Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QJ1hrpvsShKXIIVXPtyMU39siBg.roa
File: QJ1hrpvsShKXIIVXPtyMU39siBg.roa (raw, json)
Hash identifier: jeuO+SNSbfv5yBmR6EtCf664bRR4n0r2nS9GlQMjbTY=
Subject key identifier: 40:9D:61:AE:9B:EC:4A:12:97:20:85:57:3E:DC:8C:53:7F:6C:88:18
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0188855FDCA732F573B7681AB55B3F2E8CFE
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QJ1hrpvsShKXIIVXPtyMU39siBg.roa
Signing time: Sun 04 Jun 2023 07:47:12 +0000
ROA not before: Sun 04 Jun 2023 07:47:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.158.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.71.0/24 maxlen: 24
5.105.77.0/24 maxlen: 24
5.105.98.0/24 maxlen: 24
5.105.104.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.242.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.185.0/24 maxlen: 24
5.105.188.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.221.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.51.0/24 maxlen: 24
5.105.64.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.5.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:85:5f:dc:a7:32:f5:73:b7:68:1a:b5:5b:3f:2e:8c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jun 4 07:47:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=409d61ae9bec4a12972085573edc8c537f6c8818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:0f:aa:fb:08:1a:0c:bb:5e:d4:81:ae:d4:9d:
62:4a:6d:e0:04:81:09:5b:38:96:82:04:e5:d6:fe:
95:57:32:75:c4:f5:6f:67:84:66:aa:fa:29:5d:57:
26:ec:e5:ed:97:8a:21:01:59:69:20:b4:c9:9e:ce:
12:f0:af:77:f5:2f:10:52:2e:ca:5c:96:9d:ee:46:
fb:6e:d3:09:25:79:b0:f6:31:2c:87:0d:7f:fb:ff:
09:6e:ab:9b:35:be:d0:25:e8:78:b5:06:53:a8:b5:
a2:c7:ae:72:f2:d7:61:ae:07:20:6d:8d:68:ef:5e:
8d:25:ad:ee:10:bc:8d:08:f6:32:b4:1d:6a:27:3f:
2b:d1:1c:40:ad:50:48:fc:15:e1:e1:cb:e1:7b:f7:
6a:1e:90:4a:8c:22:db:bd:f8:cb:a7:b5:87:75:6b:
ff:2d:4b:44:79:a3:34:a3:a1:ac:c2:aa:9e:d2:7e:
0d:03:ad:bf:f0:ad:85:85:27:36:86:b3:99:9e:f7:
b9:e5:6d:48:96:ba:05:ef:6f:ea:2c:50:13:b4:bb:
c0:b8:28:d5:80:ac:72:14:b3:fa:f4:04:bf:a6:5e:
df:72:70:b7:f9:d9:37:af:34:2d:0b:06:f5:21:64:
64:79:f6:0d:b1:a6:50:fd:62:64:2c:e2:b2:ea:7a:
59:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:9D:61:AE:9B:EC:4A:12:97:20:85:57:3E:DC:8C:53:7F:6C:88:18
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QJ1hrpvsShKXIIVXPtyMU39siBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.5.0/24
5.105.31.0/24
5.105.51.0/24
5.105.64.0/24
5.105.71.0/24
5.105.77.0/24
5.105.98.0/24
5.105.104.0/24
5.105.118.0/24
5.105.158.0/24
5.105.162.0/24
5.105.165.0-5.105.166.255
5.105.170.0/24
5.105.185.0-5.105.188.255
5.105.198.0/23
5.105.202.0/23
5.105.215.0-5.105.216.255
5.105.218.0/24
5.105.221.0/24
5.105.228.0/23
5.105.239.0-5.105.240.255
5.105.242.0/24
5.105.244.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
97:cc:8b:76:a6:fe:36:4f:f6:af:1f:86:8c:bd:09:58:07:98:
ce:62:b0:ed:5c:d9:31:d6:d7:c9:4b:85:46:c6:c8:4f:80:7c:
9f:24:4a:ef:5e:d3:82:03:81:00:9a:a9:54:fc:1f:cd:42:ca:
cd:27:5d:ae:3d:d5:35:02:49:eb:26:96:92:5d:82:fc:63:91:
ef:70:1f:18:72:b8:35:c7:7f:9d:9c:cc:da:f1:9f:9a:5b:10:
32:f9:3d:26:13:b2:26:81:67:12:04:15:c9:80:57:32:31:db:
20:5d:41:d9:e4:b5:fd:b9:4c:98:3b:ee:d7:5e:65:23:12:c9:
7f:88:49:5b:76:0b:b9:8e:98:b3:91:f4:37:92:9f:47:de:d8:
ea:35:d1:17:c7:f4:39:ba:2d:a2:30:39:a9:10:25:18:88:95:
93:7f:33:a5:f4:5a:b2:94:6c:3b:3b:81:84:6d:b4:ea:d8:c4:
e8:78:87:90:6c:23:e3:42:af:65:b3:84:bf:33:fc:8c:47:40:
f8:5a:ee:8a:3a:16:b7:6f:ae:e6:f0:a8:65:67:15:ff:c6:0e:
ae:7f:4c:b1:da:f4:2d:98:e6:6b:b7:4c:5d:cb:eb:a5:87:a6:
b5:64:7b:f1:50:44:ea:1e:9c:bc:5c:d5:e2:4b:9e:4b:64:76:
27:fc:02:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org