Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/7y7o1rsT4P-Leug-AIFnrDBD518.roa
File: 7y7o1rsT4P-Leug-AIFnrDBD518.roa (raw, json)
Hash identifier: XdDwicPSqGnqw0xDijehvzJsfLl/KdnhqCrgcF4mt78=
Subject key identifier: EF:2E:E8:D6:BB:13:E0:FF:8B:7A:E8:3E:00:81:67:AC:30:43:E7:5F
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01856BE5B5061B27E2AE7D17F2B7CC72E317
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/7y7o1rsT4P-Leug-AIFnrDBD518.roa
Signing time: Sun 01 Jan 2023 05:54:54 +0000
ROA not before: Sun 01 Jan 2023 05:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 5.105.130.0/24 maxlen: 24
5.105.96.0/24 maxlen: 24
5.105.30.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.38.0/24 maxlen: 24
5.105.33.0/24 maxlen: 24
5.105.32.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.39.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.105.184.0/24 maxlen: 24
5.105.200.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
5.105.226.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:b5:06:1b:27:e2:ae:7d:17:f2:b7:cc:72:e3:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 1 05:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef2ee8d6bb13e0ff8b7ae83e008167ac3043e75f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1d:da:05:fe:df:cf:0b:01:7e:f1:49:1c:50:
f2:6e:fe:11:b1:4c:ef:af:d9:e2:a4:25:99:6a:c9:
d9:1f:4b:b2:6b:02:99:44:84:f8:3d:77:4f:16:d3:
b4:d7:08:39:a0:59:85:c8:f2:a9:21:cb:8d:51:94:
f9:11:04:aa:30:c6:04:98:e0:da:94:97:bf:25:dd:
79:5d:52:b2:a1:97:5e:20:73:38:d9:99:d1:b2:37:
38:29:ac:b4:20:8b:3c:49:e3:ca:09:50:60:f5:73:
50:d0:0c:d8:bd:25:3c:12:f3:7a:6e:72:c0:e6:8e:
45:12:28:d5:62:0c:78:7c:57:87:f7:a0:96:00:a9:
b4:f3:2a:de:2e:65:4d:e8:a5:65:f3:3d:c8:a6:81:
7e:a8:cf:8e:40:06:de:f9:ef:75:c0:40:62:02:2c:
41:36:7a:63:75:0e:53:ab:6c:00:10:dd:75:fc:77:
44:47:b1:98:19:08:d9:7d:c7:ed:3a:04:3d:44:1b:
9a:95:70:4f:50:d2:46:21:b4:b8:15:fc:e5:83:3e:
32:7c:93:84:b8:61:53:ee:88:2a:22:e0:51:49:c4:
64:e2:48:07:12:4d:bd:d2:91:e9:47:c2:03:58:b0:
e4:04:16:68:86:b9:33:ba:93:a3:1a:bc:43:2a:91:
48:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:2E:E8:D6:BB:13:E0:FF:8B:7A:E8:3E:00:81:67:AC:30:43:E7:5F
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/7y7o1rsT4P-Leug-AIFnrDBD518.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.7.0/24
5.105.30.0-5.105.33.255
5.105.38.0/23
5.105.63.0/24
5.105.96.0/24
5.105.130.0/24
5.105.184.0/24
5.105.200.0/24
5.105.215.0/24
5.105.226.0/24
5.105.247.0/24
