Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xsUGWSp_6v4DXguNjlR92tfgurc.roa
File: xsUGWSp_6v4DXguNjlR92tfgurc.roa (raw, json)
Hash identifier: iCExntIW60ox9b/pLJYk1Ge/xdNotyLjIDZeWETZLXw=
Subject key identifier: C6:C5:06:59:2A:7F:EA:FE:03:5E:0B:8D:8E:54:7D:DA:D7:E0:BA:B7
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0190A7848B855805666EB2685D36AF0C6573
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xsUGWSp_6v4DXguNjlR92tfgurc.roa
Signing time: Fri 12 Jul 2024 15:16:39 +0000
ROA not before: Fri 12 Jul 2024 15:16:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Jul 2024 12:36:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a7:84:8b:85:58:05:66:6e:b2:68:5d:36:af:0c:65:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 12 15:16:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6c506592a7feafe035e0b8d8e547ddad7e0bab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f5:ca:70:1a:78:19:08:62:4b:8f:b3:0c:e8:
4d:f1:e8:1d:8f:54:53:2a:c5:45:4b:f9:16:34:e7:
af:45:5e:20:d9:2b:c3:3f:9a:6d:a1:9d:4f:91:56:
3e:69:56:2a:63:4e:8d:c0:e9:01:14:80:4f:16:4a:
c2:ed:3b:e0:e9:c9:3c:13:77:3a:26:18:1e:30:4b:
e1:14:3f:c7:12:26:fc:1e:73:f5:fd:e1:f3:33:54:
c5:6c:29:56:d5:d5:f1:f6:73:61:35:13:fc:84:55:
31:f4:ed:ec:2b:a6:0b:65:b9:93:63:d9:a2:44:1a:
22:dd:12:cf:f5:ef:41:de:6f:fc:6e:7d:9f:f5:07:
7c:2d:fc:dd:51:b2:3e:41:7c:aa:37:e2:1a:ab:3e:
f3:9e:c8:4e:d2:6c:f3:10:cf:af:5b:47:30:0e:bd:
ee:64:d9:b2:e5:d1:33:83:7b:17:a9:ab:32:cd:9c:
25:bc:1f:34:bd:8f:ec:48:5e:c3:c0:b0:f4:52:3e:
bf:f7:21:8e:c1:d7:4a:5d:79:4f:35:87:72:f4:a5:
48:30:e9:56:7f:f2:0f:47:b2:fd:33:e9:d8:5d:97:
2b:41:d2:f0:14:e6:1c:ed:4e:c3:5c:53:04:27:e2:
50:0b:35:dc:26:18:32:43:3e:a7:cb:0a:b7:29:3a:
bf:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:C5:06:59:2A:7F:EA:FE:03:5E:0B:8D:8E:54:7D:DA:D7:E0:BA:B7
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/xsUGWSp_6v4DXguNjlR92tfgurc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.51.0/24
163.5.89.0/24
163.5.110.0-163.5.113.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/23
163.5.139.0/24
163.5.143.0/24
163.5.146.0/24
163.5.151.0/24
163.5.160.0/24
163.5.162.0/24
163.5.167.0/24
163.5.178.0/24
163.5.182.0/24
163.5.188.0/23
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.253.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:1f:3e:90:34:0e:38:c2:42:65:f4:91:82:5c:24:05:17:a6:
05:8a:2f:e4:af:3a:c4:ba:5f:df:08:1f:6c:e5:1d:fe:e2:eb:
34:eb:b6:2e:10:a9:37:7b:5c:9f:fe:e7:dd:2e:ce:f4:25:87:
95:ae:77:62:2b:2e:5a:d0:91:ac:f0:23:f0:02:93:69:6f:ce:
a8:3c:ea:2f:09:48:fd:58:11:94:30:26:ef:20:58:6a:75:6a:
a5:ec:06:f9:55:8d:98:dd:c0:0a:f4:1f:91:76:20:25:78:f0:
e1:bd:85:70:d4:35:28:ee:2d:63:e5:f6:c8:cf:27:a9:0a:af:
77:ad:fa:cc:f9:c9:c2:b0:88:59:7e:d9:40:30:69:9e:18:92:
72:a4:c0:61:c2:b9:8d:11:96:4e:41:23:d2:46:60:1c:53:58:
93:07:2d:9e:6a:02:e8:4f:e0:a0:92:ff:71:3c:26:34:ea:ca:
c4:83:aa:77:b5:6b:2d:ee:20:4e:28:00:0e:88:fb:9d:68:0a:
01:07:52:74:21:46:19:7d:77:d2:bf:98:9e:b1:06:b5:ad:35:
d6:7f:f2:79:e6:e5:26:e4:f6:1b:16:94:57:d2:b1:f3:b8:fa:
81:e2:dc:15:01:ec:28:57:98:9c:54:86:28:b8:87:a1:c5:92:
a1:07:d7:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 13 13:54:00 2024 by rpki-client on console-fra.rpki-client.org