
ROA not before: Thu 20 Jun 2024 20:17:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.199.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.219.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jun 2024 15:24:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:37:4c:78:66:9f:57:ac:b0:23:21:27:d2:b7:98:8a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 20 20:17:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c673b0623edb680663eb0e700d47cdbea0d9e0bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bc:2e:fb:51:7d:38:1e:28:24:17:7f:ad:25:
f4:fc:f8:9e:d7:7a:96:12:0d:a9:1d:7e:ab:5b:0e:
0b:b5:ee:8f:17:50:54:3c:2a:c0:78:a0:ba:82:e3:
76:cc:0d:43:63:23:57:09:7d:2e:86:2f:91:56:18:
7e:0a:fa:f5:cb:84:8c:d4:8a:f1:7a:ca:e0:5c:af:
ec:d8:fe:b3:ee:10:8b:20:a0:1b:86:ba:38:78:b3:
01:e4:8f:56:7f:e9:f4:14:c9:af:13:06:63:e1:e8:
24:24:86:5e:2c:73:58:32:d7:5a:34:68:ef:76:e8:
77:be:1d:ed:96:86:24:9f:36:28:2b:6f:75:5c:94:
2d:8e:95:f4:ba:0d:4e:61:ed:1a:ec:f9:f9:82:05:
e0:f0:97:08:16:a9:1f:56:1b:96:23:08:57:d7:8d:
42:be:4f:81:76:23:d4:f9:15:19:8b:13:cd:20:58:
5d:28:09:3f:b1:52:aa:26:b6:7d:0c:f1:00:e6:2f:
58:ac:bf:37:38:54:d9:f6:fb:b0:83:eb:5c:6c:3c:
06:5b:63:df:c7:1a:5a:aa:1e:33:e7:16:b3:fc:c7:
0a:7f:71:77:00:cc:33:fb:74:33:22:59:0c:e6:ba:
ff:8c:c1:e3:87:7a:4b:33:dd:96:8f:14:e7:a7:ea:
01:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:73:B0:62:3E:DB:68:06:63:EB:0E:70:0D:47:CD:BE:A0:D9:E0:BB
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xnOwYj7baAZj6w5wDUfNvqDZ4Ls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.71.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.138.0/23
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.199.0-163.5.201.255
163.5.203.0-163.5.206.255
163.5.218.0/23
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
81:b9:44:12:ac:4a:4f:c5:59:15:59:7c:61:c1:59:67:f3:d8:
33:a5:94:c7:1f:e5:8a:a5:78:ff:3c:a1:87:86:21:cb:fc:13:
94:b1:a2:49:c3:29:e2:58:6a:dc:9b:54:d2:dc:51:02:0a:fe:
5e:40:71:e8:24:ec:00:43:3c:27:44:8b:0c:bc:1b:c4:b9:92:
79:18:e7:a6:96:6e:09:19:a6:30:dd:a8:fa:c1:f2:be:c2:17:
5c:8c:18:6a:64:01:88:fc:f5:3f:64:5d:f1:b2:77:79:c8:43:
c6:6e:45:e8:07:99:67:7b:78:6a:fe:ce:03:a3:46:4e:eb:18:
2c:0c:98:88:08:6b:a2:8a:2a:f9:40:19:55:5f:67:5c:7b:bf:
7b:a5:a3:d1:c4:c5:b6:b6:bc:a0:38:83:b4:40:5f:90:06:b6:
c9:e9:6e:90:59:e2:c4:4a:b0:be:a0:28:8d:41:fa:0e:cf:da:
79:3a:1f:d2:94:81:30:11:6b:15:23:e7:17:27:ab:ca:cc:dc:
7c:ce:1f:94:26:aa:ae:40:8f:04:4d:7c:e8:66:1b:45:6f:76:
d9:d5:d3:ad:67:75:98:a7:9c:b1:1d:d2:5d:79:70:ca:83:e7:
9c:d8:fd:72:f6:c4:ad:45:a1:ad:5e:86:bf:0e:02:f8:01:4e:
d3:08:0d:61
-----BEGIN CERTIFICATE-----
MIIFqjCCBJKgAwIBAgISAZA3THhmn1essCMhJ9K3mIraMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQwNjIwMjAxNzU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjczYjA2MjNlZGI2ODA2NjNlYjBlNzAwZDQ3Y2RiZWEwZDllMGJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrwu+1F9OB4oJBd/rSX0/Pie13qW
Eg2pHX6rWw4Lte6PF1BUPCrAeKC6guN2zA1DYyNXCX0uhi+RVhh+Cvr1y4SM1Irx
esrgXK/s2P6z7hCLIKAbhro4eLMB5I9Wf+n0FMmvEwZj4egkJIZeLHNYMtdaNGjv
duh3vh3tloYknzYoK291XJQtjpX0ug1OYe0a7Pn5ggXg8JcIFqkfVhuWIwhX141C
vk+BdiPU+RUZixPNIFhdKAk/sVKqJrZ9DPEA5i9YrL83OFTZ9vuwg+tcbDwGW2Pf
xxpaqh4z5xaz/McKf3F3AMwz+3QzIlkM5rr/jMHjh3pLM92WjxTnp+oBIwIDAQAB
o4ICtjCCArIwHQYDVR0OBBYEFMZzsGI+22gGY+sOcA1Hzb6g2eC7MB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEveG5Pd1lqN2JhQVpqNnc1d0RVZk52cURaNExzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHLBggrBgEFBQcBBwEB/wSBuzCBuDCBtQQCAAEwga4DBACj
BR4DBACjBUcDBACjBVkwDAMEAaMFbgMEAaMFcAMEAKMFeQMEAKMFfgMEAaMFgAME
AaMFigMEAKMFjwMEAKMFkgMEAKMFlwMEAKMFoAMEAKMFpwMEAKMFsgMEAKMFtgME
AaMFvAMEAKMFvzAMAwQAowXHAwQBowXIMAwDBACjBcsDBACjBc4DBAGjBdoDBACj
BeADBACjBeQDBACjBfEDBACjBfoDBACjBf0wDQYJKoZIhvcNAQELBQADggEBAIG5
RBKsSk/FWRVZfGHBWWfz2DOllMcf5YqleP88oYeGIcv8E5SxoknDKeJYatybVNLc
UQIK/l5Acegk7ABDPCdEiwy8G8S5knkY56aWbgkZpjDdqPrB8r7CF1yMGGpkAYj8
9T9kXfGyd3nIQ8ZuRegHmWd7eGr+zgOjRk7rGCwMmIgIa6KKKvlAGVVfZ1x7v3ul
o9HExba2vKA4g7RAX5AGtsnpbpBZ4sRKsL6gKI1B+g7P2nk6H9KUgTARaxUj5xcn
q8rM3HzOH5Qmqq5AjwRNfOhmG0VvdtnV061ndZinnLEd0l15cMqD55zY/XL2xK1F
oa1ehr8OAvgBTtMIDWE=
-----END CERTIFICATE-----
Generated at Mon Jun 24 17:46:38 2024 by rpki-client on console-fra.rpki-client.org