Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/GaYq2ClBWNO9eeIx2ns-vv8UzCw.roa
File: GaYq2ClBWNO9eeIx2ns-vv8UzCw.roa (raw, json)
Hash identifier: lRCsZ3mfzJnkyq7nDmOv/nKRJnnkZMINv64TOraleiE=
Subject key identifier: 19:A6:2A:D8:29:41:58:D3:BD:79:E2:31:DA:7B:3E:BE:FF:14:CC:2C
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01898C63A1A1B232169EA5DE7CB4728D5338
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/GaYq2ClBWNO9eeIx2ns-vv8UzCw.roa
Signing time: Tue 25 Jul 2023 09:31:26 +0000
ROA not before: Tue 25 Jul 2023 09:31:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.117.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.200.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.21.0/24 maxlen: 24
5.105.18.0/24 maxlen: 24
5.105.37.0/24 maxlen: 24
5.105.36.0/24 maxlen: 24
5.105.49.0/24 maxlen: 24
5.105.47.0/24 maxlen: 24
5.105.45.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jul 2023 12:59:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:8c:63:a1:a1:b2:32:16:9e:a5:de:7c:b4:72:8d:53:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jul 25 09:31:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19a62ad8294158d3bd79e231da7b3ebeff14cc2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:df:23:ab:e5:63:21:80:1f:a5:6d:bb:6e:72:
03:b4:c8:7f:52:cd:de:59:14:65:33:69:8a:b4:55:
c3:42:15:0d:3a:37:9b:c9:93:1e:a1:5b:84:a9:f1:
f0:ac:f8:0f:3f:b4:d2:ba:32:68:e0:ab:f6:50:32:
f5:a5:e1:05:ac:7e:08:10:0c:53:b0:7e:64:84:4a:
ab:9b:b2:5a:70:75:ca:5e:69:da:12:dd:01:ee:b7:
13:ed:5c:45:58:7e:03:d0:82:ee:28:b8:55:a2:4a:
ac:d7:fd:33:55:27:7b:a9:a1:49:68:47:98:40:3f:
87:5d:bb:72:c7:d2:01:75:8e:38:c3:9d:3f:67:e0:
da:77:6f:a6:2e:ea:c7:88:95:ed:92:29:3c:2c:21:
fc:b8:ed:97:29:2e:c8:03:7e:2f:02:b3:d0:29:be:
88:57:b0:7f:2f:28:8b:de:52:c5:fc:64:e0:aa:d7:
c4:90:1e:d8:fa:4b:ef:7c:d4:18:ba:54:fa:0b:73:
8f:e0:6d:18:d9:1a:e3:ea:02:d4:7d:97:23:a6:dc:
f4:5b:ec:4c:dd:e5:c4:97:4b:f6:4d:43:a2:79:2b:
20:ff:2c:e9:d6:98:fe:6c:7f:a2:ad:71:bc:ec:20:
65:b5:95:57:e3:8e:71:07:a8:80:ad:2d:86:cd:28:
79:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:A6:2A:D8:29:41:58:D3:BD:79:E2:31:DA:7B:3E:BE:FF:14:CC:2C
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/GaYq2ClBWNO9eeIx2ns-vv8UzCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.7.0/24
5.105.18.0/24
5.105.21.0/24
5.105.36.0/23
5.105.45.0/24
5.105.47.0/24
5.105.49.0/24
5.105.94.0/24
5.105.102.0/24
5.105.113.0/24
5.105.117.0-5.105.118.255
5.105.124.0/24
5.105.127.0/24
5.105.139.0/24
5.105.143.0/24
5.105.157.0/24
5.105.162.0/24
5.105.166.0/24
5.105.170.0/24
5.105.186.0/23
5.105.198.0-5.105.200.255
5.105.202.0/23
5.105.216.0/24
5.105.218.0/24
5.105.228.0/23
5.105.239.0-5.105.240.255
5.105.244.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
20:f7:68:c7:bc:a8:58:cb:23:d7:a7:71:e5:83:7b:27:10:c1:
fe:71:c7:79:61:64:1b:f3:45:92:c1:3f:68:91:70:4c:38:76:
0d:59:30:e9:b7:43:1a:bb:77:ec:50:74:8d:06:3d:49:0e:ed:
e3:d8:a1:81:66:25:ee:1b:23:ac:f1:22:9a:0b:70:ee:20:09:
0b:6b:56:42:56:c3:6b:a5:af:74:ff:c2:cb:0b:14:40:78:d1:
c0:bf:b9:40:6d:d5:d8:9e:9b:af:02:4f:17:bc:fc:dd:7a:d7:
22:0b:82:a6:37:99:b3:57:3a:1f:a6:28:3d:06:3f:2b:25:4a:
dc:06:e0:56:d0:dd:d9:59:47:d9:10:b0:ae:75:fd:3a:a4:ae:
0a:0e:63:58:35:2f:c3:0b:af:70:57:f8:82:0d:77:59:11:6d:
30:8c:5e:e1:dc:64:b0:da:e3:8e:dc:6a:a3:be:7e:a1:8b:e1:
6d:8c:9c:70:ca:9a:ba:d9:cb:de:09:3a:a5:b5:fa:d3:78:46:
18:1f:28:59:8f:2e:75:37:12:46:a0:17:ee:da:bd:ac:08:e4:
44:79:51:ad:c1:2c:eb:84:78:36:17:c3:3e:ea:af:a3:ec:92:
89:ad:96:b2:97:58:79:e8:f0:cc:e8:75:1f:2e:28:03:e5:aa:
7e:c5:b6:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:56 2024 by rpki-client on console-ams.rpki-client.org