Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/OwoGe2c3VvCXu7xU6Eq6HxYTWsU.roa
File: OwoGe2c3VvCXu7xU6Eq6HxYTWsU.roa (raw, json)
Hash identifier: vV3Oh5+r/YkXSiceQ/gazsy2cI+dTNaPnH8ZlIWv2Bc=
Subject key identifier: 3B:0A:06:7B:67:37:56:F0:97:BB:BC:54:E8:4A:BA:1F:16:13:5A:C5
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0187A2E7004B9278D98EF25016D6F21624D0
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/OwoGe2c3VvCXu7xU6Eq6HxYTWsU.roa
Signing time: Fri 21 Apr 2023 08:21:00 +0000
ROA not before: Fri 21 Apr 2023 08:21:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 5.105.168.0/24 maxlen: 24
5.105.65.0/24 maxlen: 24
5.105.81.0/24 maxlen: 24
5.105.96.0/24 maxlen: 24
5.105.230.0/24 maxlen: 24
5.105.19.0/24 maxlen: 24
5.105.24.0/24 maxlen: 24
5.105.25.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.33.0/24 maxlen: 24
5.105.40.0/24 maxlen: 24
5.105.43.0/24 maxlen: 24
5.105.50.0/24 maxlen: 24
5.105.57.0/24 maxlen: 24
5.105.184.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a2:e7:00:4b:92:78:d9:8e:f2:50:16:d6:f2:16:24:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Apr 21 08:21:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b0a067b673756f097bbbc54e84aba1f16135ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0b:3c:48:af:b2:54:39:fc:d7:4c:e8:7a:87:
23:70:33:09:97:8b:b5:73:a0:a2:05:d0:5a:18:85:
1e:31:29:5b:55:93:65:6b:64:80:1a:81:6f:16:12:
b8:e0:82:d0:83:90:aa:61:24:2b:a0:6b:2f:97:10:
a6:4f:1a:69:66:54:52:bb:04:40:cf:9b:ab:64:e8:
37:32:d1:5b:99:31:a4:52:06:fa:9f:a3:21:56:14:
5a:0c:34:c3:ff:86:23:9d:6c:84:6b:f5:42:65:32:
93:a3:7c:1f:37:e5:1c:61:e6:9b:f6:d5:68:06:3e:
79:f3:3e:05:35:22:f8:60:d4:0b:c1:dd:da:ec:91:
5b:fd:87:0b:25:3a:38:6d:2d:93:8e:89:ea:84:60:
7f:08:ca:2a:94:7d:1b:c7:4f:44:cc:c5:40:9a:ed:
ef:f8:33:9f:9a:b0:68:6e:31:83:b4:84:c9:45:82:
8d:0d:de:ae:70:79:18:54:58:a0:84:a6:3e:6b:ba:
2f:13:11:9b:f8:fd:20:56:72:65:31:23:ae:3c:34:
00:d4:c8:c6:1e:4e:8b:c9:ce:9b:d5:f8:f9:00:eb:
7c:31:de:d6:a1:80:91:6c:0b:b3:9f:29:fa:e9:5c:
22:98:ae:07:1e:20:84:b7:9f:87:c0:32:03:9a:9e:
1c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:0A:06:7B:67:37:56:F0:97:BB:BC:54:E8:4A:BA:1F:16:13:5A:C5
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/OwoGe2c3VvCXu7xU6Eq6HxYTWsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.19.0/24
5.105.24.0/23
5.105.33.0/24
5.105.40.0/24
5.105.43.0/24
5.105.50.0/24
5.105.57.0/24
5.105.65.0/24
5.105.81.0/24
5.105.96.0/24
5.105.168.0/24
5.105.184.0/24
5.105.218.0/24
5.105.230.0/24
5.105.247.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:d7:95:14:83:3d:85:df:da:f3:5d:26:f6:ae:62:8f:98:57:
f0:74:8e:ff:5c:91:0d:79:ad:ad:d2:06:34:ae:3a:f1:b3:a8:
15:f0:fb:5c:30:9a:4b:f9:50:9e:2f:d7:74:de:a4:f5:d2:86:
86:89:de:26:86:8e:a1:64:54:bf:9c:22:3d:a0:12:15:f2:4b:
5b:60:a3:27:fc:05:70:c7:88:7b:21:48:fb:dc:5e:10:33:50:
c2:62:f6:a9:25:16:4a:bb:b2:be:23:08:89:68:6a:ee:8e:5a:
cb:06:98:0b:28:3f:89:39:46:9e:f7:b5:23:d5:be:a3:13:27:
b9:4f:a0:45:76:bd:7d:07:16:45:22:2e:f6:0f:c1:9a:14:6d:
b2:12:ac:31:a4:a2:67:11:b9:05:6f:c3:f6:c7:6b:91:71:af:
bb:56:6b:96:20:99:55:29:24:84:79:cb:17:ba:a8:c1:6c:0d:
89:71:ce:c8:3e:24:bb:a1:7e:5f:aa:46:d8:48:11:92:d3:a7:
29:ac:01:ea:e1:38:b2:7e:2d:09:e5:57:76:01:bb:54:9f:03:
03:bf:ec:2b:84:63:fd:49:d8:cd:d4:d7:ff:f6:88:00:be:a7:
c6:c1:b6:5e:d2:fe:25:4f:38:2f:ed:5a:67:80:80:a3:5a:25:
f3:13:17:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:17 2023 by rpki-client on console-fra.rpki-client.org