Signature Algorithm: sha256WithRSAEncryption
39:ea:6d:b4:d3:1b:ce:5a:91:d1:4a:6f:8c:21:02:4f:d9:23:
7b:26:1e:31:03:c3:67:47:71:5b:1b:25:a0:2b:69:f3:67:c5:
50:81:2b:d5:17:7a:7c:e9:01:95:eb:f9:c6:10:44:ac:e3:0e:
57:53:e8:c0:b5:2f:47:aa:9c:46:f7:4b:0b:d2:bf:cc:1a:89:
04:9d:b7:0b:18:b3:cd:ce:09:1b:3a:d7:3b:d7:e5:5a:06:56:
2d:4f:4c:6b:68:59:5f:80:55:45:ba:ea:6a:d6:5a:17:9e:53:
f4:28:6f:fc:6d:12:72:52:bc:1b:bc:28:77:00:2f:5e:dd:4f:
83:e5:f2:fa:2e:0e:49:d4:a1:20:89:c7:34:ce:05:c2:e7:9a:
ae:4f:74:40:60:ac:22:19:a4:10:ad:99:6c:e8:0d:d3:4d:5f:
6d:0c:fa:67:c8:e6:28:2a:2b:20:d6:82:ac:cc:bf:35:bc:43:
e3:2e:b4:db:ee:9f:d1:ff:41:24:d7:a8:23:2b:7c:5c:70:11:
7a:88:90:a7:3e:80:07:47:45:54:a2:17:17:f4:7a:68:cb:06:
95:d5:c5:6b:54:92:a3:15:0b:f1:8f:af:f8:06:f9:01:25:03:
16:07:da:b4:32:aa:d8:d6:b5:13:68:8a:ab:6d:f9:70:90:eb:
b3:53:b9:f9
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgISAYVr5bUGGyfirn0X8rfMcuMXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZjhiNDUyNTRlNTQ3MGQxZDRjY2U2ZmI3ZGZkNGQwZDgz
YjVkNTkwHhcNMjMwMTAxMDU1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjJlZThkNmJiMTNlMGZmOGI3YWU4M2UwMDgxNjdhYzMwNDNlNzVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkR3aBf7fzwsBfvFJHFDybv4RsUzv
r9nipCWZasnZH0uyawKZRIT4PXdPFtO01wg5oFmFyPKpIcuNUZT5EQSqMMYEmODa
lJe/Jd15XVKyoZdeIHM42ZnRsjc4Kay0IIs8SePKCVBg9XNQ0AzYvSU8EvN6bnLA
5o5FEijVYgx4fFeH96CWAKm08yreLmVN6KVl8z3IpoF+qM+OQAbe+e91wEBiAixB
NnpjdQ5Tq2wAEN11/HdER7GYGQjZfcftOgQ9RBualXBPUNJGIbS4Ffzlgz4yfJOE
uGFT7ogqIuBRScRk4kgHEk290pHpR8IDWLDkBBZohrkzupOjGrxDKpFIYQIDAQAB
o4ICTTCCAkkwHQYDVR0OBBYEFO8u6Na7E+D/i3roPgCBZ6wwQ+dfMB8GA1UdIwQY
MBaAFN34tFJU5UcNHUzOb7ff1NDYO11ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2It
ODkzOTA2ZmI3ODU4LzEvN3k3bzFyc1Q0UC1MZXVnLUFJRm5yREJENTE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2ItODkzOTA2ZmI3ODU4
LzEvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGMGCCsGAQUFBwEHAQH/BFQwUjBQBAIAATBKAwQABWkHMAwD
BAEFaR4DBAEFaSADBAEFaSYDBAAFaT8DBAAFaWADBAAFaYIDBAAFabgDBAAFacgD
BAAFadcDBAAFaeIDBAAFafcwDQYJKoZIhvcNAQELBQADggEBADnqbbTTG85akdFK
b4whAk/ZI3smHjEDw2dHcVsbJaArafNnxVCBK9UXenzpAZXr+cYQRKzjDldT6MC1
L0eqnEb3SwvSv8waiQSdtwsYs83OCRs61zvX5VoGVi1PTGtoWV+AVUW66mrWWhee
U/Qob/xtEnJSvBu8KHcAL17dT4Pl8vouDknUoSCJxzTOBcLnmq5PdEBgrCIZpBCt
mWzoDdNNX20M+mfI5igqKyDWgqzMvzW8Q+MutNvun9H/QSTXqCMrfFxwEXqIkKc+
gAdHRVSiFxf0emjLBpXVxWtUkqMVC/GPr/gG+QElAxYH2rQyqtjWtRNoiqtt+XCQ
67NTufk=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:17 2023 by rpki-client on console-fra.rpki-client.org