Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/3c3154-7803-4ec6-bf70-ccdd06563a5f/1/tT8pWNGQl__mof_PLdwU44ODQ94.roa
File: tT8pWNGQl__mof_PLdwU44ODQ94.roa (raw, json)
Hash identifier: ymU5TaJxgolhp2r2nsyB0g/AzWn3WLifqeD7854WpV0=
Subject key identifier: B5:3F:29:58:D1:90:97:FF:E6:A1:FF:CF:2D:DC:14:E3:83:83:43:DE
Certificate issuer: /CN=7028ec9ccd6d861f5f1afdad0046f33c9103ba06
Certificate serial: 018A001EF8E20B5CE1292C3A936E9B0545B1
Authority key identifier: 70:28:EC:9C:CD:6D:86:1F:5F:1A:FD:AD:00:46:F3:3C:91:03:BA:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cCjsnM1thh9fGv2tAEbzPJEDugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/3c3154-7803-4ec6-bf70-ccdd06563a5f/1/tT8pWNGQl__mof_PLdwU44ODQ94.roa
Signing time: Wed 16 Aug 2023 20:52:24 +0000
ROA not before: Wed 16 Aug 2023 20:52:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31721
IP address blocks: 5.191.104.0/24 maxlen: 24
5.191.105.0/24 maxlen: 24
5.191.102.0/24 maxlen: 24
5.191.103.0/24 maxlen: 24
5.191.101.0/24 maxlen: 24
5.191.100.0/24 maxlen: 24
5.191.109.0/24 maxlen: 24
5.191.110.0/24 maxlen: 24
5.191.108.0/24 maxlen: 24
5.191.106.0/24 maxlen: 24
5.191.107.0/24 maxlen: 24
5.191.111.0/24 maxlen: 24
5.191.112.0/24 maxlen: 24
5.191.116.0/24 maxlen: 24
5.191.115.0/24 maxlen: 24
5.191.113.0/24 maxlen: 24
5.191.114.0/24 maxlen: 24
5.191.44.0/24 maxlen: 24
5.191.50.0/24 maxlen: 24
5.191.51.0/24 maxlen: 24
5.191.49.0/24 maxlen: 24
5.191.47.0/24 maxlen: 24
5.191.48.0/24 maxlen: 24
5.191.45.0/24 maxlen: 24
5.191.46.0/24 maxlen: 24
5.191.54.0/24 maxlen: 24
5.191.55.0/24 maxlen: 24
5.191.52.0/24 maxlen: 24
5.191.53.0/24 maxlen: 24
5.191.57.0/24 maxlen: 24
5.191.58.0/24 maxlen: 24
5.191.56.0/24 maxlen: 24
5.191.64.0/24 maxlen: 24
5.191.62.0/24 maxlen: 24
5.191.63.0/24 maxlen: 24
5.191.61.0/24 maxlen: 24
5.191.59.0/24 maxlen: 24
5.191.60.0/24 maxlen: 24
5.191.69.0/24 maxlen: 24
5.191.68.0/24 maxlen: 24
5.191.66.0/24 maxlen: 24
5.191.67.0/24 maxlen: 24
5.191.65.0/24 maxlen: 24
5.191.3.0/24 maxlen: 24
5.191.17.0/24 maxlen: 24
5.191.16.0/24 maxlen: 24
5.191.15.0/24 maxlen: 24
5.191.24.0/24 maxlen: 24
5.191.22.0/24 maxlen: 24
5.191.19.0/24 maxlen: 24
5.191.18.0/24 maxlen: 24
5.191.26.0/24 maxlen: 24
5.191.27.0/24 maxlen: 24
5.191.25.0/24 maxlen: 24
5.191.31.0/24 maxlen: 24
5.191.29.0/24 maxlen: 24
5.191.30.0/24 maxlen: 24
5.191.28.0/24 maxlen: 24
5.191.33.0/24 maxlen: 24
5.191.34.0/24 maxlen: 24
5.191.32.0/24 maxlen: 24
217.168.176.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 28 Aug 2023 13:27:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:00:1e:f8:e2:0b:5c:e1:29:2c:3a:93:6e:9b:05:45:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7028ec9ccd6d861f5f1afdad0046f33c9103ba06
