Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yx_ogIa418Ntr-8j9vTadOa9Ee8.roa
File: yx_ogIa418Ntr-8j9vTadOa9Ee8.roa (raw, json)
Hash identifier: YmtgD9euJVvAoIg2TuD7OVEIbu5YFgp+fAJaj+9mXo0=
Subject key identifier: CB:1F:E8:80:86:B8:D7:C3:6D:AF:EF:23:F6:F4:DA:74:E6:BD:11:EF
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B0710818906BB3917191514177CF85E25
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yx_ogIa418Ntr-8j9vTadOa9Ee8.roa
Signing time: Fri 06 Oct 2023 22:16:44 +0000
ROA not before: Fri 06 Oct 2023 22:16:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 163.5.230.0/24 maxlen: 24
163.5.227.0/24 maxlen: 24
163.5.229.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.238.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.245.0/24 maxlen: 24
163.5.243.0/24 maxlen: 24
163.5.88.0/24 maxlen: 24
163.5.90.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.117.0/24 maxlen: 24
163.5.38.0/24 maxlen: 24
163.5.34.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.63.0/24 maxlen: 24
163.5.60.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.177.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.226.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:07:10:81:89:06:bb:39:17:19:15:14:17:7c:f8:5e:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 6 22:16:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb1fe88086b8d7c36dafef23f6f4da74e6bd11ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:21:b1:58:5a:de:1d:5f:57:6a:99:aa:03:eb:
ec:6b:f7:29:78:95:64:e4:59:84:eb:26:66:0d:51:
93:88:53:ff:76:52:ed:fe:7d:e6:99:a2:18:0e:e4:
d2:e8:09:1f:85:bc:ca:2c:26:e1:60:bf:7b:08:03:
11:75:bd:d1:26:2f:bd:82:12:72:85:70:fd:d7:99:
e4:f1:74:9a:8c:d9:8c:3d:b0:d9:6f:77:28:dc:8a:
0d:59:56:d1:df:06:00:91:32:32:82:76:a3:fb:c5:
73:4f:25:3f:29:a7:39:c2:22:f9:61:ff:21:b2:67:
29:b5:5c:68:d9:13:b1:84:08:84:4d:b6:2d:67:93:
95:37:c7:9f:4e:e7:cc:4c:6c:61:bc:5e:13:c9:be:
60:e7:99:d7:9e:3e:e4:d8:2a:b0:f2:c8:c3:c0:ce:
1b:c7:5e:f1:c9:39:5f:64:de:89:32:bf:bb:b4:45:
8c:96:c5:18:35:b1:29:b4:8c:5f:4e:86:61:eb:77:
43:0c:6e:a6:3a:c5:d1:a1:3e:c3:93:cb:43:80:a1:
0c:8c:43:d1:f5:18:31:ee:d1:a5:7e:de:72:d4:e1:
c3:45:df:41:b2:aa:26:d1:19:b6:d2:42:5d:39:17:
b3:3d:90:b1:87:70:af:21:dc:0b:10:65:0b:64:b5:
d7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:1F:E8:80:86:B8:D7:C3:6D:AF:EF:23:F6:F4:DA:74:E6:BD:11:EF
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/yx_ogIa418Ntr-8j9vTadOa9Ee8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.34.0/24
163.5.38.0/23
163.5.60.0/24
163.5.63.0/24
163.5.88.0/24
163.5.90.0/24
163.5.93.0/24
163.5.100.0-163.5.102.255
163.5.108.0/23
163.5.116.0/22
163.5.130.0/23
163.5.133.0-163.5.134.255
163.5.147.0/24
163.5.174.0/24
163.5.177.0/24
163.5.189.0/24
163.5.192.0/24
163.5.225.0-163.5.230.255
163.5.238.0/24
163.5.240.0/24
163.5.243.0/24
163.5.245.0-163.5.246.255
Signature Algorithm: sha256WithRSAEncryption
a1:88:78:1a:89:17:ad:ac:61:1a:04:2f:bf:7e:59:9f:3e:ff:
54:cc:1e:f2:93:58:6c:22:bd:0a:6f:7c:6e:a4:fe:dc:0d:28:
32:cc:16:8a:3d:b5:03:9c:62:a0:50:20:35:07:8b:0e:1d:0e:
c7:07:1b:72:f6:08:ac:cb:2f:59:58:bf:76:cb:96:4f:3c:51:
71:46:dc:0e:89:a0:b3:e7:42:01:bc:2d:52:27:0a:8f:1e:91:
fc:ba:68:c8:0c:10:32:00:6e:4c:4f:d6:52:11:83:96:41:b2:
1f:63:7d:41:bc:c1:c8:28:cb:c2:eb:bc:4e:0e:bc:52:b0:ed:
d8:80:04:09:7a:cd:00:d4:bc:ab:b6:84:b6:04:8d:80:f1:f0:
fd:ad:75:0c:9b:f0:04:5e:ed:ce:d3:34:a9:40:c3:b7:23:4a:
86:31:cb:ed:89:a1:12:a9:22:60:d3:55:2e:29:8a:5c:30:a2:
29:5c:a9:d0:41:f0:b0:cd:94:98:b4:72:a7:c7:35:94:84:53:
45:8c:a0:6a:89:f9:a5:80:99:0f:86:91:c0:ee:70:04:c8:48:
06:0b:9f:b1:59:3a:3c:2d:ea:41:ee:70:f0:71:82:d5:60:67:
80:54:44:66:f7:0f:0d:d6:1e:4a:ba:ce:c6:71:16:b7:e5:e5:
99:ad:5a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 23 20:55:34 2023 by rpki-client on console-ams.rpki-client.org