Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8gXlV2IiaO1W_Rk1-sMGD2Nh4xc.roa
File: 8gXlV2IiaO1W_Rk1-sMGD2Nh4xc.roa (raw, json)
Hash identifier: Q8A0GktuoI/qgqqXPLQ2587ql59lPJbVfn2aG4TNv4o=
Subject key identifier: F2:05:E5:57:62:22:68:ED:56:FD:19:35:FA:C3:06:0F:63:61:E3:17
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0188DD38C34C805BE217EB43AD5542BB6339
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8gXlV2IiaO1W_Rk1-sMGD2Nh4xc.roa
Signing time: Wed 21 Jun 2023 09:11:04 +0000
ROA not before: Wed 21 Jun 2023 09:11:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.143.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.117.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.230.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.184.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.19.0/24 maxlen: 24
5.105.18.0/24 maxlen: 24
5.105.36.0/24 maxlen: 24
5.105.59.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.3.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
5.105.5.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dd:38:c3:4c:80:5b:e2:17:eb:43:ad:55:42:bb:63:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jun 21 09:11:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f205e557622268ed56fd1935fac3060f6361e317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e9:be:fe:ce:89:6f:d1:40:ef:0c:81:49:d8:
9b:de:11:6e:2e:c6:4a:21:06:26:25:c9:d9:8d:e6:
e8:68:09:af:06:61:f2:59:a0:79:fe:6f:12:aa:89:
6a:ce:f7:f2:7f:5c:a7:51:ae:9d:0f:c3:39:41:e0:
f9:02:e1:b1:19:c6:b1:6a:f4:3c:2f:f4:7f:d6:46:
a9:dd:bd:22:9a:90:3e:bc:48:c3:a0:77:9e:5d:2a:
af:ba:61:73:70:5e:64:42:cc:c8:fa:23:f2:1f:9a:
2e:93:93:65:cc:d6:c1:c2:28:e4:08:a8:f1:95:81:
dd:89:0e:7e:de:1d:0e:d5:b2:85:d1:a0:d5:fa:11:
f0:fd:b5:a1:92:38:d5:e8:2e:22:1f:13:72:d9:ea:
02:a9:28:b4:06:3f:b2:79:1f:ed:9d:ac:13:a2:ba:
dc:b6:af:ca:e1:7f:77:ad:01:4a:10:5b:f0:c0:c9:
81:64:e8:fb:bd:45:83:11:18:42:56:f1:db:a2:91:
de:a9:6f:89:8d:6e:85:08:79:2b:c6:46:22:64:c1:
1c:dd:53:75:97:59:cb:df:23:4f:e0:c2:22:3c:37:
f9:33:c1:f6:18:a6:ee:cb:6d:0e:66:23:e0:54:a7:
66:fb:d1:ad:ae:85:0f:e0:c7:e7:e6:db:90:d1:68:
11:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:05:E5:57:62:22:68:ED:56:FD:19:35:FA:C3:06:0F:63:61:E3:17
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8gXlV2IiaO1W_Rk1-sMGD2Nh4xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.3.0/24
5.105.5.0/24
5.105.7.0/24
5.105.18.0/23
5.105.36.0/24
5.105.59.0/24
5.105.63.0/24
5.105.94.0/24
5.105.102.0/24
5.105.113.0/24
5.105.117.0-5.105.118.255
5.105.143.0/24
5.105.162.0/24
5.105.170.0/24
5.105.184.0/24
5.105.186.0/23
5.105.198.0/23
5.105.202.0/23
5.105.206.0/24
5.105.215.0-5.105.216.255
5.105.218.0/24
5.105.228.0-5.105.230.255
5.105.239.0-5.105.240.255
5.105.244.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:82:d4:60:2a:47:40:1f:a5:4e:35:5d:ee:6c:ef:1f:39:13:
8c:27:a6:49:be:57:4e:f7:d4:1e:da:b9:02:38:51:fb:ab:fd:
71:f5:ee:7c:7a:1f:f2:1b:af:10:1e:73:2f:90:f2:a0:3b:a9:
75:a1:d5:81:7c:a8:f1:51:38:4d:86:4c:3d:43:04:b6:4f:4e:
9a:4e:8d:a7:67:63:40:03:ca:66:03:ea:50:0e:ae:a1:18:46:
da:e7:82:c5:78:fa:8c:47:18:33:6b:e6:c0:d2:ab:47:c4:68:
50:a4:41:16:fa:b7:b1:bb:ed:2c:19:b8:66:d9:4e:2e:54:12:
8d:62:41:a8:6b:04:e4:46:7d:ab:62:46:84:a8:94:f9:11:8a:
ba:61:4e:5a:cf:7c:f7:7e:aa:c0:ae:c0:24:88:5b:d7:7e:4d:
40:28:93:79:12:3b:7a:82:68:b1:38:4a:08:16:ff:5f:79:b0:
00:fa:0f:56:a7:88:88:c8:ac:5e:e1:26:9e:4a:92:04:3e:7c:
81:b6:59:43:9b:98:de:26:54:b8:2a:5a:19:01:4e:f5:98:d0:
ba:67:21:75:6f:5a:92:7c:21:81:16:77:73:a2:39:5c:67:34:
34:59:b4:8c:24:84:50:b0:65:60:00:0a:1b:f3:e7:fa:fe:7c:
88:19:a6:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:17 2023 by rpki-client on console-fra.rpki-client.org