Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/2ZEjwFL-9J1ZfABukTAfenuYrOY.roa
File: 2ZEjwFL-9J1ZfABukTAfenuYrOY.roa (raw, json)
Hash identifier: jbX9eftqy6CSggDiH82SD3zwXBhBleqBHBOfeUTW6eo=
Subject key identifier: D9:91:23:C0:52:FE:F4:9D:59:7C:00:6E:91:30:1F:7A:7B:98:AC:E6
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0185F26FBFE2CB5CFDE44E782CCDB7453598
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/2ZEjwFL-9J1ZfABukTAfenuYrOY.roa
Signing time: Fri 27 Jan 2023 08:54:47 +0000
ROA not before: Fri 27 Jan 2023 08:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 193.46.210.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.125.0/24 maxlen: 24
5.105.123.0/24 maxlen: 24
5.105.122.0/24 maxlen: 24
5.105.131.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.156.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.74.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.81.0/24 maxlen: 24
5.105.80.0/24 maxlen: 24
5.105.79.0/24 maxlen: 24
5.105.95.0/24 maxlen: 24
5.105.103.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.108.0/24 maxlen: 24
5.105.106.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
5.105.195.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.204.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.214.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.10.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f2:6f:bf:e2:cb:5c:fd:e4:4e:78:2c:cd:b7:45:35:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 27 08:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d99123c052fef49d597c006e91301f7a7b98ace6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:81:15:1a:54:0c:d8:4e:d0:f8:da:4d:74:e2:
c2:9d:db:02:fc:2e:30:ce:0f:86:8e:10:4a:52:dc:
2c:82:84:17:c1:16:5c:dd:fc:62:d8:b2:3e:48:d9:
dc:b7:04:08:46:fb:95:1d:73:d1:b0:de:93:34:e3:
15:44:e0:50:1c:37:e3:e8:7b:89:d9:69:4b:4e:8f:
9b:8b:39:e2:18:5f:7d:62:89:2c:a2:b8:97:e7:56:
da:bd:df:4a:1e:6d:4a:32:b7:9b:2c:a6:fe:2c:c0:
6d:33:2e:da:29:8b:83:dd:bd:79:45:eb:1e:0b:a2:
35:06:d0:c8:81:62:06:e1:bb:b3:73:5d:8c:59:27:
c5:07:4c:05:f9:4e:96:2a:7c:f4:9f:db:b5:18:24:
43:69:65:ea:3c:d5:11:1f:98:82:21:2b:87:22:e0:
12:3f:3a:1b:d5:70:f5:86:08:7b:9f:5a:ae:0e:f3:
e2:9f:0c:9b:3b:f0:0c:f8:d3:cd:34:d5:b4:d2:0c:
97:02:f5:77:b0:08:ad:d1:c7:71:1b:2a:63:81:97:
d6:5d:60:cf:15:c0:ef:41:8c:bc:21:9a:95:d3:7d:
ba:26:aa:0c:63:71:b1:85:fd:ea:10:c5:0d:28:45:
37:9b:92:89:ec:74:14:2e:2e:c4:df:a7:31:5c:b1:
a9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:91:23:C0:52:FE:F4:9D:59:7C:00:6E:91:30:1F:7A:7B:98:AC:E6
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/2ZEjwFL-9J1ZfABukTAfenuYrOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.10.0/24
5.105.12.0/24
5.105.68.0/23
5.105.74.0/24
5.105.79.0-5.105.82.255
5.105.95.0/24
5.105.103.0/24
5.105.106.0/24
5.105.108.0/24
5.105.112.0/22
5.105.122.0/23
5.105.125.0/24
5.105.127.0/24
5.105.131.0/24
5.105.134.0/24
5.105.138.0/23
5.105.142.0/23
5.105.156.0/24
5.105.162.0/24
5.105.165.0-5.105.166.255
5.105.168.0/24
5.105.172.0/24
5.105.186.0/23
5.105.195.0/24
5.105.197.0-5.105.199.255
5.105.202.0-5.105.204.255
5.105.206.0/23
5.105.214.0/24
5.105.216.0/24
5.105.229.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.247.0-5.105.249.255
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:59:15:fa:8e:d9:80:df:ec:7f:82:9e:4a:c2:8c:99:b4:50:
aa:7f:c4:a2:2a:97:42:75:fb:ec:d6:09:f2:3d:9d:7f:e2:6e:
5c:b5:46:1d:0c:2f:8f:d0:d8:d9:c7:02:89:95:0d:ae:9c:dc:
4a:80:c6:ea:b0:fd:cb:15:ad:e3:2f:6e:7e:c4:3f:da:b2:95:
8e:c6:c0:4f:02:d7:1d:ea:8f:eb:cc:68:8f:62:05:9a:72:34:
5c:6e:7a:03:a9:3d:aa:98:b5:7c:15:9b:64:c0:02:68:8e:1f:
50:03:37:8e:dd:70:c6:3b:05:6c:fe:37:7d:cb:68:03:59:68:
de:fc:c4:f5:b2:cb:4a:9c:9d:43:d7:62:fa:0a:1c:c2:59:86:
54:96:6a:d8:c2:2c:7b:cc:d8:da:8f:f5:5f:39:fc:18:e3:0c:
49:00:58:84:1d:91:68:ed:42:ea:6e:0b:c4:34:31:bd:fa:ad:
23:bf:1d:8c:06:53:6b:b0:81:c0:9b:4f:dd:bf:0f:f2:63:c2:
b3:c2:44:be:cb:63:2b:46:93:a6:cb:14:b8:06:91:8e:e6:03:
e6:97:96:83:f2:cc:77:cb:1b:20:1d:6a:b9:3c:cc:4e:c8:9f:
97:a5:7b:b0:dc:dc:2f:85:9d:35:86:2b:ba:47:d0:ae:06:6d:
28:6f:a1:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:59 2023 by rpki-client on console-ams.rpki-client.org