Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/slx7GC3oRFRg_D4DlZVXQAZhQyY.roa
File: slx7GC3oRFRg_D4DlZVXQAZhQyY.roa (raw, json)
Hash identifier: 3JngNin9qHTMlQOa8ZKYrdCFdrUqkOB4A+52zr1RZu4=
Subject key identifier: B2:5C:7B:18:2D:E8:44:54:60:FC:3E:03:95:95:57:40:06:61:43:26
Certificate issuer: /CN=09e5518e68467b4290c3509268b6d6d664962c86
Certificate serial: 01910E6C4EA44BC78843249E6208EB4D1A4B
Authority key identifier: 09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/slx7GC3oRFRg_D4DlZVXQAZhQyY.roa
Signing time: Thu 01 Aug 2024 14:51:04 +0000
ROA not before: Thu 01 Aug 2024 14:51:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31515
IP address blocks: 161.30.5.0/24 maxlen: 24
161.30.7.0/24 maxlen: 24
161.30.8.0/24 maxlen: 24
161.30.9.0/24 maxlen: 24
161.30.10.0/24 maxlen: 24
161.30.12.0/22 maxlen: 22
161.30.16.0/22 maxlen: 22
161.30.20.0/24 maxlen: 24
161.30.22.0/23 maxlen: 23
161.30.28.0/24 maxlen: 24
161.30.29.0/24 maxlen: 24
161.30.33.0/24 maxlen: 24
161.30.40.0/23 maxlen: 23
161.30.42.0/23 maxlen: 24
161.30.44.0/23 maxlen: 24
161.30.112.0/23 maxlen: 23
161.30.114.0/23 maxlen: 23
161.30.115.0/24 maxlen: 24
161.30.116.0/23 maxlen: 23
161.30.118.0/24 maxlen: 24
161.30.119.0/24 maxlen: 24
161.30.120.0/24 maxlen: 24
161.30.121.0/24 maxlen: 24
161.30.124.0/23 maxlen: 23
161.30.126.0/23 maxlen: 23
161.30.128.0/23 maxlen: 23
161.30.129.0/24 maxlen: 24
161.30.130.0/24 maxlen: 24
161.30.155.0/24 maxlen: 24
161.30.164.0/24 maxlen: 24
161.30.165.0/24 maxlen: 24
161.30.169.0/24 maxlen: 24
161.30.171.0/24 maxlen: 24
161.30.176.0/20 maxlen: 20
161.30.193.0/24 maxlen: 24
161.30.194.0/23 maxlen: 23
161.30.201.0/24 maxlen: 24
161.30.202.0/24 maxlen: 24
161.30.203.0/24 maxlen: 24
161.30.220.0/24 maxlen: 24
161.30.221.0/24 maxlen: 24
161.30.236.0/22 maxlen: 24
161.30.237.0/24 maxlen: 24
161.30.238.0/24 maxlen: 24
161.30.240.0/24 maxlen: 24
161.30.246.0/24 maxlen: 24
161.30.250.0/24 maxlen: 24
161.30.251.0/24 maxlen: 24
2a11:ae00::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 23 Oct 2024 12:53:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:0e:6c:4e:a4:4b:c7:88:43:24:9e:62:08:eb:4d:1a:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e5518e68467b4290c3509268b6d6d664962c86
Validity
Not Before: Aug 1 14:51:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b25c7b182de8445460fc3e039595574006614326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:29:e3:73:3d:99:d7:7b:b5:ea:1f:d2:f7:33:
