Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/S-tMYKSkNCSVM4JSVcU_a0kWW1g.roa
File: S-tMYKSkNCSVM4JSVcU_a0kWW1g.roa (raw, json)
Hash identifier: QKRJq2QxvTyC6IFruz7x6sLxRHixnDXeQgWibX4XLpk=
Subject key identifier: 4B:EB:4C:60:A4:A4:34:24:95:33:82:52:55:C5:3F:6B:49:16:5B:58
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01869C5648A27823F33A271A0099A4E9653A
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/S-tMYKSkNCSVM4JSVcU_a0kWW1g.roa
Signing time: Wed 01 Mar 2023 08:42:25 +0000
ROA not before: Wed 01 Mar 2023 08:42:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.226.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.19.0/24 maxlen: 24
5.105.32.0/24 maxlen: 24
5.105.42.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:56:48:a2:78:23:f3:3a:27:1a:00:99:a4:e9:65:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Mar 1 08:42:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4beb4c60a4a434249533825255c53f6b49165b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:91:ae:4e:ca:76:a1:06:ea:78:a3:9a:fe:28:
04:a6:61:6c:88:b5:ed:e6:14:f2:2f:31:a9:77:19:
96:bb:06:17:18:b7:d9:93:e7:ea:32:d9:2f:9f:e2:
45:c6:06:2a:e4:d7:0c:24:12:1b:44:96:6b:f8:1b:
9d:2c:99:20:86:2f:85:fe:07:28:2a:79:33:a6:58:
0b:85:4d:46:d1:ad:dd:8b:36:5f:55:f4:c8:de:c3:
7e:a3:c1:37:7d:a5:d0:3c:4b:54:23:23:6a:02:b7:
f4:2e:b3:9a:8c:83:59:3e:5c:b1:ed:f5:cb:5f:db:
b3:2b:fe:6f:7f:66:1d:48:82:33:a4:6c:44:22:81:
ea:24:a6:96:5c:ce:8b:cc:58:af:8e:d1:d2:76:ef:
56:e4:72:8e:0f:00:41:63:37:b8:83:69:06:41:95:
0d:53:6b:d5:76:1a:17:5f:32:24:2f:77:3c:f5:68:
69:11:31:92:3b:8e:38:48:41:bb:68:a2:e2:2d:94:
87:c5:8a:07:98:c4:6f:87:74:c6:ab:0b:ae:b9:d5:
07:43:13:3d:a7:6f:13:e3:d7:bb:1d:23:6f:c2:74:
00:bc:44:61:59:3d:1e:06:c2:25:08:35:8e:1d:13:
08:55:c5:8c:71:07:c4:a1:55:d6:f4:87:ea:3d:4c:
2a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:EB:4C:60:A4:A4:34:24:95:33:82:52:55:C5:3F:6B:49:16:5B:58
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/S-tMYKSkNCSVM4JSVcU_a0kWW1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.12.0/24
5.105.19.0/24
5.105.32.0/24
5.105.42.0/24
5.105.63.0/24
5.105.68.0/23
5.105.112.0/22
5.105.124.0/24
5.105.138.0/23
5.105.142.0/23
5.105.162.0/24
5.105.165.0/24
5.105.186.0/23
5.105.198.0/23
5.105.202.0/23
5.105.206.0/23
5.105.226.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.247.0-5.105.249.255
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
57:67:5d:ad:8f:c9:80:50:4a:f5:9f:c7:f8:77:5c:72:bc:f3:
f4:99:da:3f:fe:b8:3a:6b:a5:64:a1:ce:60:f9:48:2f:84:8a:
2b:6c:7e:dc:c4:e4:53:91:74:91:a3:30:03:1c:67:c6:97:a7:
64:4c:2e:14:45:6a:70:e7:32:05:80:7c:73:66:ff:0e:e0:6b:
85:a8:a1:ae:29:85:1f:49:ae:62:57:e1:8a:4c:10:94:36:99:
ed:93:e8:ad:af:a5:80:e1:96:35:07:ae:b9:01:77:ef:6f:54:
0e:8c:80:0b:73:78:3e:0c:f4:fa:42:4a:34:5f:7f:f8:bc:0e:
16:e8:6d:6b:b5:2b:58:1d:26:c0:a9:2f:19:03:81:a8:9b:d7:
92:b4:d7:ce:ed:a1:42:51:2b:c4:00:2e:b7:97:14:47:3c:8c:
6d:63:bd:cd:fc:6e:2c:c8:2f:e6:38:f3:b2:99:b9:f6:e5:a0:
e6:98:71:04:bf:70:57:9a:43:7f:83:57:41:0e:d1:b3:e1:28:
9b:83:8a:42:ec:25:a5:8f:88:b1:8f:4e:de:03:3f:13:00:44:
d6:54:e7:97:18:9e:ef:d0:e3:4a:e1:50:f4:2a:06:fe:26:31:
9c:70:7c:2d:4c:69:15:c4:73:a2:c5:a1:24:58:ae:58:68:7b:
4e:b7:44:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org