Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8-IvHZQ-m1_hgcBoFCwbyBLdEIE.roa
File: 8-IvHZQ-m1_hgcBoFCwbyBLdEIE.roa (raw, json)
Hash identifier: AiZQ4QwZyBGJ0q2HoyYJHrUoxY6nciE85ZTeN4Qo4d8=
Subject key identifier: F3:E2:2F:1D:94:3E:9B:5F:E1:81:C0:68:14:2C:1B:C8:12:DD:10:81
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0187800BFDA5D0A710B7ED37F66BC39197F1
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8-IvHZQ-m1_hgcBoFCwbyBLdEIE.roa
Signing time: Fri 14 Apr 2023 13:54:42 +0000
ROA not before: Fri 14 Apr 2023 13:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.104.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.185.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.30.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:80:0b:fd:a5:d0:a7:10:b7:ed:37:f6:6b:c3:91:97:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Apr 14 13:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3e22f1d943e9b5fe181c068142c1bc812dd1081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:23:24:9b:a6:c5:30:89:80:ed:14:7c:a2:a8:
cf:08:71:22:7c:12:76:bc:83:0c:54:24:40:e4:4b:
56:53:15:0f:1f:39:ba:d6:ea:00:e8:94:98:32:e0:
50:cb:f9:a2:65:a3:ec:a5:ce:8d:31:74:40:ac:9e:
1f:02:01:fd:9d:78:4f:07:01:bb:84:da:84:8e:ed:
29:5c:26:4b:c3:ba:d1:ea:e4:f8:b3:e7:76:6a:ed:
ea:5d:4d:25:00:22:5e:6e:60:0e:93:4d:85:ce:ba:
59:d9:a7:fc:55:01:ce:26:c8:60:b9:7f:a6:da:33:
36:d1:14:a9:16:4b:cf:ef:68:69:1b:31:ac:30:7b:
60:43:73:71:8c:a1:e3:69:2b:35:7e:31:63:a9:4e:
34:12:f6:6f:77:6f:23:5e:dd:28:da:e0:fe:11:db:
b5:23:54:e6:2e:d1:20:d9:72:1e:5f:27:e0:b7:2f:
9a:e8:0f:d6:f5:7c:70:e9:af:06:5e:52:c2:69:8a:
59:cd:06:2a:1b:58:96:ca:87:22:be:80:f1:04:0b:
72:97:6f:2d:ad:2f:24:4e:51:cb:68:d9:88:c1:ca:
26:aa:8e:53:66:82:3d:66:02:ce:93:7f:ea:fa:43:
e2:09:72:cb:57:ef:6d:96:05:40:59:4d:0b:86:20:
24:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E2:2F:1D:94:3E:9B:5F:E1:81:C0:68:14:2C:1B:C8:12:DD:10:81
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8-IvHZQ-m1_hgcBoFCwbyBLdEIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.30.0/23
5.105.68.0/23
5.105.82.0/24
5.105.94.0/24
5.105.102.0/24
5.105.104.0/24
5.105.112.0/22
5.105.118.0/24
5.105.124.0/24
5.105.127.0/24
5.105.138.0/23
5.105.142.0/23
5.105.157.0/24
5.105.162.0/24
5.105.165.0/24
5.105.170.0/24
5.105.172.0/24
5.105.185.0-5.105.187.255
5.105.197.0-5.105.199.255
5.105.202.0/23
5.105.206.0/23
5.105.215.0-5.105.216.255
5.105.218.0/24
5.105.228.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:a8:c1:79:d5:e3:97:91:ac:37:a9:66:a7:68:7e:3c:70:8e:
24:59:3d:de:42:0e:86:86:85:86:e5:84:57:8e:fd:29:a5:88:
ab:d7:67:a6:a0:cf:be:8f:d0:87:18:e3:ca:7c:8a:d6:0e:b6:
82:c1:84:77:f2:e3:be:dc:f2:0d:17:90:c0:0e:20:28:5c:55:
17:8f:85:83:09:9d:8f:53:50:2f:93:08:20:a8:8a:c4:42:fa:
5d:4c:e9:3c:22:c4:68:50:5f:0c:06:0d:fc:40:94:ad:74:61:
5e:1b:f2:a9:42:cd:63:82:08:d0:a0:2d:5d:38:c4:f8:f0:c0:
a6:a5:4f:6f:4f:f1:1e:ff:c5:ff:88:c6:d4:34:0a:e6:85:01:
a8:6d:1a:0b:6f:6f:be:c3:2d:44:17:2a:0f:80:3d:dd:0e:17:
d0:c9:d3:87:58:75:4e:12:08:fc:ac:16:eb:39:39:97:4f:ff:
65:c0:27:fb:04:d3:07:a9:81:06:3d:1d:93:b7:ed:57:e3:a7:
5f:23:97:9c:fa:c3:33:df:2a:ba:7e:e6:b2:be:c9:e0:96:d3:
4c:be:55:09:a1:49:77:e6:0e:16:1d:1f:03:e5:65:32:97:10:
3a:7e:74:e8:54:75:3c:4a:47:70:aa:3d:85:7f:fc:d0:5f:89:
dc:bb:5d:5f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:17 2023 by rpki-client on console-fra.rpki-client.org