Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8yqu-MuuQUb04tqgThAsg746i_Q.roa
File: 8yqu-MuuQUb04tqgThAsg746i_Q.roa (raw, json)
Hash identifier: Y9DQfGYX0BA4XuxmCQvKSRRB7Pz1pDK1rxGKNXYmv9w=
Subject key identifier: F3:2A:AE:F8:CB:AE:41:46:F4:E2:DA:A0:4E:10:2C:83:BE:3A:8B:F4
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01864A2D9C9199F08286A8E0CB476EFA0659
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8yqu-MuuQUb04tqgThAsg746i_Q.roa
Signing time: Mon 13 Feb 2023 09:49:08 +0000
ROA not before: Mon 13 Feb 2023 09:49:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.122.0/23 maxlen: 23
5.105.130.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.74.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.79.0/24 maxlen: 24
5.105.95.0/24 maxlen: 24
5.105.103.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.108.0/24 maxlen: 24
5.105.106.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.252.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.195.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.204.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.38.0/24 maxlen: 24
5.105.39.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4a:2d:9c:91:99:f0:82:86:a8:e0:cb:47:6e:fa:06:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Feb 13 09:49:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f32aaef8cbae4146f4e2daa04e102c83be3a8bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9a:14:a3:ee:2d:f3:c4:27:f0:d1:4e:c0:9d:
7d:af:71:2c:6d:dc:f8:9d:77:d8:76:8c:40:14:f7:
8d:a9:50:f3:21:db:f2:18:f9:c1:c0:4d:de:20:ff:
86:cb:2c:97:1a:8e:67:38:ce:c4:e0:1f:a7:d6:dc:
e2:67:77:d1:ce:ba:08:45:76:22:68:20:60:a1:e3:
41:f0:e9:d4:89:d7:88:b6:29:63:3b:a8:02:ae:fb:
9d:20:c4:a1:3e:6b:2c:64:37:e5:db:96:20:6b:ca:
79:b7:59:c9:cf:b3:b8:81:70:6e:00:5c:f9:d8:a9:
48:79:50:38:fb:50:41:2d:d8:63:e4:13:84:78:6b:
6c:1d:2a:fe:fa:2d:b5:7f:85:92:6c:9a:5b:4c:65:
28:ab:81:7a:45:4a:42:48:ee:29:bc:ab:9c:79:e8:
11:54:da:66:88:67:5f:4d:b9:6d:62:fa:3a:32:4f:
cf:71:59:9b:77:17:56:a4:fe:7d:6c:7b:f7:83:c9:
e4:5e:2f:a1:ec:58:54:a6:58:09:ea:ff:e1:ba:5a:
a1:fa:55:52:99:2a:b0:44:d6:ae:5a:24:43:ae:61:
f2:cc:d3:08:96:4e:20:74:10:dd:e7:a6:c8:12:bd:
90:c9:b5:c9:74:a7:15:96:57:c4:c6:4b:1f:21:07:
4d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:2A:AE:F8:CB:AE:41:46:F4:E2:DA:A0:4E:10:2C:83:BE:3A:8B:F4
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/8yqu-MuuQUb04tqgThAsg746i_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.12.0/24
5.105.38.0/23
5.105.68.0/23
5.105.74.0/24
5.105.79.0/24
5.105.82.0/24
5.105.95.0/24
5.105.103.0/24
5.105.106.0/24
5.105.108.0/24
5.105.112.0/22
5.105.122.0/23
5.105.130.0/24
5.105.138.0/23
5.105.142.0/23
5.105.162.0/24
5.105.165.0/24
5.105.172.0/24
5.105.186.0/23
5.105.195.0/24
5.105.198.0/23
5.105.202.0-5.105.204.255
5.105.206.0/23
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.105.252.0/24
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:fb:7a:9d:54:ae:4d:f8:ec:ea:56:58:6b:9f:b1:e5:3c:6a:
56:1b:2c:31:c0:f2:29:22:d2:dd:86:06:0b:8f:80:c5:af:94:
80:a9:87:9c:1b:db:68:aa:3e:f2:51:69:ac:14:2e:87:32:23:
7e:40:08:2f:c7:e9:e0:52:95:4d:0f:20:3f:ea:e6:db:e9:4a:
b5:f7:66:4e:c8:f6:33:e0:ed:9a:d8:98:70:b2:08:c1:a6:3f:
f2:5f:30:1c:5d:7c:24:9a:66:cd:13:83:0f:36:a3:b2:9b:b9:
4e:6e:04:b8:c0:64:88:ef:e3:db:00:43:31:c6:14:ff:cf:55:
3a:fc:11:9a:d6:92:7a:8e:6f:78:0f:ba:71:f1:6e:1a:e3:27:
0f:28:33:40:89:1a:68:0c:b7:98:62:75:fc:83:fe:dd:35:9e:
85:dc:a4:7f:8b:40:18:1b:a7:9a:b9:27:b7:d5:3c:af:72:45:
4a:2f:fb:76:35:40:84:e4:ae:4f:22:38:00:42:b8:28:e0:8a:
c4:bc:7d:41:04:db:32:dc:75:e0:bd:de:31:fd:0e:f4:a7:14:
7a:f7:5d:e6:ff:d5:eb:b1:e2:2a:86:f4:b0:6d:fc:7b:c4:57:
60:63:88:82:71:ca:b0:8d:d6:22:d8:a3:76:06:c9:e3:a6:47:
6b:80:67:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:17 2023 by rpki-client on console-fra.rpki-client.org