Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zqWGgPdG_Kap0VpTuVLY26b57RI.roa
File: zqWGgPdG_Kap0VpTuVLY26b57RI.roa (raw, json)
Hash identifier: 1uufnxh4DHNPCgy5dQqmByNnTqcM7zie/bRfHg/Hzg0=
Subject key identifier: CE:A5:86:80:F7:46:FC:A6:A9:D1:5A:53:B9:52:D8:DB:A6:F9:ED:12
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018596FB72FDFC7B6903C5981C9F54F7D1D1
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zqWGgPdG_Kap0VpTuVLY26b57RI.roa
Signing time: Mon 09 Jan 2023 14:42:19 +0000
ROA not before: Mon 09 Jan 2023 14:42:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204372
IP address blocks: 163.5.233.0/24 maxlen: 24
163.5.227.0/24 maxlen: 24
163.5.230.0/24 maxlen: 24
163.5.239.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.244.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.107.0/24 maxlen: 24
163.5.31.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.202.0/24 maxlen: 24
163.5.211.0/24 maxlen: 24
163.5.210.0/24 maxlen: 24
163.5.226.0/24 maxlen: 24
163.5.222.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.127.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.145.0/24 maxlen: 24
163.5.149.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.166.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:fb:72:fd:fc:7b:69:03:c5:98:1c:9f:54:f7:d1:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 9 14:42:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cea58680f746fca6a9d15a53b952d8dba6f9ed12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9a:33:74:5c:4d:a0:61:b1:a3:fa:5a:c3:02:
78:b2:c6:61:20:57:2d:57:ca:39:1a:3e:97:7f:44:
fc:6d:86:eb:b7:2e:c8:53:e3:c0:5a:f1:cb:39:8f:
1a:09:9c:fd:3b:f8:1b:2d:3e:e7:47:1e:30:14:81:
ee:f1:84:bd:d1:8f:8b:1d:d9:34:db:74:2d:7e:b1:
bc:2a:46:63:c3:ad:ef:2e:af:89:42:f5:83:7f:6f:
03:56:c7:44:56:e2:44:0c:60:16:bd:7f:b3:0c:58:
48:aa:1a:55:1a:3f:ba:6b:ff:6d:14:82:ca:1b:00:
28:63:8e:63:88:af:12:a0:1d:d5:05:d3:ce:c5:32:
04:0e:cd:04:af:36:3a:ae:cb:8f:de:a1:3e:61:2d:
21:e3:c6:4f:64:63:8e:e5:3d:d0:f0:a9:90:26:da:
d7:f5:6c:bd:ad:d6:30:7b:c3:85:ef:16:d9:34:c9:
c7:35:67:6a:10:b5:33:97:cb:62:e9:08:df:e1:9b:
2f:4f:e4:90:a6:09:4b:c2:95:dd:d6:99:65:49:fc:
e7:3f:1e:d6:40:92:58:90:d3:b5:53:c1:65:d5:e3:
8c:fe:11:5a:24:67:91:e7:51:0a:e8:67:47:11:92:
4d:d1:b4:28:46:2d:40:d2:a0:d1:bd:21:d8:89:2a:
e8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A5:86:80:F7:46:FC:A6:A9:D1:5A:53:B9:52:D8:DB:A6:F9:ED:12
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zqWGgPdG_Kap0VpTuVLY26b57RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.31.0/24
163.5.35.0/24
163.5.100.0/24
163.5.107.0/24
163.5.127.0/24
163.5.130.0/24
163.5.132.0/23
163.5.136.0/24
163.5.138.0/24
163.5.145.0/24
163.5.149.0/24
163.5.158.0/24
163.5.161.0/24
163.5.166.0/24
163.5.202.0/24
163.5.210.0/23
163.5.222.0/24
163.5.226.0/23
163.5.230.0/24
163.5.233.0/24
163.5.239.0-163.5.241.255
163.5.244.0/24
163.5.246.0/24
163.5.248.0/24
Signature Algorithm: sha256WithRSAEncryption
43:e2:cb:d6:82:42:f0:e3:b6:fe:6b:8b:d0:d8:23:5a:1d:9e:
80:44:96:4e:1c:ba:ac:b4:8d:70:89:f9:62:15:83:30:6d:f7:
62:3e:95:a6:c2:fa:ce:a6:8c:18:26:53:d7:53:4e:d4:25:cb:
f3:32:0f:3f:0d:1e:e9:fc:52:08:a3:a4:e7:37:ec:b0:4e:81:
b4:63:95:15:72:24:f9:9d:5c:e0:60:4a:da:d2:a4:71:64:41:
7a:95:1d:db:32:db:74:0a:ce:ca:ac:61:ea:cc:93:8b:68:a0:
83:06:fe:df:06:f2:b7:18:58:be:c2:73:bb:1c:04:7b:39:28:
a0:0d:85:58:e4:50:e6:fa:d3:35:b5:e0:09:b5:42:9a:db:bb:
90:3f:aa:e4:f8:c5:ee:9d:2f:0b:c9:04:8e:b9:e2:89:39:97:
9b:a7:1b:ce:cb:39:56:f3:13:bf:01:e1:aa:c1:bb:e8:8f:70:
94:c8:85:96:53:8d:e7:ed:63:01:5d:c4:31:a2:43:37:20:8e:
5e:b1:67:a5:3f:2d:c2:37:66:6c:38:03:35:c1:5e:7f:b5:4c:
71:73:c8:0c:42:5b:66:b0:a3:fe:91:45:3e:94:fb:2c:82:8d:
2a:30:10:ad:19:f8:5f:22:81:90:13:72:f5:64:6c:79:96:be:
99:0f:e1:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org