Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/S6bRWpz-n4oj7hhpfyuy6fTBjvQ.roa
File: S6bRWpz-n4oj7hhpfyuy6fTBjvQ.roa (raw, json)
Hash identifier: dJoWwXpIQ//5I0zYCgUeswudkjbJxacAPPeGA77lyAg=
Subject key identifier: 4B:A6:D1:5A:9C:FE:9F:8A:23:EE:18:69:7F:2B:B2:E9:F4:C1:8E:F4
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018A1D0412B986E9F3C90DBB743B9718EB82
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/S6bRWpz-n4oj7hhpfyuy6fTBjvQ.roa
Signing time: Tue 22 Aug 2023 11:32:00 +0000
ROA not before: Tue 22 Aug 2023 11:32:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.122.0/24 maxlen: 24
5.105.131.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.136.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.75.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.14.0/24 maxlen: 24
5.105.16.0/24 maxlen: 24
5.105.21.0/24 maxlen: 24
5.105.20.0/24 maxlen: 24
5.105.23.0/24 maxlen: 24
5.105.18.0/24 maxlen: 24
5.105.26.0/24 maxlen: 24
5.105.30.0/24 maxlen: 24
5.105.32.0/24 maxlen: 24
5.105.40.0/24 maxlen: 24
5.105.44.0/24 maxlen: 24
5.105.57.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.105.62.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.2.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1d:04:12:b9:86:e9:f3:c9:0d:bb:74:3b:97:18:eb:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Aug 22 11:32:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ba6d15a9cfe9f8a23ee18697f2bb2e9f4c18ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ae:c0:ab:26:5c:2d:a3:5d:d2:51:e9:8f:e7:
91:e5:10:19:22:71:07:9c:a7:bc:dc:2f:2c:fe:e8:
a1:b8:3a:83:63:f7:e7:6f:b0:cb:ba:89:43:14:2c:
32:54:0a:0c:98:88:fa:39:12:cc:b9:d4:5e:79:a0:
ef:f1:5a:0a:7b:e1:04:44:7a:c5:2a:6c:6b:c7:49:
4f:b3:bf:4a:ea:4f:1d:58:09:cd:68:3d:f9:0d:08:
e6:31:83:af:cd:64:39:b1:c4:2b:b2:ae:cc:9c:94:
21:61:5d:95:ed:fc:ad:5e:d1:9a:66:2b:61:4c:19:
af:8f:23:11:ad:b7:95:9f:d1:fe:b9:89:ce:57:f7:
d8:73:ae:df:1d:36:0a:6b:b0:f2:63:e7:0b:1f:ba:
69:a9:36:f9:27:67:7c:8a:53:1e:60:b3:0b:1b:90:
69:15:92:59:7c:de:fc:8e:a0:bb:f4:ae:88:5f:e6:
63:28:27:63:b2:54:ef:24:e4:f6:b9:90:0d:05:9c:
82:fe:f7:fe:89:ef:a4:6b:f4:e0:b8:d5:69:b8:b1:
80:61:8f:df:c4:be:46:b6:49:a6:45:37:f8:94:f3:
cb:ea:db:16:7b:e3:37:6a:f3:49:2c:f1:0f:95:ce:
7c:7d:40:e0:3d:6f:db:2c:51:9b:74:67:18:ad:cd:
2e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:A6:D1:5A:9C:FE:9F:8A:23:EE:18:69:7F:2B:B2:E9:F4:C1:8E:F4
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/S6bRWpz-n4oj7hhpfyuy6fTBjvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.2.0/24
5.105.14.0/24
5.105.16.0/24
5.105.18.0/24
5.105.20.0/23
5.105.23.0/24
5.105.26.0/24
5.105.30.0/24
5.105.32.0/24
5.105.40.0/24
5.105.44.0/24
5.105.57.0/24
5.105.62.0/23
5.105.75.0/24
5.105.114.0/23
5.105.122.0/24
5.105.127.0/24
5.105.131.0/24
5.105.134.0/24
5.105.136.0/24
5.105.138.0/24
5.105.157.0/24
5.105.162.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:c4:97:7e:ba:98:a6:a8:69:cb:10:55:7a:fc:67:cb:42:9d:
27:4f:ef:13:c1:0e:2c:f3:6a:e2:3a:6f:ad:11:13:59:c1:5a:
f1:d5:ff:70:82:7b:dd:21:e1:d6:48:71:8f:78:66:07:d0:d8:
6a:7f:2f:f3:61:ff:5d:d7:4d:32:0f:70:8d:ad:f8:76:ee:86:
c0:5d:97:78:6e:8d:b8:ab:92:28:93:11:a6:0e:a5:cc:e4:68:
7d:c6:ac:91:b7:74:db:4f:0a:fc:a5:e8:0d:07:18:1c:ca:28:
e2:71:e6:55:eb:62:22:b6:e5:cd:ba:14:eb:e3:7e:07:52:cf:
ec:d5:e2:b9:89:1f:3c:f2:f8:ed:b0:d0:60:5c:92:89:d3:da:
4e:58:d7:a5:46:74:60:b7:5d:15:81:1d:ad:08:56:b6:46:83:
98:5a:0b:49:1c:8c:47:d4:2a:3f:6e:9e:87:5e:6a:60:b5:e0:
8c:b4:ef:d3:6c:d8:ea:61:25:5a:78:29:44:1c:40:23:f0:bf:
09:19:99:24:aa:c2:a7:c3:08:c1:06:61:0e:a1:97:e5:50:e9:
43:b7:f0:3c:ed:01:c3:27:66:90:f1:f1:69:5f:33:d9:d6:b0:
e4:9f:26:19:2c:70:e1:f8:64:63:0a:63:bb:55:07:54:4b:cb:
44:3b:e2:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 22 13:33:01 2023 by rpki-client on console-fra.rpki-client.org