Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Rb-ZpdjIHhPKVHyMckKJ96BBQmQ.roa
File: Rb-ZpdjIHhPKVHyMckKJ96BBQmQ.roa (raw, json)
Hash identifier: JLB4R3iUbix62jH++hmyShQ8f5RcDvUUbCIxxHgD2Rc=
Subject key identifier: 45:BF:99:A5:D8:C8:1E:13:CA:54:7C:8C:72:42:89:F7:A0:41:42:64
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0189D39759F1BEFEBD2443C2D32C872941C6
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Rb-ZpdjIHhPKVHyMckKJ96BBQmQ.roa
Signing time: Tue 08 Aug 2023 05:20:58 +0000
ROA not before: Tue 08 Aug 2023 05:20:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 5.105.151.0/24 maxlen: 24
5.105.148.0/24 maxlen: 24
5.105.149.0/24 maxlen: 24
5.105.150.0/24 maxlen: 24
5.105.232.0/24 maxlen: 24
5.105.233.0/24 maxlen: 24
5.105.234.0/24 maxlen: 24
5.105.235.0/24 maxlen: 24
5.105.236.0/24 maxlen: 24
5.105.175.0/24 maxlen: 24
5.105.177.0/24 maxlen: 24
5.105.174.0/24 maxlen: 24
5.105.183.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d3:97:59:f1:be:fe:bd:24:43:c2:d3:2c:87:29:41:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Aug 8 05:20:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45bf99a5d8c81e13ca547c8c724289f7a0414264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9c:fe:77:c1:43:c9:77:e5:46:d0:cb:f8:ec:
e7:1d:fe:e9:3f:62:39:20:50:ed:5a:01:9a:59:f9:
0d:8e:92:fa:32:04:b5:e5:4f:2d:02:6a:4e:68:25:
b2:af:6c:4d:35:8c:c7:95:29:05:12:b3:dc:9f:98:
06:56:71:d1:03:e5:b4:f5:5c:9d:53:13:85:f9:56:
37:6c:83:ad:14:09:08:ea:ea:fa:1d:18:df:0c:53:
65:15:76:c6:c5:d5:bf:e0:d4:67:25:2f:68:df:35:
2e:ff:b2:08:73:ea:61:bb:85:fd:7f:78:e8:a7:6c:
b9:2d:8e:32:09:66:e9:2a:66:b9:56:f7:fe:ac:a0:
25:e0:24:b2:ad:67:5a:cd:12:8d:65:07:96:cd:67:
5e:51:61:2b:49:12:d2:c8:59:22:7e:8d:13:ac:a4:
e2:07:bd:50:6c:ef:40:3e:57:5d:c7:7d:fd:68:95:
87:b8:19:4c:89:ae:08:fb:b0:b5:3d:53:c2:8b:11:
9a:ab:17:78:77:80:8f:f7:1e:79:dc:fc:91:5e:58:
3c:02:3e:9e:be:58:e1:d2:ea:6d:20:c2:06:36:9c:
bb:25:ba:3c:9d:61:25:7c:c0:11:90:c4:fa:32:8b:
84:a0:33:fa:bc:b9:18:cf:88:a0:b7:b3:2b:81:d8:
a3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:BF:99:A5:D8:C8:1E:13:CA:54:7C:8C:72:42:89:F7:A0:41:42:64
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Rb-ZpdjIHhPKVHyMckKJ96BBQmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.148.0/22
5.105.174.0/23
5.105.177.0/24
5.105.183.0/24
5.105.232.0-5.105.236.255
Signature Algorithm: sha256WithRSAEncryption
