Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3U0Kgv6f_JN451eYB82LWy6ylEg.roa
File: 3U0Kgv6f_JN451eYB82LWy6ylEg.roa (raw, json)
Hash identifier: eTrscirCdC5urpaNr3RgJal6lvcWLVb5OvRRC+twJGY=
Subject key identifier: DD:4D:0A:82:FE:9F:FC:93:78:E7:57:98:07:CD:8B:5B:2E:B2:94:48
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01869D7D990473F084489ABA9FBF9CBBDA63
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3U0Kgv6f_JN451eYB82LWy6ylEg.roa
Signing time: Wed 01 Mar 2023 14:04:59 +0000
ROA not before: Wed 01 Mar 2023 14:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.226.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.19.0/24 maxlen: 24
5.105.32.0/24 maxlen: 24
5.105.42.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:7d:99:04:73:f0:84:48:9a:ba:9f:bf:9c:bb:da:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Mar 1 14:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd4d0a82fe9ffc9378e7579807cd8b5b2eb29448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d3:97:f3:e2:e7:ef:21:77:d2:c6:af:64:e4:
eb:a5:df:ad:eb:07:d1:b8:86:49:7b:e1:b1:72:a2:
ef:5b:40:2d:a1:f5:29:62:4c:84:e5:60:d4:06:d1:
0a:a4:79:5e:16:db:12:63:3c:37:db:70:3b:2c:c9:
52:73:f6:0e:bf:ab:fe:f8:eb:60:e9:d9:2f:11:8d:
42:58:61:c2:e3:06:ad:90:71:ad:f4:05:3e:14:f2:
52:eb:e3:43:bf:b2:fe:e7:ea:e9:d1:b4:03:3c:f6:
50:8c:39:13:ed:8b:4d:48:0e:e5:d3:8f:f3:03:e6:
04:32:39:59:55:37:e5:d0:d5:e8:5b:ef:e7:4b:4c:
8a:12:aa:c9:54:96:75:25:99:62:e0:fa:b4:f4:89:
6f:e3:93:06:f9:2e:3a:6b:0f:2d:55:1d:19:09:44:
16:ec:a1:00:bb:b8:80:b7:65:b9:71:66:a5:e0:29:
91:a9:c1:fc:05:b4:76:70:80:a2:7a:f6:e3:5c:77:
cc:04:2d:33:08:45:f7:2a:ae:15:ef:34:99:e0:1a:
72:03:43:f7:c7:ce:80:c6:9f:84:cf:e4:2c:38:29:
94:08:cf:fc:79:38:1e:96:65:22:ba:ba:4b:f9:96:
20:9b:0c:65:6c:bc:20:fe:08:de:a1:05:d0:7a:d6:
bd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:4D:0A:82:FE:9F:FC:93:78:E7:57:98:07:CD:8B:5B:2E:B2:94:48
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3U0Kgv6f_JN451eYB82LWy6ylEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.12.0/24
5.105.19.0/24
5.105.32.0/24
5.105.42.0/24
5.105.63.0/24
5.105.68.0/23
5.105.112.0/22
5.105.124.0/24
5.105.138.0/23
5.105.142.0/23
5.105.162.0/24
5.105.165.0/24
5.105.186.0/23
5.105.198.0/23
5.105.202.0/23
5.105.206.0/23
5.105.215.0/24
5.105.226.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.247.0-5.105.249.255
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
50:91:d8:0d:0f:32:90:a2:e6:91:f7:87:65:1e:45:59:87:90:
b5:97:95:54:87:fb:54:c0:5b:2a:9c:ce:a5:8d:ba:0c:ab:96:
c8:7d:4f:4f:c1:b3:65:46:82:23:50:5d:2e:80:5a:a3:b0:65:
51:0d:19:5d:3d:fe:a5:e3:24:eb:d1:92:79:ef:33:b3:ed:32:
be:07:65:d0:58:72:fc:62:af:b9:ae:42:01:e7:3a:ad:ea:d1:
f2:dc:22:ff:22:b2:a7:c9:c7:6e:e7:48:70:2b:0e:a8:14:1a:
86:e0:1d:03:00:43:c6:4a:d1:31:d5:cc:63:94:df:c9:3b:24:
89:fc:74:f3:a9:2b:91:40:54:29:5a:d0:3f:bd:15:8a:13:da:
25:b5:39:af:13:9f:c1:21:19:28:ae:64:2a:b5:c8:ed:6d:8f:
35:cd:2d:ac:54:0f:7e:13:ba:01:3c:3c:05:5b:1e:d8:3a:89:
7a:48:fb:8c:22:34:b6:ad:7e:37:d2:00:83:1d:66:6d:c9:f3:
f3:df:8a:e5:e7:51:34:af:c6:c4:b8:66:06:57:c5:0f:03:db:
d3:3b:fb:0a:b9:e0:a9:90:e8:a8:cd:b7:f1:67:af:4e:b6:a6:
74:cd:62:24:e7:f3:81:fe:ea:48:ce:bf:9e:b3:74:c4:6e:00:
d8:64:fe:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:16 2023 by rpki-client on console-fra.rpki-client.org