Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/IsOXTUOY2xjtbjtlf_f1Uoz1URc.roa
File: IsOXTUOY2xjtbjtlf_f1Uoz1URc.roa (raw, json)
Hash identifier: B7WjuAw8ZHYwF7a5PpaAvKHwog/zugcidK+rkqNUj0w=
Subject key identifier: 22:C3:97:4D:43:98:DB:18:ED:6E:3B:65:7F:F7:F5:52:8C:F5:51:17
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0186BBD5364A5A755CFFC076B7171A6FBAB2
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/IsOXTUOY2xjtbjtlf_f1Uoz1URc.roa
Signing time: Tue 07 Mar 2023 11:29:17 +0000
ROA not before: Tue 07 Mar 2023 11:29:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.80.0/24 maxlen: 24
5.105.104.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.226.0/24 maxlen: 24
5.105.19.0/24 maxlen: 24
5.105.32.0/24 maxlen: 24
5.105.42.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bb:d5:36:4a:5a:75:5c:ff:c0:76:b7:17:1a:6f:ba:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Mar 7 11:29:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22c3974d4398db18ed6e3b657ff7f5528cf55117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:20:a3:a2:e6:3e:d4:d5:3c:99:e8:85:c9:89:
1a:71:c8:56:90:0e:4d:a9:46:d7:43:42:f7:87:42:
2e:97:2d:66:c5:26:dd:d5:c6:15:cf:c5:9b:90:d2:
4d:49:b6:5d:9c:c5:f9:04:d5:50:2f:8d:d8:70:d2:
10:d7:07:e1:ab:21:24:13:1c:93:3b:12:1d:cc:36:
89:43:c9:10:10:7f:6c:50:f2:22:a2:16:c8:0e:9a:
88:84:2d:05:12:93:17:b3:54:96:1d:ee:64:e0:8b:
cc:32:9e:62:db:58:4f:b0:6e:75:01:b9:20:3d:41:
0e:a1:94:3c:b3:37:4e:0e:18:48:53:1f:87:db:30:
3b:04:48:ed:55:1d:64:a8:5c:13:0a:5a:5f:df:a4:
6a:2c:54:6b:d8:36:9c:49:16:a4:ba:0c:15:3a:a3:
79:64:c6:c0:39:2a:70:c6:fb:99:86:6e:01:4c:fa:
fe:84:3f:0c:2a:ea:7f:e5:32:01:09:7b:c8:c0:68:
a6:a2:e1:05:ba:1a:66:e0:e8:49:2d:93:af:3a:14:
0f:33:79:19:1f:44:95:07:42:5c:44:1f:a0:08:12:
1e:27:23:70:f5:8b:53:19:db:d9:81:f6:83:53:8f:
c4:40:3e:ec:61:04:74:4f:11:c1:44:65:0b:e4:a5:
50:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C3:97:4D:43:98:DB:18:ED:6E:3B:65:7F:F7:F5:52:8C:F5:51:17
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/IsOXTUOY2xjtbjtlf_f1Uoz1URc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.19.0/24
5.105.32.0/24
5.105.42.0/24
5.105.63.0/24
5.105.68.0/23
5.105.80.0/24
5.105.102.0/24
5.105.104.0/24
5.105.112.0/22
5.105.124.0/24
5.105.138.0/23
5.105.142.0/23
5.105.162.0/24
5.105.165.0/24
5.105.186.0/23
5.105.198.0/23
5.105.202.0/23
5.105.206.0/23
5.105.215.0/24
5.105.226.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.247.0-5.105.249.255
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:e1:65:5f:4b:2d:dc:98:2b:eb:56:76:14:57:b2:3e:96:4e:
a4:d2:5c:d0:42:37:57:68:42:d6:b7:b5:e7:f5:34:aa:93:c3:
80:eb:90:4d:ed:a3:0a:b6:4a:f7:c0:59:57:6d:14:82:83:b6:
2a:8f:52:27:46:64:84:8f:ca:90:bb:f4:09:0d:ad:20:78:e7:
14:0b:11:04:5b:71:d4:6d:85:cf:5e:6d:9f:3b:a5:cc:49:d2:
18:f9:5a:f7:dc:f5:c0:22:94:e3:32:7f:39:39:3a:d2:27:3c:
79:cb:75:e4:cf:e0:84:be:d0:5e:12:c1:aa:ca:0d:d3:8c:63:
93:77:a0:7e:b0:26:29:cc:af:d6:df:ce:35:2b:cb:c3:42:75:
b1:ea:ed:ad:2d:57:4f:c7:b4:32:7c:01:58:b4:e9:ff:80:3d:
de:ae:0f:cb:31:98:22:53:25:82:98:4c:ca:79:a5:36:88:1d:
cd:df:60:e4:e3:9b:a1:53:13:8e:82:4d:af:03:55:92:06:7d:
2f:1f:45:7e:81:47:ef:c3:de:25:5c:64:8b:27:3d:1b:da:31:
ae:fb:ca:71:14:c4:60:ff:5f:33:46:5e:a5:0a:ff:50:0e:ef:
3c:1a:a3:f3:94:95:50:5e:c5:90:15:8a:9f:0c:2c:d2:d2:04:
67:c5:1b:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:59 2023 by rpki-client on console-ams.rpki-client.org