Validity
Not Before: Aug 16 20:52:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b53f2958d19097ffe6a1ffcf2ddc14e3838343de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a0:60:70:a2:ce:46:18:b3:79:ba:18:75:14:
35:5e:cd:b1:8c:31:29:0f:d3:3a:72:97:e4:a2:f0:
7f:27:f2:05:68:c5:8c:08:db:ce:87:ab:b0:0c:fe:
fd:87:3e:df:4d:54:c7:0a:79:19:e4:56:74:b1:f8:
a9:db:5a:31:b0:b5:4f:d8:10:98:06:2f:26:f0:19:
e2:6a:d3:10:21:09:86:e1:d3:65:7b:d4:08:3e:4e:
fb:9b:96:13:8c:93:8c:f8:cf:62:69:49:7b:28:78:
b5:d6:2c:40:a5:3d:02:6a:49:00:cd:c7:f6:18:a8:
65:7a:98:28:a1:2e:8d:43:76:77:c7:ca:d7:a2:95:
51:81:56:a5:7f:1c:7c:26:41:54:c4:00:2b:d7:f8:
09:b2:ee:40:bd:eb:a2:dd:c2:06:4e:24:9b:20:5c:
01:b6:95:1c:d9:87:f3:51:5c:fc:e9:e9:e3:a0:a5:
0d:21:fe:99:ec:a0:06:88:bc:4f:92:63:fa:0d:4b:
5a:fd:35:22:d0:c3:80:df:b0:f6:43:d7:16:4e:13:
43:61:d7:67:ec:d8:42:8b:34:44:c1:d4:16:2e:2f:
2d:25:44:57:4f:d8:d9:c5:91:bf:e9:1e:0a:74:8d:
1c:cb:b2:42:e1:05:b2:0a:d8:01:d0:31:11:4a:37:
ca:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:3F:29:58:D1:90:97:FF:E6:A1:FF:CF:2D:DC:14:E3:83:83:43:DE
X509v3 Authority Key Identifier:
keyid:70:28:EC:9C:CD:6D:86:1F:5F:1A:FD:AD:00:46:F3:3C:91:03:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cCjsnM1thh9fGv2tAEbzPJEDugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/3c3154-7803-4ec6-bf70-ccdd06563a5f/1/tT8pWNGQl__mof_PLdwU44ODQ94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/3c3154-7803-4ec6-bf70-ccdd06563a5f/1/cCjsnM1thh9fGv2tAEbzPJEDugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.191.3.0/24
5.191.15.0-5.191.19.255
5.191.22.0/24
5.191.24.0-5.191.34.255
5.191.44.0-5.191.69.255
5.191.100.0-5.191.116.255
217.168.176.0/20
Signature Algorithm: sha256WithRSAEncryption
34:46:d6:95:85:dc:88:d4:6a:c1:5c:57:10:f5:3f:de:fc:d8:
07:51:bb:34:e7:57:69:8d:67:2b:08:fd:ed:7e:9d:23:11:43:
78:15:8f:4c:2a:69:f2:f0:38:05:ab:7b:48:3a:bd:a0:77:4b:
50:e4:75:40:79:97:bd:d6:1f:d2:2b:af:91:92:1c:75:fa:c2:
a2:06:ca:62:eb:c4:9a:76:56:3f:0c:ff:61:3f:a9:3e:86:d0:
9b:e2:06:f8:44:a6:90:56:04:67:39:cc:8d:de:d0:23:57:e3:
87:4c:f1:2d:20:ed:78:fb:61:5b:7f:74:4c:88:78:b2:92:34:
51:e5:75:8d:c2:d5:be:d1:7a:25:21:d5:d6:68:2d:76:ae:2b:
9d:0e:c3:b5:2f:30:83:dd:ee:a5:ca:c4:50:99:e6:87:92:aa:
be:58:36:87:d5:59:0f:c6:02:c5:09:16:04:70:59:15:90:50:
67:18:5b:a8:af:1c:4e:93:db:24:03:4e:0d:b8:04:c7:64:1d:
22:43:5d:10:a1:ca:18:8f:9e:0c:ed:6a:12:52:ea:f4:51:a4:
b3:c8:1e:33:39:5e:4e:06:02:9f:aa:2f:49:21:5a:0f:0d:9e:
b2:0b:a4:1b:86:0e:1c:61:78:a0:72:11:0b:a1:bf:d2:23:67:
8d:20:e7:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:36 2024 by rpki-client on console-fra.rpki-client.org