Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yWvtuDUxdpDZ-YtdHcD4EKfX3zI.roa
File: yWvtuDUxdpDZ-YtdHcD4EKfX3zI.roa (raw, json)
Hash identifier: Kbc9s+uRkOsC3LUkBMnprM3JCOidbjX9OxdwIMMt3SI=
Subject key identifier: C9:6B:ED:B8:35:31:76:90:D9:F9:8B:5D:1D:C0:F8:10:A7:D7:DF:32
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018BABFABE26BCB201D33742A7D498E1BA47
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yWvtuDUxdpDZ-YtdHcD4EKfX3zI.roa
Signing time: Tue 07 Nov 2023 22:50:18 +0000
ROA not before: Tue 07 Nov 2023 22:50:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.228.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ab:fa:be:26:bc:b2:01:d3:37:42:a7:d4:98:e1:ba:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 7 22:50:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c96bedb835317690d9f98b5d1dc0f810a7d7df32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:25:b2:7d:dc:44:c8:86:84:d3:f5:82:0b:c3:
dd:60:f6:d2:e6:8e:51:78:50:68:f4:4b:25:6a:da:
61:82:12:bb:6a:0c:33:d7:4f:ae:75:77:59:ab:30:
e5:1f:e6:1d:cb:12:bf:29:98:29:b7:bb:b8:ea:07:
6c:57:f3:58:48:ac:96:b4:b9:7d:b2:2a:47:e2:db:
11:74:9f:59:d5:61:33:b7:0b:c7:6c:d2:ff:b5:76:
2d:8b:60:bd:a2:28:e5:9e:3c:8f:c1:b5:a5:95:c1:
a3:27:6f:39:18:af:8b:10:b8:4d:a8:4f:38:01:6b:
9c:ab:e3:b3:18:d9:17:fb:f0:6e:97:f5:3e:44:f6:
3a:7c:a9:b3:c5:02:cf:4d:99:cd:89:62:a9:ed:8d:
4b:8f:2f:05:cd:a2:42:a4:5b:48:15:3a:5d:db:71:
25:0e:f2:7d:cc:e5:b9:07:4c:f1:da:f0:64:96:a2:
c7:37:6f:aa:8f:ed:4f:3d:eb:e4:0e:43:46:18:77:
9a:81:e0:ad:e4:23:76:f7:3b:62:1c:ef:4d:a5:b2:
25:2a:68:ac:dd:03:85:05:ec:14:3a:d5:85:91:e6:
3c:3b:c0:53:11:a7:d4:aa:7f:5d:b6:06:aa:e9:06:
3e:db:93:3d:b2:4c:77:92:fd:bc:96:fc:dd:0f:6b:
88:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:6B:ED:B8:35:31:76:90:D9:F9:8B:5D:1D:C0:F8:10:A7:D7:DF:32
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yWvtuDUxdpDZ-YtdHcD4EKfX3zI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.35.0-163.5.36.255
163.5.62.0/24
163.5.79.0/24
163.5.83.0/24
163.5.89.0/24
163.5.94.0/23
163.5.99.0/24
163.5.106.0/24
163.5.110.0-163.5.114.255
163.5.121.0/24
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.142.0/23
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.156.0/24
163.5.160.0/23
163.5.167.0/24
163.5.170.0/24
163.5.176.0/24
163.5.178.0/24
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.241.0/24
163.5.250.0/24
163.5.252.0/23
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
49:5b:2a:77:33:12:ab:61:a7:62:5d:1e:a9:e1:3d:d7:44:f2:
62:25:a6:42:7d:cb:db:3d:e2:5e:4b:4b:17:66:dc:b5:98:c8:
ff:c2:24:7d:f9:ab:0c:b7:55:0a:b2:aa:16:ae:7e:e8:31:51:
5f:9b:c6:63:86:5e:9f:4d:84:c2:6b:2d:87:74:ae:5f:2a:36:
4a:76:07:3f:a8:56:0e:57:61:ee:60:5b:e1:47:fd:9a:e9:eb:
fe:29:dc:20:63:5a:d1:40:3a:03:8d:1d:ef:d8:09:38:b4:18:
bb:2e:9b:ad:5f:f5:7e:d5:6c:7d:ed:ca:b0:69:f7:fb:f4:e2:
50:88:ca:ae:0c:81:68:8f:b0:5e:52:f6:de:f0:80:07:18:f1:
78:46:d9:94:1e:17:05:3b:2e:e8:2a:ae:07:19:1f:4e:48:12:
32:a3:05:6b:86:3f:9a:67:a3:08:f2:ba:dd:b3:c7:b1:42:f9:
d5:4c:f5:f1:91:03:e8:24:c9:7c:62:56:9d:3f:e6:c0:33:3a:
82:91:3a:2d:aa:c3:b1:42:08:d2:9b:96:0b:6a:3a:6c:71:55:
4d:38:8c:72:4f:e2:bc:46:07:30:c0:12:68:cd:5d:7b:d2:c1:
80:e2:c0:cd:bc:25:ab:0c:7a:bc:df:5d:77:f2:61:cc:ed:10:
69:6f:11:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 10 03:57:02 2023 by rpki-client on console-fra.rpki-client.org