Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/O5EcyxN_O9Yq7QKdSo-OMzAYek0.roa
File: O5EcyxN_O9Yq7QKdSo-OMzAYek0.roa (raw, json)
Hash identifier: GTx1xDB7YJLQBMsS3qQ3FmzihgcqlPdqnnnVgcBxqC0=
Subject key identifier: 3B:91:1C:CB:13:7F:3B:D6:2A:ED:02:9D:4A:8F:8E:33:30:18:7A:4D
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0188787FF81D30394291C486549D1A6A7BB7
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/O5EcyxN_O9Yq7QKdSo-OMzAYek0.roa
Signing time: Thu 01 Jun 2023 19:47:12 +0000
ROA not before: Thu 01 Jun 2023 19:47:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198802
IP address blocks: 5.105.41.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:78:7f:f8:1d:30:39:42:91:c4:86:54:9d:1a:6a:7b:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jun 1 19:47:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b911ccb137f3bd62aed029d4a8f8e3330187a4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3b:56:eb:bd:05:9a:b9:4b:a6:bb:c9:e9:01:
ae:9b:60:5a:38:9c:3f:80:5a:0c:0e:04:ca:f3:0d:
08:47:df:de:7d:8d:e4:b0:bc:53:77:86:cd:94:c1:
22:10:9d:c5:fd:dc:ec:af:a5:07:7e:2b:34:51:6e:
5b:26:2e:ae:89:81:80:c5:54:bc:1d:3d:5c:6a:95:
ff:a7:14:b8:2a:cc:44:6d:71:87:86:a2:b1:ed:01:
a5:c3:d8:d8:c0:1c:35:a4:8f:87:f7:eb:aa:c2:7b:
7f:11:f0:f0:37:6e:96:ac:d5:c6:d2:32:c8:ff:f5:
ff:68:2b:1a:07:8b:54:b1:cc:3d:11:1d:85:cd:f8:
e4:93:5a:7e:06:66:87:35:fd:6a:f0:e7:50:24:dd:
8c:b8:b4:a7:07:87:21:71:ef:e5:c5:76:c2:fa:18:
5f:2e:d2:ea:87:78:c5:80:30:38:d0:87:bd:c3:18:
90:18:81:23:cb:22:57:aa:af:7a:60:0a:29:26:38:
49:85:d7:fd:11:9b:41:63:ce:bc:c2:ad:7a:e1:e1:
66:4d:80:8e:5f:54:eb:be:09:2a:b7:2e:c4:5c:a2:
4f:74:ff:b8:d0:b7:a1:86:d2:4f:01:7e:4a:6f:9a:
3c:11:6a:ec:65:5f:06:09:fc:7e:33:9f:01:18:49:
37:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:91:1C:CB:13:7F:3B:D6:2A:ED:02:9D:4A:8F:8E:33:30:18:7A:4D
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/O5EcyxN_O9Yq7QKdSo-OMzAYek0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.41.0/24
5.105.82.0/24
5.105.102.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:58:29:c9:ac:88:a7:4a:9b:95:47:da:66:3f:d8:df:f9:5c:
82:cb:d1:eb:5c:48:4e:1f:6f:eb:b9:53:94:d1:c3:7c:40:10:
34:64:8a:13:11:da:17:70:70:ff:55:05:e7:70:d9:ac:00:ee:
57:b9:8a:76:6a:be:82:88:32:93:36:72:5b:bd:40:ae:f7:ec:
11:42:ef:d7:4b:90:0f:8f:9a:c6:a7:0e:ca:3e:46:64:cd:cc:
73:54:b3:f0:84:e8:46:4a:97:90:1f:fd:ba:fe:aa:1c:67:9d:
f1:35:34:ad:82:cc:a6:04:dd:f7:11:ab:83:2b:2d:ba:16:69:
5c:bf:c6:0a:64:e8:5f:78:c3:33:81:ae:5a:6b:43:f7:5b:90:
da:1a:31:cb:16:4b:74:0d:4c:4a:e7:33:69:3b:d1:96:45:c3:
43:39:13:99:92:25:7e:e3:0f:77:3b:36:78:f7:fe:49:39:b7:
97:73:6c:19:59:d7:60:28:2b:3d:ab:c2:c4:d8:48:ac:9d:1f:
bf:34:b8:13:38:b4:81:29:50:10:e3:0f:40:79:85:92:62:44:
09:55:33:e6:2a:b1:fe:e4:dc:7d:58:62:6b:da:e1:d5:8b:80:
af:85:9e:98:a5:ae:73:f1:25:ea:fc:c5:28:cd:ab:f2:21:dc:
45:53:60:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org