Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Q_hjilBNVSuJHiSoCk2YBXAYFGc.roa
File: Q_hjilBNVSuJHiSoCk2YBXAYFGc.roa (raw, json)
Hash identifier: TO9LfIchu1B7/K0lIw8poNXnmeH9p7sg2VvuuBjFYFM=
Subject key identifier: 43:F8:63:8A:50:4D:55:2B:89:1E:24:A8:0A:4D:98:05:70:18:14:67
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018A577D01ACCD3102D856D5A7435519E7D9
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Q_hjilBNVSuJHiSoCk2YBXAYFGc.roa
Signing time: Sat 02 Sep 2023 20:02:04 +0000
ROA not before: Sat 02 Sep 2023 20:02:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 5.105.128.0/24 maxlen: 24
5.105.160.0/24 maxlen: 24
5.105.89.0/24 maxlen: 24
5.105.86.0/24 maxlen: 24
5.105.88.0/24 maxlen: 24
5.105.87.0/24 maxlen: 24
5.105.110.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.248.0/23 maxlen: 24
5.105.250.0/24 maxlen: 24
5.105.251.0/24 maxlen: 24
5.105.255.0/24 maxlen: 24
5.105.254.0/24 maxlen: 24
5.105.176.0/24 maxlen: 24
5.105.191.0/24 maxlen: 24
5.105.190.0/24 maxlen: 24
5.105.192.0/24 maxlen: 24
5.105.194.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:57:7d:01:ac:cd:31:02:d8:56:d5:a7:43:55:19:e7:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Sep 2 20:02:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43f8638a504d552b891e24a80a4d980570181467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3a:b1:2c:71:89:8d:35:a1:0d:68:cf:55:47:
0f:ed:c0:a8:19:74:07:4a:97:10:7b:45:0f:c5:b0:
1c:77:f2:9d:f0:e9:66:42:7b:82:fd:bb:13:d3:fa:
96:49:7b:b3:b0:21:36:7e:cb:fd:57:6c:d6:c6:f1:
1d:11:8c:cf:f7:0f:8c:8c:5f:50:da:05:34:f0:40:
a7:1e:f5:12:26:15:6d:46:8e:80:90:59:b2:80:56:
cb:7b:dc:23:16:73:0f:6b:ea:ea:68:3f:40:69:6f:
79:d4:88:1f:cc:98:53:63:b7:de:9f:24:b6:94:3c:
00:7e:2c:e4:73:39:1e:ac:c8:da:83:b0:a8:cf:7c:
f0:55:46:9a:be:3a:bd:4d:ae:a4:f9:9c:8c:46:da:
a3:10:7d:46:49:69:11:31:85:c7:40:75:1c:bc:5b:
b5:db:4d:83:4d:bd:71:7e:37:59:61:dd:4d:91:16:
2d:c0:17:f9:ba:8c:07:13:60:21:65:aa:bc:bb:9c:
e5:71:2e:9b:75:3a:ca:1b:c0:cf:58:17:99:96:c9:
04:8c:19:a7:c8:17:6c:7f:fd:d2:d0:76:b8:bc:db:
24:a0:66:c6:ed:a8:c6:e4:a7:60:a9:46:1c:89:02:
80:3a:33:a0:ca:56:86:8e:37:0c:2b:84:b5:09:64:
93:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F8:63:8A:50:4D:55:2B:89:1E:24:A8:0A:4D:98:05:70:18:14:67
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Q_hjilBNVSuJHiSoCk2YBXAYFGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.3.0/24
5.105.86.0-5.105.89.255
5.105.110.0/24
5.105.114.0/24
5.105.128.0/24
5.105.160.0/24
5.105.176.0/24
5.105.190.0-5.105.192.255
5.105.194.0/24
5.105.206.0/24
5.105.248.0/22
5.105.254.0/23
Signature Algorithm: sha256WithRSAEncryption
83:08:5f:4e:9f:e6:59:8c:99:2b:b1:d8:09:73:36:d3:f4:65:
ab:83:39:74:3f:cd:3f:5f:1c:e0:a0:2d:58:b0:e6:a2:f3:b5:
1a:29:ac:9e:5d:62:7d:86:f7:97:56:71:52:a9:a2:6a:4b:6a:
df:a9:28:30:44:29:15:40:86:fa:7b:8e:9d:e5:a9:4b:48:46:
2d:07:30:fa:e3:8c:b4:8c:f7:fa:b5:1a:b9:52:1c:bd:ef:27:
e7:10:bd:9b:05:98:eb:3d:b0:e5:f4:97:a5:5d:ef:e3:bd:c6:
18:97:90:e3:60:6e:ca:cf:7b:d8:4f:82:71:ec:7d:9d:ee:03:
ec:80:28:cb:c4:f3:83:67:3e:21:d7:c2:17:68:c8:a5:ad:5f:
ad:4b:a7:1d:34:d6:89:27:54:64:60:98:73:53:f1:a9:fa:a6:
9f:88:37:7d:7a:10:f2:e3:cf:6a:9a:c9:b4:6a:bb:a2:7a:13:
3c:9f:9c:fe:64:bf:a9:22:23:c2:6b:bb:82:c0:9d:72:27:38:
bb:fa:d4:c2:98:c8:aa:12:f2:9f:de:7f:91:b3:1e:8d:09:db:
c3:56:34:96:ce:76:9d:41:b2:8b:8c:e1:d7:ba:2e:95:bb:9e:
ad:f7:23:82:eb:be:c8:4c:a8:e9:1b:37:53:5d:a8:13:b3:e9:
61:7b:d9:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 3 09:37:02 2023 by rpki-client on console-fra.rpki-client.org