9e:87:30:11:fa:44:72:24:09:75:3f:9a:94:18:fa:80:42:c0:
ad:17:19:ca:41:72:2c:09:53:c4:85:05:7d:52:0f:2d:50:61:
68:04:54:60:bc:42:ad:e4:f0:95:8d:7e:6b:02:44:86:ee:f0:
80:a5:a8:c5:dc:e2:dc:cb:a4:18:90:f9:dc:e1:2a:c8:f1:bb:
a1:50:98:19:9d:b9:70:29:bd:9b:fc:03:03:64:64:c5:27:23:
0d:b2:29:28:47:7f:ea:32:35:f5:ef:78:83:89:22:15:9b:12:
89:16:e2:a5:d9:c9:8f:b0:2e:86:82:2b:8c:e1:26:fd:ef:77:
51:7d:4d:02:a8:12:a3:99:60:21:d2:d0:b4:b8:a9:f9:c6:bb:
c9:37:1e:38:87:9a:d2:ac:dd:0b:26:2d:d6:9e:db:0b:e9:18:
8c:4c:70:da:de:da:f8:c3:b4:7a:80:ff:54:d2:4a:9c:31:63:
4f:27:64:8e:fd:29:d9:0c:3a:5a:e0:61:55:80:ce:99:e9:26:
e5:23:04:a0:ac:36:2e:a0:5e:18:f8:39:25:c0:9a:e2:41:d3:
de:72:95:98:cf:0f:db:2f:70:c5:cd:a7:31:fd:5f:3a:73:0c:
07:80:3e:17:08:d7:ca:3b:5b:bd:44:e0:77:61:41:f0:fb:90:
ee:48:e5:d4
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAYnTl1nxvv69JEPC0yyHKUHGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZjhiNDUyNTRlNTQ3MGQxZDRjY2U2ZmI3ZGZkNGQwZDgz
YjVkNTkwHhcNMjMwODA4MDUyMDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NWJmOTlhNWQ4YzgxZTEzY2E1NDdjOGM3MjQyODlmN2EwNDE0MjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJz+d8FDyXflRtDL+OznHf7pP2I5
IFDtWgGaWfkNjpL6MgS15U8tAmpOaCWyr2xNNYzHlSkFErPcn5gGVnHRA+W09Vyd
UxOF+VY3bIOtFAkI6ur6HRjfDFNlFXbGxdW/4NRnJS9o3zUu/7IIc+phu4X9f3jo
p2y5LY4yCWbpKma5Vvf+rKAl4CSyrWdazRKNZQeWzWdeUWErSRLSyFkifo0TrKTi
B71QbO9APlddx339aJWHuBlMia4I+7C1PVPCixGaqxd4d4CP9x553PyRXlg8Aj6e
vljh0uptIMIGNpy7Jbo8nWElfMARkMT6MouEoDP6vLkYz4igt7MrgdijTQIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFEW/maXYyB4TylR8jHJCifegQUJkMB8GA1UdIwQY
MBaAFN34tFJU5UcNHUzOb7ff1NDYO11ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2It
ODkzOTA2ZmI3ODU4LzEvUmItWnBkaklIaFBLVkh5TWNrS0o5NkJCUW1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2ItODkzOTA2ZmI3ODU4
LzEvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQCBWmUAwQB
BWmuAwQABWmxAwQABWm3MAwDBAMFaegDBAAFaewwDQYJKoZIhvcNAQELBQADggEB
AJ6HMBH6RHIkCXU/mpQY+oBCwK0XGcpBciwJU8SFBX1SDy1QYWgEVGC8Qq3k8JWN
fmsCRIbu8IClqMXc4tzLpBiQ+dzhKsjxu6FQmBmduXApvZv8AwNkZMUnIw2yKShH
f+oyNfXveIOJIhWbEokW4qXZyY+wLoaCK4zhJv3vd1F9TQKoEqOZYCHS0LS4qfnG
u8k3HjiHmtKs3QsmLdae2wvpGIxMcNre2vjDtHqA/1TSSpwxY08nZI79KdkMOlrg
YVWAzpnpJuUjBKCsNi6gXhj4OSXAmuJB095ylZjPD9svcMXNpzH9XzpzDAeAPhcI
18o7W71E4HdhQfD7kO5I5dQ=
-----END CERTIFICATE-----
Generated at Tue Aug 8 09:52:07 2023 by rpki-client on console-ams.rpki-client.org