Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/NI5gKtRkUtzmKc7QQNliH7PA4MQ.roa
File: NI5gKtRkUtzmKc7QQNliH7PA4MQ.roa (raw, json)
Hash identifier: 0imZp+PwcA3R2O3TE8ljAlII42OQuNAk0WLslabVmxc=
Subject key identifier: 34:8E:60:2A:D4:64:52:DC:E6:29:CE:D0:40:D9:62:1F:B3:C0:E0:C4
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0185AA053021C402FF2525CD10D3B164C379
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/NI5gKtRkUtzmKc7QQNliH7PA4MQ.roa
Signing time: Fri 13 Jan 2023 07:25:44 +0000
ROA not before: Fri 13 Jan 2023 07:25:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204372
IP address blocks: 5.105.2.0/24 maxlen: 24
5.105.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:aa:05:30:21:c4:02:ff:25:25:cd:10:d3:b1:64:c3:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 13 07:25:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=348e602ad46452dce629ced040d9621fb3c0e0c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f9:96:20:ec:4b:66:b6:7e:45:ad:d2:38:f1:
7d:62:8c:47:ff:52:e3:2c:79:3a:74:80:28:4b:6d:
98:32:5e:5d:cb:c6:21:7e:21:97:cf:f5:15:d0:bd:
45:62:d3:c1:b0:26:0a:a1:4a:29:ec:cb:a6:0e:cc:
0d:e5:57:e7:f7:65:78:fc:82:c3:e6:06:12:81:5e:
cd:1e:16:2e:a0:55:5a:ee:ff:7e:f1:86:99:9c:16:
7c:44:55:e3:f2:81:4e:18:3d:22:b1:f9:6f:4b:2b:
19:0d:01:a3:be:b5:2c:d9:4d:bc:15:5c:6d:7a:2d:
ce:cd:95:dd:ff:c3:fc:fa:15:d3:0c:4b:6e:9b:f0:
26:50:45:fd:43:19:b6:fd:3e:b9:f3:ce:69:6a:11:
dd:03:8f:64:0f:cf:e5:3e:0c:ec:cf:34:05:a0:4f:
e6:08:f1:b0:cb:cb:6a:3e:1d:52:7b:87:be:90:3e:
73:e8:38:cb:a8:4a:96:0a:2e:c0:d3:a0:e7:6b:b7:
da:3f:bd:a8:c2:3a:25:b8:1c:19:96:57:d2:25:68:
f8:99:a9:be:67:d5:79:c4:70:b9:c3:10:12:2e:d8:
34:18:5e:f6:b3:3f:5a:aa:1e:a2:0a:f4:26:7e:3e:
70:ef:c4:51:e5:05:f8:7d:30:4e:08:f7:02:d8:3e:
6c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:8E:60:2A:D4:64:52:DC:E6:29:CE:D0:40:D9:62:1F:B3:C0:E0:C4
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/NI5gKtRkUtzmKc7QQNliH7PA4MQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.2.0/23
Signature Algorithm: sha256WithRSAEncryption
64:04:ed:cc:fc:12:3e:5b:bb:85:96:fa:10:7a:d1:1e:91:ff:
7e:d5:b9:d0:c7:7c:76:ac:60:99:80:0f:9d:c2:bb:48:f1:3c:
92:37:8d:72:cb:83:93:bd:79:31:08:9c:4c:9c:8f:f8:ce:33:
77:2d:c2:3e:64:a1:fd:56:61:02:41:ae:08:d3:ce:12:54:33:
2e:f6:c9:dc:85:e3:97:db:fd:b2:ce:4d:ac:22:03:97:06:98:
46:0d:86:16:3d:8a:e4:fe:b2:3b:23:17:fb:99:83:c2:e7:c8:
20:c9:d9:8b:40:34:4f:32:7a:03:94:ee:58:e6:23:63:e9:c1:
9f:7e:d8:d0:15:09:c5:db:99:a5:19:b8:59:16:68:bc:07:b4:
58:9f:15:c6:b1:6b:eb:8c:89:3f:a4:4d:7a:62:a7:30:46:ef:
da:99:56:ad:9c:47:87:db:ae:71:d7:50:9b:d1:27:c4:1d:4f:
67:1f:9e:8a:c6:ba:08:6c:9b:93:eb:0b:a1:f3:af:23:f1:70:
d2:68:2f:bb:88:35:49:6f:02:44:ef:f5:f2:2b:ca:cc:67:be:
c6:d9:21:4e:5b:23:8a:4c:8f:cd:0d:ea:8d:aa:a4:f5:2e:fb:
43:a2:34:bc:af:01:68:23:f2:3e:62:3b:99:8a:55:78:77:25:
fd:2a:f8:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:17 2023 by rpki-client on console-fra.rpki-client.org