Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/ja7LHUOVFjRp1e40UYt-mJvzaUw.roa
File: ja7LHUOVFjRp1e40UYt-mJvzaUw.roa (raw, json)
Hash identifier: ShRIHQbZHrznv93x6d+M3ljl+CwpXBRKNZXuDrKkXdg=
Subject key identifier: 8D:AE:CB:1D:43:95:16:34:69:D5:EE:34:51:8B:7E:98:9B:F3:69:4C
Certificate issuer: /CN=09e5518e68467b4290c3509268b6d6d664962c86
Certificate serial: 018FC8F54365B4AE1ECD642C9023FCCABDA4
Authority key identifier: 09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/ja7LHUOVFjRp1e40UYt-mJvzaUw.roa
Signing time: Thu 30 May 2024 10:04:27 +0000
ROA not before: Thu 30 May 2024 10:04:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31515
IP address blocks: 161.30.5.0/24 maxlen: 24
161.30.7.0/24 maxlen: 24
161.30.8.0/24 maxlen: 24
161.30.9.0/24 maxlen: 24
161.30.10.0/24 maxlen: 24
161.30.12.0/22 maxlen: 22
161.30.16.0/22 maxlen: 22
161.30.20.0/24 maxlen: 24
161.30.22.0/23 maxlen: 23
161.30.28.0/24 maxlen: 24
161.30.29.0/24 maxlen: 24
161.30.33.0/24 maxlen: 24
161.30.40.0/23 maxlen: 23
161.30.42.0/23 maxlen: 24
161.30.44.0/23 maxlen: 24
161.30.112.0/23 maxlen: 23
161.30.114.0/23 maxlen: 23
161.30.115.0/24 maxlen: 24
161.30.116.0/23 maxlen: 23
161.30.118.0/24 maxlen: 24
161.30.119.0/24 maxlen: 24
161.30.120.0/24 maxlen: 24
161.30.121.0/24 maxlen: 24
161.30.124.0/23 maxlen: 23
161.30.126.0/23 maxlen: 23
161.30.128.0/23 maxlen: 23
161.30.129.0/24 maxlen: 24
161.30.130.0/24 maxlen: 24
161.30.164.0/24 maxlen: 24
161.30.165.0/24 maxlen: 24
161.30.169.0/24 maxlen: 24
161.30.171.0/24 maxlen: 24
161.30.176.0/20 maxlen: 20
161.30.193.0/24 maxlen: 24
161.30.194.0/23 maxlen: 23
161.30.201.0/24 maxlen: 24
161.30.202.0/24 maxlen: 24
161.30.203.0/24 maxlen: 24
161.30.220.0/24 maxlen: 24
161.30.221.0/24 maxlen: 24
161.30.236.0/22 maxlen: 24
161.30.237.0/24 maxlen: 24
161.30.238.0/24 maxlen: 24
161.30.240.0/24 maxlen: 24
161.30.246.0/24 maxlen: 24
161.30.250.0/24 maxlen: 24
161.30.251.0/24 maxlen: 24
2a11:ae00::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 01 Aug 2024 14:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c8:f5:43:65:b4:ae:1e:cd:64:2c:90:23:fc:ca:bd:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e5518e68467b4290c3509268b6d6d664962c86
Validity
Not Before: May 30 10:04:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8daecb1d4395163469d5ee34518b7e989bf3694c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8e:91:e6:66:08:19:d9:90:6e:ea:6e:cc:dd:
