Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/1-2jFAEzP0ikm5IqBaeZMUg9yiDI.roa
File: 1-2jFAEzP0ikm5IqBaeZMUg9yiDI.roa (raw, json)
Hash identifier: ertzAIdkENZPubOiC5y9CLIX1rkIxtZO6mbfDBQvvEQ=
Subject key identifier: FB:68:C5:00:4C:CF:D2:29:26:E4:8A:81:69:E6:4C:52:0F:72:88:32
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018682A995065A2F60497C7B6683C85287FE
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/1-2jFAEzP0ikm5IqBaeZMUg9yiDI.roa
Signing time: Fri 24 Feb 2023 09:03:17 +0000
ROA not before: Fri 24 Feb 2023 09:03:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 5.105.131.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.156.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.80.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.29.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.214.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:82:a9:95:06:5a:2f:60:49:7c:7b:66:83:c8:52:87:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Feb 24 09:03:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb68c5004ccfd22926e48a8169e64c520f728832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:12:57:b0:2d:d8:25:7c:8d:83:71:c3:12:fa:
a7:cb:b1:14:23:77:03:70:09:cb:4e:de:7b:f3:fd:
ec:98:a9:e9:95:d0:b2:a7:20:7e:f9:43:2d:e5:3d:
a5:df:db:b9:e2:5e:8f:7a:15:47:b5:f4:18:a1:76:
30:be:98:35:06:c8:85:da:2b:26:5c:9d:56:69:3f:
35:0b:f5:23:0c:63:fc:2a:8a:9b:b5:39:58:21:37:
6e:6c:f7:0b:59:65:cf:7a:0c:c5:01:88:f6:48:6a:
b1:76:78:bf:60:76:c7:1c:69:5d:00:a4:a4:b5:e0:
0a:df:ca:7b:86:8e:95:af:1c:e5:ec:46:e7:7f:48:
c5:1f:62:72:23:32:3f:87:da:b2:c3:df:5f:5f:14:
c0:c2:e0:d2:ba:88:9c:ad:8e:f6:8d:ac:ba:e6:4e:
de:1a:d1:e9:ad:e5:b0:c4:d9:e1:a0:f8:83:4b:8d:
f7:ce:60:41:80:35:89:e9:f6:91:e2:7c:90:cf:a4:
a8:39:05:f3:a4:10:bc:dd:19:4d:6c:a2:8f:8f:f4:
9a:db:17:ae:d4:53:f6:8c:0c:fb:ae:7e:d3:d0:3a:
44:d4:cf:27:c4:58:0d:38:0a:72:86:66:51:28:f3:
c9:78:94:35:fd:e1:58:87:0a:76:06:40:6b:d6:f7:
2f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:68:C5:00:4C:CF:D2:29:26:E4:8A:81:69:E6:4C:52:0F:72:88:32
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/1-2jFAEzP0ikm5IqBaeZMUg9yiDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.29.0/24
5.105.80.0/24
5.105.82.0/24
5.105.127.0/24
5.105.131.0/24
5.105.134.0/24
5.105.156.0/23
5.105.168.0/24
5.105.172.0/24
5.105.197.0/24
5.105.214.0/24
5.105.216.0/24
Signature Algorithm: sha256WithRSAEncryption
79:e3:06:bb:11:1f:b8:1c:d9:2c:3d:6e:44:f4:10:61:be:87:
c4:45:58:04:b6:0b:1c:b3:08:f7:c0:e8:83:70:2a:ad:c9:4d:
a6:38:06:8a:5d:fe:34:25:61:c8:d3:7f:2e:5f:3b:b8:d8:94:
dc:9e:49:58:b5:91:5c:5c:cb:d8:42:fa:19:e7:3c:1f:d0:c1:
13:37:c3:de:9e:3f:c0:ec:37:bb:fa:d2:b2:eb:6c:99:ee:29:
4a:cc:05:64:60:3e:61:61:78:8c:20:c1:df:6b:0f:c1:90:76:
73:1f:2b:61:d3:cf:9b:f4:e6:e0:7d:ab:3e:32:e0:04:d9:fb:
d8:4c:ea:1e:b4:00:02:a8:69:a9:90:af:e6:cd:45:ee:98:6f:
fa:12:8e:a6:2f:22:77:8e:76:cd:59:b3:d9:79:ed:a0:1f:20:
43:31:09:e8:a3:9a:4b:09:86:ec:bb:51:ab:f2:e6:d6:41:2b:
cf:78:55:db:2a:7e:27:fe:6b:90:48:44:14:72:78:c7:89:84:
fc:00:a6:6d:20:b1:60:6d:23:ce:89:08:27:04:83:97:d2:d5:
02:c3:af:86:27:e8:12:96:95:d9:76:20:d8:2c:82:c9:a0:d9:
0b:9c:8f:54:f8:94:30:ba:3c:1f:8d:e9:1f:7d:60:f7:0c:62:
d0:7c:be:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:59 2023 by rpki-client on console-ams.rpki-client.org