Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/AWjv4lGX0KyKI_StUaxQWQZMny0.roa
File: AWjv4lGX0KyKI_StUaxQWQZMny0.roa (raw, json)
Hash identifier: pjau+5wndVRxMrV0ZKKoMEhAPnE9x220JoclxWA/pFc=
Subject key identifier: 01:68:EF:E2:51:97:D0:AC:8A:23:F4:AD:51:AC:50:59:06:4C:9F:2D
Certificate issuer: /CN=09e5518e68467b4290c3509268b6d6d664962c86
Certificate serial: 018A2CD6A6BF7C57A6705BAAFB6EF847A3AC
Authority key identifier: 09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/AWjv4lGX0KyKI_StUaxQWQZMny0.roa
Signing time: Fri 25 Aug 2023 13:16:19 +0000
ROA not before: Fri 25 Aug 2023 13:16:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31515
IP address blocks: 161.30.169.0/24 maxlen: 24
161.30.130.0/24 maxlen: 24
161.30.129.0/24 maxlen: 24
161.30.28.0/24 maxlen: 24
161.30.33.0/24 maxlen: 24
161.30.42.0/23 maxlen: 24
161.30.40.0/23 maxlen: 23
161.30.44.0/23 maxlen: 24
161.30.203.0/24 maxlen: 24
161.30.8.0/24 maxlen: 24
161.30.9.0/24 maxlen: 24
161.30.7.0/24 maxlen: 24
161.30.5.0/24 maxlen: 24
161.30.16.0/22 maxlen: 22
161.30.12.0/22 maxlen: 22
161.30.22.0/23 maxlen: 23
161.30.237.0/24 maxlen: 24
161.30.238.0/24 maxlen: 24
161.30.236.0/22 maxlen: 24
2a11:ae00::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 12 Oct 2023 14:07:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2c:d6:a6:bf:7c:57:a6:70:5b:aa:fb:6e:f8:47:a3:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e5518e68467b4290c3509268b6d6d664962c86
Validity
Not Before: Aug 25 13:16:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0168efe25197d0ac8a23f4ad51ac5059064c9f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:af:0e:26:eb:30:91:3d:07:e3:fa:5d:49:3a:
e3:7c:8d:bc:b8:6e:ef:dc:fe:46:ac:b0:de:a9:9e:
4e:1c:83:28:99:2c:11:f1:f4:8f:ea:ba:4b:0c:0f:
e6:6c:1f:8d:4a:ad:38:35:66:a1:9f:6f:45:27:a0:
1a:bc:f5:94:46:a1:9f:26:ba:a1:a4:60:28:34:45:
93:f7:62:d6:3c:2c:10:49:a3:50:38:1d:f2:40:83:
d8:b8:58:e6:1c:07:c1:35:34:c9:45:97:72:c1:98:
65:d9:5f:78:06:db:63:03:b1:58:84:25:d6:83:ad:
cf:5c:26:e9:bd:81:99:e4:e3:f5:ab:81:c9:20:25:
6d:5c:10:86:4a:ec:71:b5:d3:23:a2:7b:b8:6b:23:
ac:5e:d4:0d:46:bd:7c:07:8b:21:b1:d1:ba:26:5e:
c4:b6:40:e1:ce:5b:72:90:df:c4:47:97:fe:32:a3:
7c:72:6f:42:f3:13:81:99:b7:96:c6:17:a5:ee:34:
2b:21:4f:c2:d6:a2:9c:55:2e:a5:97:9b:22:88:f6:
8f:d1:8f:1c:e9:40:42:be:d6:ff:14:bb:22:bd:98:
3c:7d:e0:9e:ad:6b:68:f6:ce:ec:e6:a2:0e:f8:74:
e7:eb:86:ba:89:1a:0e:05:64:c5:15:2c:ed:68:4a:
e9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:68:EF:E2:51:97:D0:AC:8A:23:F4:AD:51:AC:50:59:06:4C:9F:2D
X509v3 Authority Key Identifier:
keyid:09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/AWjv4lGX0KyKI_StUaxQWQZMny0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/CeVRjmhGe0KQw1CSaLbW1mSWLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.30.5.0/24
161.30.7.0-161.30.9.255
161.30.12.0-161.30.19.255
161.30.22.0/23
161.30.28.0/24