8f:0e:28:a0:ff:49:94:d8:22:c2:9e:33:86:84:40:
84:6b:f9:ae:75:bb:d8:f5:f3:9a:34:12:a3:3a:b7:
17:f5:0c:bf:c7:76:08:e0:17:70:d2:a5:30:df:9d:
a9:3e:05:90:ef:4c:57:1b:50:11:6e:71:8b:51:fa:
9b:ce:c8:63:78:60:44:ac:1e:35:40:34:bc:6c:a5:
f9:d2:2c:73:80:d3:18:bf:20:6b:24:a2:30:b6:42:
77:8b:a7:7f:e2:1f:16:58:5c:f0:5d:4e:b4:16:eb:
1e:46:e9:6a:50:1e:fc:76:8a:00:53:00:53:0f:e4:
98:77:1b:84:3b:97:08:a0:2b:ed:4a:c3:ec:5a:4f:
d9:06:0a:bf:20:95:8f:b9:0e:35:c4:37:36:f0:b6:
e1:b9:49:21:34:15:68:2f:3e:7c:4a:e2:a2:ed:85:
6b:fe:22:89:15:e8:7e:18:56:a2:5d:42:f4:ff:84:
0e:fd:2f:1b:c7:ea:73:6b:ff:72:51:4c:80:19:cc:
b0:49:db:30:2f:96:1f:7f:07:f1:8c:5f:62:00:2c:
b3:df:71:57:e8:4a:29:a9:1f:85:2a:db:08:67:d6:
60:a0:97:30:c3:2b:f0:5f:b4:73:2a:a0:3b:bd:4c:
3b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:AE:CB:1D:43:95:16:34:69:D5:EE:34:51:8B:7E:98:9B:F3:69:4C
X509v3 Authority Key Identifier:
keyid:09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/ja7LHUOVFjRp1e40UYt-mJvzaUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/CeVRjmhGe0KQw1CSaLbW1mSWLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.30.5.0/24
161.30.7.0-161.30.10.255
161.30.12.0-161.30.20.255
161.30.22.0/23
161.30.28.0/23
161.30.33.0/24
161.30.40.0-161.30.45.255
161.30.112.0-161.30.121.255
161.30.124.0-161.30.130.255
161.30.164.0/23
161.30.169.0/24
161.30.171.0/24
161.30.176.0/20
161.30.193.0-161.30.195.255
161.30.201.0-161.30.203.255
161.30.220.0/23
161.30.236.0-161.30.240.255
161.30.246.0/24
161.30.250.0/23
IPv6:
2a11:ae00::/32
Signature Algorithm: sha256WithRSAEncryption
3e:63:72:6d:99:4f:86:2f:18:77:ce:dd:67:08:4a:7f:a7:71:
9c:4f:2a:ae:84:58:17:40:10:31:37:b5:28:1d:d1:45:53:d1:
46:47:35:0b:fa:b6:97:73:2a:50:83:fd:3c:2b:b6:96:20:b5:
0e:0a:2f:31:07:82:1c:13:59:91:1e:26:84:1a:84:e2:47:dd:
17:eb:7f:6b:e7:82:9f:46:32:b7:79:31:d1:36:e7:8c:e0:96:
79:dc:10:6a:09:c4:3b:69:28:4a:7d:21:0e:25:2e:58:0a:0a:
37:20:e8:82:18:6b:ff:f6:69:15:4e:de:01:f1:6a:ad:57:ba:
91:98:e5:10:54:6e:33:28:30:3f:0f:af:be:11:4b:5f:53:61:
ea:d3:00:a0:96:0b:90:46:83:18:2b:73:29:ae:c3:a2:74:33:
6b:3d:b6:19:d1:ec:81:f7:8b:f4:95:9a:cf:de:59:6d:26:35:
bb:4a:38:62:4c:85:88:5b:e0:94:e9:08:47:7c:df:3d:cc:a7:
8f:1a:40:69:0c:2f:88:96:bd:58:02:be:6c:38:39:73:2c:01:
71:3c:0f:c6:78:79:b2:7d:e6:62:29:eb:88:06:d4:07:9e:9b:
08:32:c3:d1:30:21:7e:d0:70:f8:b4:7d:e6:b2:82:14:10:8a:
23:53:50:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 18:34:44 2024 by rpki-client on console-ams.rpki-client.org