Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GHkilK0Ia21G-7q9qtDgFOs_ydY.roa
File: GHkilK0Ia21G-7q9qtDgFOs_ydY.roa (raw, json)
Hash identifier: 8I8wNcZnUPZfONqLXeuuBHslYM8Z76gsrbT/wuhmHCk=
Subject key identifier: 18:79:22:94:AD:08:6B:6D:46:FB:BA:BD:AA:D0:E0:14:EB:3F:C9:D6
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019661333EE0D812698B58B8C209D69A226A
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GHkilK0Ia21G-7q9qtDgFOs_ydY.roa
Signing time: Wed 23 Apr 2025 05:51:10 +0000
ROA not before: Wed 23 Apr 2025 05:51:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 163.5.30.0/24 maxlen: 24
163.5.34.0/24 maxlen: 24
163.5.59.0/24 maxlen: 24
163.5.66.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.144.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.164.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.173.0/24 maxlen: 24
163.5.175.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.209.0/24 maxlen: 24
163.5.216.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.233.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Apr 2025 09:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:61:33:3e:e0:d8:12:69:8b:58:b8:c2:09:d6:9a:22:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Apr 23 05:51:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=18792294ad086b6d46fbbabdaad0e014eb3fc9d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2f:a6:0b:96:f2:4a:91:01:30:85:4f:ea:e1:
cf:9f:db:07:31:77:ec:fa:d7:8d:de:14:aa:2f:be:
cc:5d:8a:c6:e1:d1:7e:41:a2:71:3a:96:63:5e:20:
bb:2a:56:d4:f0:6c:03:30:5d:02:65:ff:77:12:5f:
67:90:ed:10:14:90:8a:6d:f0:97:f3:8e:ac:13:e4:
df:f0:92:11:35:2e:41:61:39:1d:09:a3:7e:01:f5:
9c:2a:a4:e5:34:c3:d3:b4:20:4f:e2:3d:4d:5d:dc:
4b:1f:3a:ff:b9:fc:aa:fb:c9:e6:b4:0d:17:06:6b:
ff:e1:81:66:e3:8b:c6:ee:c1:48:01:59:39:56:c9:
be:79:3c:20:b5:26:9d:2e:dc:b3:4c:0c:c9:39:43:
f9:c3:54:53:c7:22:aa:46:9f:e8:14:6d:ea:81:a8:
d3:a4:c4:47:c8:e2:49:b5:fa:e9:81:69:d4:00:56:
33:5b:4b:5a:70:c7:7d:06:b3:7e:83:a0:43:50:8b:
ae:bc:94:2c:f4:2d:f6:09:c3:86:f3:e1:03:d7:de:
24:01:59:b9:d8:7f:da:02:4c:b4:15:49:ea:dd:ae:
82:25:87:b0:37:c3:0d:d8:be:7d:8f:44:4d:3e:ee:
1c:46:2c:cd:6c:91:d4:c0:cc:e3:9f:0d:66:43:be:
0d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:79:22:94:AD:08:6B:6D:46:FB:BA:BD:AA:D0:E0:14:EB:3F:C9:D6
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GHkilK0Ia21G-7q9qtDgFOs_ydY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.34.0/24
163.5.59.0/24
163.5.66.0/24
163.5.73.0/24
163.5.112.0/23
163.5.118.0/23
163.5.121.0/24
163.5.128.0/23
163.5.133.0/24
163.5.138.0/23
163.5.142.0-163.5.144.255
163.5.146.0/24
163.5.151.0/24
163.5.158.0/24
163.5.160.0/24
163.5.162.0/24
163.5.164.0/24
163.5.167.0/24
163.5.173.0/24
163.5.175.0/24