b6:c4:f8:53:a2:2f:8d:63:92:1c:32:43:b6:79:0c:
f9:69:70:03:b4:90:e4:2c:35:36:b6:ee:0e:9e:3d:
8e:4d:e8:a5:73:10:21:af:65:41:82:1d:7c:b8:8b:
b9:4d:1c:83:f2:97:91:47:39:72:4c:25:05:7a:95:
05:c6:86:03:81:99:1b:95:12:bd:b2:42:ff:73:be:
f6:1e:07:57:0b:e6:0f:af:f7:74:1e:1a:21:e3:2b:
19:30:0b:4d:0f:a0:36:98:ac:00:81:2f:0a:6c:24:
cd:37:da:68:01:69:9c:6e:c1:10:20:2f:d8:60:d4:
f3:9c:96:b5:85:91:ba:08:3e:8f:99:f7:a3:12:d3:
4f:9b:dc:ad:f7:f2:63:5b:e7:c1:c5:8f:12:5e:44:
80:82:f5:92:57:56:f0:ad:93:55:63:fa:37:5f:ad:
73:f5:82:7a:2a:0d:b5:cd:20:b9:04:11:7c:00:c0:
67:19:81:e4:4b:e9:af:bd:f0:64:76:69:2e:9e:18:
eb:7b:fa:03:a3:c5:56:09:88:28:0d:e2:1f:c5:5c:
3e:f3:65:b9:0f:0d:de:08:25:37:e6:d3:05:5d:b1:
3a:94:ab:4a:c0:8c:4e:ca:6b:91:a9:db:af:24:58:
6f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:5C:7B:18:2D:E8:44:54:60:FC:3E:03:95:95:57:40:06:61:43:26
X509v3 Authority Key Identifier:
keyid:09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/slx7GC3oRFRg_D4DlZVXQAZhQyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/CeVRjmhGe0KQw1CSaLbW1mSWLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.30.5.0/24
161.30.7.0-161.30.10.255
161.30.12.0-161.30.20.255
161.30.22.0/23
161.30.28.0/23
161.30.33.0/24
161.30.40.0-161.30.45.255
161.30.112.0-161.30.121.255
161.30.124.0-161.30.130.255
161.30.155.0/24
161.30.164.0/23
161.30.169.0/24
161.30.171.0/24
161.30.176.0/20
161.30.193.0-161.30.195.255
161.30.201.0-161.30.203.255
161.30.220.0/23
161.30.236.0-161.30.240.255
161.30.246.0/24
161.30.250.0/23
IPv6:
2a11:ae00::/32
Signature Algorithm: sha256WithRSAEncryption
8d:7e:b5:7f:75:e4:84:63:8c:bc:04:09:4b:7c:a6:d8:58:69:
19:e0:51:ad:e3:d6:42:16:6f:59:50:7e:d8:57:ea:1b:e7:5c:
83:fa:e4:c3:32:85:27:02:03:55:2f:41:8c:5b:2b:10:e3:30:
91:87:6c:37:0f:73:1c:f8:df:98:d7:f0:18:22:37:d7:8b:14:
97:db:4b:83:b9:c7:df:4b:88:49:17:f1:1a:97:ff:6d:70:e3:
dd:c8:f9:9a:92:4a:98:4f:93:9a:5b:26:5a:a7:c4:7a:f9:26:
45:36:04:c2:b0:08:f1:89:01:b1:0d:a9:a0:84:9e:5d:6d:2f:
82:4d:48:85:86:0f:d4:c3:df:7e:b4:aa:bb:2c:a5:a2:ce:aa:
04:05:1e:f6:3d:36:b9:49:12:ba:45:40:04:00:45:dc:0d:52:
69:3c:29:53:22:e7:23:2f:1f:2c:50:0b:b7:f6:c5:f2:55:6e:
96:a3:cd:b2:a2:99:fc:5c:86:f8:c5:4f:ea:26:b2:3d:e5:b3:
35:f9:30:ec:67:3b:f8:4e:f7:df:4d:6f:06:c6:2e:4c:37:2a:
17:9c:0f:7e:cb:33:29:54:1e:e7:a5:a9:03:13:bf:42:0b:aa:
86:1d:3b:cb:6a:2b:eb:14:25:dd:7e:0a:d3:16:62:7c:28:69:
30:63:26:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 16:02:56 2024 by rpki-client on console-ams.rpki-client.org