Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/BqcFWa9JfaAF64Mj4r7V0F0jM8k.roa
File: BqcFWa9JfaAF64Mj4r7V0F0jM8k.roa (raw, json)
Hash identifier: TNPwLnMEaFEfJijMJ+jABIjulIGJLoeVodf8X1j9Myc=
Subject key identifier: 06:A7:05:59:AF:49:7D:A0:05:EB:83:23:E2:BE:D5:D0:5D:23:33:C9
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01879E9783001A3A0903796F8DD7489DDED4
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/BqcFWa9JfaAF64Mj4r7V0F0jM8k.roa
Signing time: Thu 20 Apr 2023 12:15:42 +0000
ROA not before: Thu 20 Apr 2023 12:15:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 5.105.168.0/24 maxlen: 24
5.105.65.0/24 maxlen: 24
5.105.81.0/24 maxlen: 24
5.105.96.0/24 maxlen: 24
5.105.230.0/24 maxlen: 24
5.105.19.0/24 maxlen: 24
5.105.24.0/24 maxlen: 24
5.105.25.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.33.0/24 maxlen: 24
5.105.40.0/24 maxlen: 24
5.105.43.0/24 maxlen: 24
5.105.50.0/24 maxlen: 24
5.105.57.0/24 maxlen: 24
5.105.184.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:97:83:00:1a:3a:09:03:79:6f:8d:d7:48:9d:de:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Apr 20 12:15:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06a70559af497da005eb8323e2bed5d05d2333c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:30:f0:78:53:4d:07:11:89:da:f1:d1:13:2d:
58:31:15:41:24:e8:14:81:35:58:f2:0f:ab:c5:5f:
e1:07:06:0a:0b:4c:6b:d4:1c:bf:7d:14:b7:e0:75:
a9:ec:e3:d7:10:b6:d8:ab:65:73:a3:c3:8e:cb:e8:
6f:43:68:08:1f:bc:5d:01:94:df:ca:e1:47:a4:f4:
5c:e6:49:1c:07:25:fe:5c:39:28:37:5d:d5:24:46:
ce:7c:1d:5e:6f:32:1c:8a:a6:25:60:79:c4:15:24:
e4:99:ad:5a:d6:41:9c:76:fc:df:de:15:ca:d0:fd:
ec:4c:30:bd:18:f0:50:b5:c4:0c:b4:d9:7b:7b:26:
65:e5:79:33:bb:85:46:1f:4b:b9:ff:7b:87:4f:7c:
f6:50:00:5b:ca:27:95:d3:69:51:22:98:73:bc:00:
15:45:b1:a7:83:a0:1d:2e:64:53:25:d0:b5:4f:42:
7a:74:1c:50:65:04:cb:32:82:22:14:9a:12:3e:df:
d1:64:da:f7:08:3c:43:de:60:cc:0d:9b:ef:30:5a:
59:f3:c5:38:34:70:50:62:4c:40:3f:8e:60:7e:86:
ce:a1:72:04:e4:86:83:38:73:60:ff:9d:6b:45:09:
d3:8f:5d:c4:e1:e2:86:54:60:21:98:b9:25:e8:ce:
91:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A7:05:59:AF:49:7D:A0:05:EB:83:23:E2:BE:D5:D0:5D:23:33:C9
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/BqcFWa9JfaAF64Mj4r7V0F0jM8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.19.0/24
5.105.24.0/23
5.105.33.0/24
5.105.40.0/24
5.105.43.0/24
5.105.50.0/24
5.105.57.0/24
5.105.65.0/24
5.105.81.0/24
5.105.96.0/24
5.105.168.0/24
5.105.184.0/24
5.105.230.0/24
5.105.247.0/24
Signature Algorithm: sha256WithRSAEncryption
01:99:6c:85:c0:50:3b:53:28:b5:16:4c:1f:43:2a:00:49:61:
a8:7b:90:f4:a8:94:e2:88:d2:4a:39:d8:9b:b1:3c:7b:65:fb:
68:b1:e7:e5:4e:4c:2f:a3:09:80:92:1a:74:a7:d1:d2:16:7a:
ee:1b:a5:9b:b1:49:35:22:79:e4:48:a1:48:0a:35:31:fd:c3:
d0:48:ef:a1:0e:c4:08:65:21:7f:65:6b:c0:cd:4e:c5:16:e0:
64:59:40:24:6f:25:8a:04:bb:a7:1f:07:8b:05:ed:59:f5:49:
5d:30:1c:c9:be:75:16:50:8e:2d:84:a3:b4:03:84:bb:09:d8:
3b:ab:83:56:1f:69:3e:bd:76:7a:6e:9a:f4:58:12:b0:18:09:
bc:8f:2d:10:31:68:4f:9d:1a:1e:71:51:10:53:5f:d5:1b:40:
1b:4f:53:8e:3d:d0:d0:9e:c5:43:d6:8b:d9:9b:63:95:94:ee:
2b:cd:e8:5a:78:98:10:f8:cf:86:77:ea:28:0c:81:99:2b:30:
94:c8:05:50:a0:61:af:23:95:c1:e6:c4:a1:e7:f5:3c:15:46:
96:28:ca:f4:87:85:20:a8:1d:a4:2f:0d:63:57:3b:fa:2d:2f:
2a:31:e8:b2:1f:67:d4:aa:c9:63:58:8c:22:14:6b:41:ae:3f:
7a:1a:62:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:17 2023 by rpki-client on console-fra.rpki-client.org