Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/K3EBM7HGVoLwp9-kNyNFUOOOq1Y.roa
File: K3EBM7HGVoLwp9-kNyNFUOOOq1Y.roa (raw, json)
Hash identifier: POxTRuu8Se2cxscIsGhfuILXhIg6Nqjqj0X2m3xygOY=
Subject key identifier: 2B:71:01:33:B1:C6:56:82:F0:A7:DF:A4:37:23:45:50:E3:8E:AB:56
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0189C74AD9ED9D6C8D183388B422B2A0B66E
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/K3EBM7HGVoLwp9-kNyNFUOOOq1Y.roa
Signing time: Sat 05 Aug 2023 20:01:58 +0000
ROA not before: Sat 05 Aug 2023 20:01:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.122.0/24 maxlen: 24
5.105.131.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.136.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.164.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.169.0/24 maxlen: 24
5.105.75.0/24 maxlen: 24
5.105.101.0/24 maxlen: 24
5.105.111.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.209.0/24 maxlen: 24
5.105.15.0/24 maxlen: 24
5.105.14.0/24 maxlen: 24
5.105.13.0/24 maxlen: 24
5.105.21.0/24 maxlen: 24
5.105.19.0/24 maxlen: 24
5.105.23.0/24 maxlen: 24
5.105.18.0/24 maxlen: 24
5.105.26.0/24 maxlen: 24
5.105.30.0/24 maxlen: 24
5.105.33.0/24 maxlen: 24
5.105.32.0/24 maxlen: 24
5.105.40.0/24 maxlen: 24
5.105.44.0/24 maxlen: 24
5.105.57.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.2.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c7:4a:d9:ed:9d:6c:8d:18:33:88:b4:22:b2:a0:b6:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Aug 5 20:01:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b710133b1c65682f0a7dfa437234550e38eab56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7a:a2:8c:26:5c:9d:d0:1a:01:3f:a5:b6:97:
2c:df:b0:f4:96:46:99:ff:eb:ce:fc:63:26:50:e3:
ed:4c:65:a7:e6:62:66:62:78:48:5c:e4:46:d9:c3:
03:55:1c:58:a2:cf:d1:75:d8:7c:a1:33:bb:d2:ef:
c0:73:91:2c:1b:d7:54:12:1b:96:d2:4c:2f:67:32:
38:52:ee:58:ae:8a:45:30:24:ad:0a:01:c8:94:ca:
4b:2e:70:91:7e:33:5f:b7:d2:98:04:5c:11:51:18:
d5:ed:13:b1:a5:d6:c6:06:01:15:06:ca:d5:02:38:
0b:d3:2a:c2:a5:dc:bb:0f:2b:25:e5:8b:3c:6c:ae:
0c:98:e4:37:96:4d:2e:e5:76:50:9c:a3:5f:86:fb:
f6:27:97:12:d6:44:1b:2d:b0:96:f9:6c:d6:37:fe:
db:cc:54:63:6e:49:53:1e:d7:13:6b:fa:43:23:f4:
01:b8:1f:99:c5:fe:bd:be:1a:f5:51:eb:a7:92:42:
35:72:a6:aa:06:08:cf:cf:25:f9:73:2a:a1:fb:c5:
ee:f6:20:ad:cd:b0:cc:67:9f:b5:21:76:40:f9:57:
7e:75:89:71:4c:d4:8e:7d:9d:a9:be:8b:eb:d9:1c:
bd:d6:1f:ae:3a:0d:d7:f4:88:1b:e2:34:eb:b8:f2:
28:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:71:01:33:B1:C6:56:82:F0:A7:DF:A4:37:23:45:50:E3:8E:AB:56
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/K3EBM7HGVoLwp9-kNyNFUOOOq1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.2.0/24
5.105.13.0-5.105.15.255
5.105.18.0/23
5.105.21.0/24
5.105.23.0/24
5.105.26.0/24
5.105.30.0/24
5.105.32.0/23
5.105.40.0/24
5.105.44.0/24
5.105.57.0/24
5.105.63.0/24
5.105.75.0/24
5.105.101.0/24
5.105.111.0/24
5.105.122.0/24
5.105.127.0/24
5.105.131.0/24
5.105.134.0/24
5.105.136.0/24
5.105.138.0/24
5.105.157.0/24
5.105.162.0/24
5.105.164.0/23
5.105.169.0/24
5.105.209.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.249.0/24
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:06:7e:ce:b4:6d:cf:08:ae:57:5c:11:ec:90:1d:6a:82:f8:
f2:40:fd:c0:a0:a5:28:fb:28:b2:ed:75:d7:e7:3d:f8:4b:df:
35:c5:9b:dc:66:c7:d7:a6:52:1a:ba:82:1d:5e:6e:0f:1b:16:
59:d7:14:8d:52:50:3f:d9:0f:6b:88:94:a1:d4:7f:26:ab:22:
a4:20:0a:da:8e:55:86:db:aa:76:88:f7:b2:6b:b9:bf:68:87:
b1:78:1b:8a:27:2a:f9:cc:de:62:27:f3:92:3f:7f:26:bc:a1:
28:00:22:cd:39:3f:2f:49:52:28:79:5e:bf:48:dd:a4:d5:ef:
3b:bb:d0:b9:12:21:09:6b:b0:40:ed:d0:bf:53:a9:9c:b7:b4:
36:9e:aa:86:17:e0:2b:a4:12:3f:8e:84:bd:61:e7:70:e2:55:
54:49:38:f5:fe:9e:79:4f:32:78:2f:55:aa:30:9e:fc:2f:bb:
85:cc:d3:d7:9c:7b:cb:7f:f1:32:20:fe:4d:20:d4:a4:71:60:
f9:5a:84:0a:94:2b:81:2b:f4:30:4a:1d:a2:af:1f:16:60:26:
4c:e2:6b:e8:79:34:53:f5:3a:91:f9:a9:6d:11:36:5a:b9:45:
74:7c:be:7f:66:a1:df:71:c4:d8:b8:85:07:07:1b:d2:18:97:
8c:02:45:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 06:06:17 2023 by rpki-client on console-ams.rpki-client.org