Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/P9k6j6Vj0f1S3Xk3V-oyzn-g7-I.roa
File: P9k6j6Vj0f1S3Xk3V-oyzn-g7-I.roa (raw, json)
Hash identifier: cCE+KXS1O6CBnLP9dep52RABOVpHgkRfa78nXa7VjAg=
Subject key identifier: 3F:D9:3A:8F:A5:63:D1:FD:52:DD:79:37:57:EA:32:CE:7F:A0:EF:E2
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0186B6DA8C0798EEB3BE22891F215458B818
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/P9k6j6Vj0f1S3Xk3V-oyzn-g7-I.roa
Signing time: Mon 06 Mar 2023 12:17:01 +0000
ROA not before: Mon 06 Mar 2023 12:17:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 5.105.151.0/24 maxlen: 24
5.105.148.0/24 maxlen: 24
5.105.149.0/24 maxlen: 24
5.105.150.0/24 maxlen: 24
5.105.86.0/24 maxlen: 24
5.105.87.0/24 maxlen: 24
5.105.88.0/24 maxlen: 24
5.105.89.0/24 maxlen: 24
5.105.232.0/24 maxlen: 24
5.105.233.0/24 maxlen: 24
5.105.234.0/24 maxlen: 24
5.105.235.0/24 maxlen: 24
5.105.236.0/24 maxlen: 24
217.67.64.0/20 maxlen: 20
5.105.175.0/24 maxlen: 24
5.105.176.0/24 maxlen: 24
5.105.177.0/24 maxlen: 24
5.105.178.0/24 maxlen: 24
5.105.174.0/24 maxlen: 24
5.105.182.0/24 maxlen: 24
5.105.183.0/24 maxlen: 24
5.105.180.0/24 maxlen: 24
5.105.181.0/24 maxlen: 24
85.255.176.0/21 maxlen: 24
91.200.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Mar 2023 11:42:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b6:da:8c:07:98:ee:b3:be:22:89:1f:21:54:58:b8:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Mar 6 12:17:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fd93a8fa563d1fd52dd793757ea32ce7fa0efe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:02:5b:7e:7b:3b:a8:5d:51:03:0d:04:64:18:
c2:95:d4:cc:ee:af:b7:93:4a:58:d4:09:00:a8:23:
ec:71:31:9b:83:80:b8:be:90:66:a1:cf:27:17:1a:
9c:46:81:a7:13:72:e6:ae:f1:27:83:5e:99:d7:fb:
a4:b0:a6:b7:20:f7:8f:40:14:d1:7b:fe:b3:88:f1:
ac:27:65:f6:d0:74:03:7c:55:d6:94:39:06:db:14:
06:6c:20:af:1c:8c:59:a7:46:d9:48:b1:5b:13:d4:
83:ee:76:8f:9b:72:34:ba:33:0e:34:ab:00:d2:55:
76:ef:b4:33:f3:63:6b:66:93:62:7f:65:ac:a2:bc:
bb:40:b6:4d:38:50:65:a8:27:9c:8d:b1:90:32:be:
1f:17:cd:cf:0e:91:09:28:7c:26:45:90:99:33:76:
69:e0:7e:1a:c6:4e:87:d7:64:ef:5e:26:a9:c5:27:
71:80:2b:14:67:28:f6:80:18:8c:e7:4d:4a:8e:9d:
2f:fa:3c:75:87:7f:0e:4a:6b:72:74:83:43:3e:fc:
1c:f8:f7:26:61:ad:ac:c8:0c:81:4a:7c:30:b8:b6:
4a:13:53:1d:fb:66:d4:92:d1:a1:95:ca:10:2b:22:
eb:0a:08:0b:88:a2:e3:39:41:90:d7:26:2d:67:2c:
64:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:D9:3A:8F:A5:63:D1:FD:52:DD:79:37:57:EA:32:CE:7F:A0:EF:E2
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/P9k6j6Vj0f1S3Xk3V-oyzn-g7-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.86.0-5.105.89.255
5.105.148.0/22
5.105.174.0-5.105.178.255
5.105.180.0/22
5.105.232.0-5.105.236.255
85.255.176.0/21
91.200.212.0/22
217.67.64.0/20
Signature Algorithm: sha256WithRSAEncryption
55:98:d2:78:c9:fd:38:b5:13:00:93:b8:ab:39:61:b5:d0:37:
56:bb:bd:76:88:0f:5a:04:ec:b3:e0:9b:bd:3e:09:db:cf:30:
cb:20:6c:23:c1:09:c4:c3:47:81:8f:c7:0f:cf:1c:c3:34:f9:
52:52:cf:db:3a:0c:d4:bf:20:28:53:b4:e8:82:9b:74:f6:fc:
27:4a:38:19:fd:10:8d:d8:86:15:17:97:ca:10:1c:8b:7b:09:
87:e6:e4:b4:34:85:23:e7:c3:b8:69:ed:88:aa:27:6b:ab:76:
56:24:2d:33:69:d8:0c:cd:b4:a6:53:59:1b:7b:2c:56:8b:db:
3f:41:90:3e:1b:2b:0d:65:41:1f:78:41:7d:0a:b3:ca:77:a5:
65:c4:d7:a7:3b:14:6c:50:9e:e9:49:0e:0f:4a:9f:a7:96:2c:
e9:80:f2:70:97:ea:26:1f:ce:f2:a2:90:98:c1:80:41:0a:59:
0e:55:4e:e1:50:0a:9d:ce:c1:4c:29:18:c7:c1:69:d8:48:d0:
e0:95:39:f4:db:0f:e3:99:ce:2a:34:27:8c:42:de:8f:ec:bd:
53:db:0b:a8:03:12:4c:cd:70:69:99:02:7b:ff:31:f2:e9:df:
3d:e8:86:aa:74:06:d4:ec:54:90:5f:fb:61:f4:0f:47:d5:2d:
1c:1c:66:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:56 2024 by rpki-client on console-ams.rpki-client.org