161.30.33.0/24
161.30.40.0-161.30.45.255
161.30.129.0-161.30.130.255
161.30.169.0/24
161.30.203.0/24
161.30.236.0/22
IPv6:
2a11:ae00::/32
Signature Algorithm: sha256WithRSAEncryption
22:b1:3c:2d:c4:4c:ba:b3:4d:33:1a:c4:08:0f:cd:7b:7d:ea:
72:f6:94:ac:0a:35:06:7f:17:b4:f4:02:bc:ca:d1:b0:6b:ac:
ee:c4:de:ec:50:64:44:41:87:4e:e5:c3:20:88:4c:5c:d6:b2:
d4:01:d6:ab:0d:d5:3d:a3:f5:9d:52:22:57:b1:20:ad:13:44:
be:cd:ad:c4:0b:f9:ca:61:f3:6a:ee:69:ac:26:6b:91:77:8d:
15:8a:02:0c:c3:b6:29:86:95:00:58:cb:bb:5c:1d:00:26:0d:
e0:7e:26:f4:cd:41:cb:22:31:5f:b6:59:1d:61:25:7a:fe:36:
6e:25:31:7e:c1:3f:ac:81:78:ce:d3:9a:2b:73:b7:22:b7:ec:
05:75:63:1c:e5:8e:0f:3d:96:a9:7d:64:d9:07:52:71:4b:63:
08:9e:65:27:3a:02:99:9c:22:6c:33:1d:cb:68:92:b3:c2:b4:
87:48:e5:37:7d:f6:fa:bd:3e:e0:9b:65:28:f8:a0:c4:ad:a8:
2a:6a:90:20:43:09:c3:2b:ba:20:ec:74:bd:05:fa:aa:3c:c8:
35:01:91:24:32:67:28:2f:48:7c:81:f2:99:0c:e4:bc:f5:f8:
98:97:1e:ce:f0:d4:88:27:d9:ab:e8:e5:8b:d8:69:b1:60:1a:
80:bd:26:73
-----BEGIN CERTIFICATE-----
MIIFaTCCBFGgAwIBAgISAYos1qa/fFemcFuq+274R6OsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZTU1MThlNjg0NjdiNDI5MGMzNTA5MjY4YjZkNmQ2NjQ5
NjJjODYwHhcNMjMwODI1MTMxNjE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMTY4ZWZlMjUxOTdkMGFjOGEyM2Y0YWQ1MWFjNTA1OTA2NGM5ZjJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA468OJuswkT0H4/pdSTrjfI28uG7v
3P5GrLDeqZ5OHIMomSwR8fSP6rpLDA/mbB+NSq04NWahn29FJ6AavPWURqGfJrqh
pGAoNEWT92LWPCwQSaNQOB3yQIPYuFjmHAfBNTTJRZdywZhl2V94BttjA7FYhCXW
g63PXCbpvYGZ5OP1q4HJICVtXBCGSuxxtdMjonu4ayOsXtQNRr18B4shsdG6Jl7E
tkDhzltykN/ER5f+MqN8cm9C8xOBmbeWxhel7jQrIU/C1qKcVS6ll5siiPaP0Y8c
6UBCvtb/FLsivZg8feCerWto9s7s5qIO+HTn64a6iRoOBWTFFSztaErp9wIDAQAB
o4ICdTCCAnEwHQYDVR0OBBYEFAFo7+JRl9CsiiP0rVGsUFkGTJ8tMB8GA1UdIwQY
MBaAFAnlUY5oRntCkMNQkmi21tZkliyGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2VWUmptaEdlMEtRdzFDU2FMYlcxbVNXTElZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC8zMDI4MmMtM2M4Mi00NzMwLWI5NWUt
ZTc0NTk0ODk4M2VkLzEvQVdqdjRsR1gwS3lLSV9TdFVheFFXUVpNbnkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC8zMDI4MmMtM2M4Mi00NzMwLWI5NWUtZTc0NTk0ODk4M2Vk
LzEvQ2VWUmptaEdlMEtRdzFDU2FMYlcxbVNXTElZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGKBggrBgEFBQcBBwEB/wR7MHkwaAQCAAEwYgMEAKEeBTAM
AwQAoR4HAwQBoR4IMAwDBAKhHgwDBAKhHhADBAGhHhYDBAChHhwDBAChHiEwDAME
A6EeKAMEAaEeLDAMAwQAoR6BAwQAoR6CAwQAoR6pAwQAoR7LAwQCoR7sMA0EAgAC
MAcDBQAqEa4AMA0GCSqGSIb3DQEBCwUAA4IBAQAisTwtxEy6s00zGsQID817fepy
9pSsCjUGfxe09AK8ytGwa6zuxN7sUGREQYdO5cMgiExc1rLUAdarDdU9o/WdUiJX
sSCtE0S+za3EC/nKYfNq7mmsJmuRd40VigIMw7YphpUAWMu7XB0AJg3gfib0zUHL
IjFftlkdYSV6/jZuJTF+wT+sgXjO05orc7cit+wFdWMc5Y4PPZapfWTZB1JxS2MI
nmUnOgKZnCJsMx3LaJKzwrSHSOU3ffb6vT7gm2Uo+KDEragqapAgQwnDK7og7HS9
BfqqPMg1AZEkMmcoL0h8gfKZDOS89fiYlx7O8NSIJ9mr6OWL2GmxYBqAvSZz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:53 2024 by rpki-client on console-ams.rpki-client.org