Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/MeIAff8bY4QXSxZaLRvGmqLfqys.roa
File: MeIAff8bY4QXSxZaLRvGmqLfqys.roa (raw, json)
Hash identifier: thnstZkPX/YJNfOqq7Fk6GqM6qFpzrqnYwlMCALxx3Q=
Subject key identifier: 31:E2:00:7D:FF:1B:63:84:17:4B:16:5A:2D:1B:C6:9A:A2:DF:AB:2B
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0185A0D7DE8A319C1A801C049EC242668D30
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/MeIAff8bY4QXSxZaLRvGmqLfqys.roa
Signing time: Wed 11 Jan 2023 12:39:39 +0000
ROA not before: Wed 11 Jan 2023 12:39:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.129.0/24 maxlen: 24
5.105.135.0/24 maxlen: 24
5.105.98.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.105.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.238.0/24 maxlen: 24
5.105.241.0/24 maxlen: 24
5.105.27.0/24 maxlen: 24
5.105.252.0/24 maxlen: 24
5.105.253.0/24 maxlen: 24
5.105.188.0/24 maxlen: 24
5.105.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a0:d7:de:8a:31:9c:1a:80:1c:04:9e:c2:42:66:8d:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 11 12:39:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31e2007dff1b6384174b165a2d1bc69aa2dfab2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:06:69:aa:99:8c:45:37:4c:87:fa:3f:2e:d3:
23:b9:35:58:77:0d:70:8f:f6:45:30:eb:b2:11:ac:
97:3c:ee:53:ce:75:ee:6e:63:78:bf:dd:e9:68:8a:
9a:2a:36:6d:16:45:be:94:a2:ec:68:2a:a1:55:c5:
d1:56:01:7d:5b:0b:99:cc:05:ef:23:8c:23:71:cb:
73:e2:09:61:a9:6c:7d:03:c3:52:69:82:37:e4:c4:
1c:4e:1e:be:db:a6:34:c8:ce:e5:5c:51:87:b5:93:
97:f9:6d:f3:2b:a9:1a:8f:37:e9:bf:4e:96:e9:86:
65:6a:de:26:5c:50:f0:39:7b:58:48:fc:a5:9e:33:
8a:77:d9:d7:cd:ab:fd:4e:42:ba:97:b9:b2:b8:8d:
6e:b5:4e:e7:4c:b7:8d:fb:c9:56:34:ea:ed:60:ba:
bd:bd:29:07:94:61:88:4f:e0:e8:31:e4:49:93:9d:
10:7e:ba:94:bc:4b:f6:81:a6:b8:91:63:e6:72:c6:
c9:bd:03:e0:e2:6f:b2:1e:7e:7a:a9:4a:87:5c:df:
19:5e:2e:08:cc:88:84:0d:b6:b0:75:00:14:53:69:
85:c1:36:47:49:f8:cd:d2:28:bd:eb:2b:3f:56:73:
41:e4:5a:8f:e0:a2:56:cc:b4:9e:11:0e:74:de:5e:
12:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E2:00:7D:FF:1B:63:84:17:4B:16:5A:2D:1B:C6:9A:A2:DF:AB:2B
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/MeIAff8bY4QXSxZaLRvGmqLfqys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.27.0/24
5.105.94.0/24
5.105.98.0/24
5.105.102.0/24
5.105.105.0/24
5.105.124.0/24
5.105.129.0/24
5.105.135.0/24
5.105.188.0/24
5.105.204.0/24
5.105.238.0/24
5.105.241.0/24
5.105.252.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:1c:af:84:6a:ce:60:91:c6:34:4c:34:75:af:32:31:e8:49:
40:72:d5:f2:c4:aa:70:dd:53:a2:3d:9f:6a:0a:ee:3e:7f:10:
f2:3d:6a:e8:a4:19:ca:56:c0:cf:3a:de:65:6d:13:71:a3:32:
86:15:18:41:b5:c5:a5:da:d5:49:9c:2c:28:70:41:73:c2:74:
b3:eb:61:20:ef:98:10:20:ae:97:b3:21:8c:41:6d:66:6b:a2:
e1:04:dc:04:7f:f4:92:d7:e1:39:91:1b:05:e9:8d:c8:77:74:
36:0d:4b:bd:4b:8f:05:bb:14:c4:af:e3:2a:df:b5:69:b7:f2:
fd:cf:d7:79:db:3d:98:51:43:21:82:0a:2a:49:ce:9a:a4:b2:
14:1b:15:67:ba:f8:56:c2:ff:63:cf:8a:fa:12:9b:b1:f5:e4:
1f:e4:ed:c1:35:69:8d:15:2c:31:aa:df:0a:b4:8a:20:9e:21:
ce:3b:ca:e1:77:d7:ff:69:10:a1:6a:55:c4:89:4e:7c:e2:bb:
1c:5d:34:a2:36:14:bd:25:bf:c7:8a:29:31:22:22:dd:65:f2:
5c:d1:7b:86:b8:17:1c:b6:85:04:9a:64:fb:38:f1:b4:6c:41:
31:1b:cc:ce:2e:8d:c2:1c:fc:72:d8:4a:e2:56:db:9f:de:76:
90:9c:82:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org