163.5.178.0/23
163.5.182.0/24
163.5.186.0/24
163.5.189.0/24
163.5.191.0/24
163.5.200.0/23
163.5.203.0-163.5.206.255
163.5.209.0/24
163.5.216.0/24
163.5.218.0/24
163.5.224.0/24
163.5.228.0/24
163.5.233.0/24
163.5.241.0/24
163.5.246.0/24
Signature Algorithm: sha256WithRSAEncryption
99:af:53:2d:4d:59:7a:f5:bf:21:1a:37:ae:05:87:21:6c:0c:
1f:ad:e8:2a:3c:e2:c2:8a:77:c8:15:7c:89:40:c5:4e:e3:00:
fe:20:28:13:86:1c:f2:e8:7c:e0:66:7c:8f:4c:11:87:9c:85:
7e:31:0b:cb:dc:79:e6:ca:be:85:43:95:83:98:2c:f2:32:b5:
bf:98:6b:aa:8c:54:b8:e2:6a:fe:84:27:62:99:f2:78:e0:f7:
9e:e6:82:70:58:73:f7:0a:8b:eb:6a:52:2b:c2:d4:21:29:30:
02:2b:d5:b5:d5:0d:4d:25:0b:9d:ed:f8:2a:05:df:12:e3:11:
63:60:79:cd:b9:bc:b2:26:87:4f:41:b3:db:25:d4:8c:97:b3:
0f:b8:88:26:48:18:96:ad:78:64:c8:27:7b:87:4b:25:96:8e:
c5:a5:00:6d:a0:82:77:d2:3f:c9:ee:90:05:03:d1:2c:96:36:
8d:69:08:ed:93:b9:03:b0:21:32:e1:d8:b2:81:cf:31:bf:57:
d0:f3:f1:08:c6:05:2d:63:79:04:7b:fd:8d:28:f6:71:eb:34:
97:7c:5c:df:c7:07:5b:be:a0:5c:25:25:ee:54:3a:88:0e:4d:
52:4e:ab:f7:73:0c:5f:97:fb:f5:8e:76:4c:9e:bf:cb:eb:8d:
2a:0a:36:c5
-----BEGIN CERTIFICATE-----
MIIF5TCCBM2gAwIBAgISAZZhMz7g2BJpi1i4wgnWmiJqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjUwNDIzMDU1MTEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODc5MjI5NGFkMDg2YjZkNDZmYmJhYmRhYWQwZTAxNGViM2ZjOWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1y+mC5bySpEBMIVP6uHPn9sHMXfs
+teN3hSqL77MXYrG4dF+QaJxOpZjXiC7KlbU8GwDMF0CZf93El9nkO0QFJCKbfCX
846sE+Tf8JIRNS5BYTkdCaN+AfWcKqTlNMPTtCBP4j1NXdxLHzr/ufyq+8nmtA0X
Bmv/4YFm44vG7sFIAVk5Vsm+eTwgtSadLtyzTAzJOUP5w1RTxyKqRp/oFG3qgajT
pMRHyOJJtfrpgWnUAFYzW0tacMd9BrN+g6BDUIuuvJQs9C32CcOG8+ED194kAVm5
2H/aAky0FUnq3a6CJYewN8MN2L59j0RNPu4cRizNbJHUwMzjnw1mQ74NAQIDAQAB
o4IC8TCCAu0wHQYDVR0OBBYEFBh5IpStCGttRvu6varQ4BTrP8nWMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvR0hraWxLMElhMjFHLTdxOXF0RGdGT3NfeWRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBBQYIKwYBBQUHAQcBAf8EgfUwgfIwge8EAgABMIHoAwQA
owUeAwQAowUiAwQAowU7AwQAowVCAwQAowVJAwQBowVwAwQBowV2AwQAowV5AwQB
owWAAwQAowWFAwQBowWKMAwDBAGjBY4DBACjBZADBACjBZIDBACjBZcDBACjBZ4D
BACjBaADBACjBaIDBACjBaQDBACjBacDBACjBa0DBACjBa8DBAGjBbIDBACjBbYD
BACjBboDBACjBb0DBACjBb8DBAGjBcgwDAMEAKMFywMEAKMFzgMEAKMF0QMEAKMF
2AMEAKMF2gMEAKMF4AMEAKMF5AMEAKMF6QMEAKMF8QMEAKMF9jANBgkqhkiG9w0B
AQsFAAOCAQEAma9TLU1ZevW/IRo3rgWHIWwMH63oKjziwop3yBV8iUDFTuMA/iAo
E4Yc8uh84GZ8j0wRh5yFfjELy9x55sq+hUOVg5gs8jK1v5hrqoxUuOJq/oQnYpny
eOD3nuaCcFhz9wqL62pSK8LUISkwAivVtdUNTSULne34KgXfEuMRY2B5zbm8siaH
T0Gz2yXUjJezD7iIJkgYlq14ZMgne4dLJZaOxaUAbaCCd9I/ye6QBQPRLJY2jWkI
7ZO5A7AhMuHYsoHPMb9X0PPxCMYFLWN5BHv9jSj2ces0l3xc38cHW76gXCUl7lQ6
iA5NUk6r93MMX5f79Y52TJ6/y+uNKgo2xQ==
-----END CERTIFICATE-----
Generated at Sat Apr 26 16:50:11 2025 by rpki-client