Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/BXXm3CrZzYPgxXMrRh4WUgzC5I0.roa
File: BXXm3CrZzYPgxXMrRh4WUgzC5I0.roa (raw, json)
Hash identifier: MEXTU5YL8zbRQ0/GsEtaPUh3HPm6XKRvDQeuUG91dWQ=
Subject key identifier: 05:75:E6:DC:2A:D9:CD:83:E0:C5:73:2B:46:1E:16:52:0C:C2:E4:8D
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0188928731613C6F0AE370769EF327221140
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/BXXm3CrZzYPgxXMrRh4WUgzC5I0.roa
Signing time: Tue 06 Jun 2023 21:05:13 +0000
ROA not before: Tue 06 Jun 2023 21:05:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.158.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.71.0/24 maxlen: 24
5.105.98.0/24 maxlen: 24
5.105.104.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.188.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.221.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.64.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
5.105.5.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:92:87:31:61:3c:6f:0a:e3:70:76:9e:f3:27:22:11:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jun 6 21:05:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0575e6dc2ad9cd83e0c5732b461e16520cc2e48d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e3:7f:1c:bc:94:64:bc:1e:61:5f:38:f9:9a:
6f:f2:3a:01:c6:af:aa:b0:b8:fd:7d:86:b3:4d:03:
8a:e4:74:77:bd:9b:bc:36:2f:d4:74:a6:1f:3e:8d:
85:60:88:ff:0b:98:9b:af:cd:76:62:94:06:c1:0b:
cd:bc:14:94:9f:3a:f7:f2:c8:00:c5:ae:67:93:f5:
6e:e8:a6:58:98:b0:80:18:81:2d:0b:7f:40:9c:66:
03:c2:e0:71:12:74:1d:2b:c7:75:79:13:96:51:dc:
a0:ba:92:4b:b0:c8:8a:cb:29:f1:e4:3a:62:1d:af:
f7:48:2e:86:9b:c8:36:09:6b:d5:fc:81:a7:70:15:
cb:d0:c5:1a:f5:fc:b7:84:83:24:a5:e1:3e:e7:1b:
b4:34:a8:f3:87:b0:0f:75:fb:0d:2e:f1:eb:63:48:
ae:2e:ff:35:19:3a:0b:a9:b3:47:6e:c1:4b:dd:19:
38:99:cc:07:74:68:6a:18:25:ce:4e:ad:0e:7d:e7:
05:22:a2:ab:86:84:cd:57:91:28:ea:a9:f1:82:75:
8e:73:44:5d:1b:a9:e4:d5:f3:44:a3:d8:74:7d:ef:
63:40:93:fd:af:a7:cc:7f:c2:13:1c:4a:f6:8f:9c:
3b:c0:1c:e4:70:13:b4:af:25:58:e6:76:18:b5:a2:
d3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:75:E6:DC:2A:D9:CD:83:E0:C5:73:2B:46:1E:16:52:0C:C2:E4:8D
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/BXXm3CrZzYPgxXMrRh4WUgzC5I0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.5.0/24
5.105.7.0/24
5.105.31.0/24
5.105.64.0/24
5.105.71.0/24
5.105.98.0/24
5.105.104.0/24
5.105.118.0/24
5.105.158.0/24
5.105.162.0/24
5.105.166.0/24
5.105.170.0/24
5.105.172.0/24
5.105.186.0-5.105.188.255
5.105.198.0/23
5.105.202.0/23
5.105.206.0/24
5.105.215.0-5.105.216.255
5.105.218.0/24
5.105.221.0/24
5.105.228.0/23
5.105.239.0-5.105.240.255
5.105.244.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
15:9a:00:f1:bd:b5:87:a6:74:77:1e:66:9b:c4:ee:f6:9d:46:
d8:7c:1a:d7:1a:01:44:26:7a:a7:46:1b:c3:50:e7:d0:49:b4:
a9:6b:83:03:a7:c1:16:b5:fe:c5:83:ed:0c:40:de:2f:65:74:
54:c7:34:da:06:6e:70:65:ec:95:fd:ac:0e:2f:42:5f:6c:08:
48:26:90:73:37:69:e4:8f:55:a8:ea:9c:14:be:18:60:02:8e:
07:cd:c8:dc:eb:f1:8d:80:08:89:b6:6e:08:3a:2d:a1:f3:fe:
83:38:98:d7:d3:6d:6b:3b:9e:5a:3e:c6:e4:d0:39:47:af:24:
7b:9f:3f:35:5a:bc:22:1b:a0:ec:d2:e0:b0:f4:4a:6b:e5:a3:
a5:05:49:61:29:fa:53:38:78:c9:ff:1b:16:42:27:d6:37:f2:
4c:77:30:55:71:3a:0b:d9:c4:04:bc:ab:71:3d:7a:53:96:ae:
7e:0b:dd:12:d2:46:3e:69:2e:ba:cd:dc:64:60:44:d3:a7:f1:
2d:b4:01:cb:07:42:c0:fa:65:40:9a:ef:eb:62:74:e3:70:a1:
d6:6b:c8:85:ab:ff:0c:90:39:3d:a5:75:19:14:4c:73:2d:3e:
42:a8:87:c1:dc:d4:a5:58:ce:a6:75:a2:6c:f6:6a:ce:65:05:
f2:9e:91:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:59 2023 by rpki-client on console-ams.rpki-client.org