Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/SWZ13Ycmjru5kzZpykEEbSqG1pw.roa
File: SWZ13Ycmjru5kzZpykEEbSqG1pw.roa (raw, json)
Hash identifier: RPc/Bj+DTw5TXhfZgEGDqwW3WxUOjIHmbJD4GEGYiPs=
Subject key identifier: 49:66:75:DD:87:26:8E:BB:B9:93:36:69:CA:41:04:6D:2A:86:D6:9C
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01860CF9A3A82DE5CD8DC8AB393DC79144FA
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/SWZ13Ycmjru5kzZpykEEbSqG1pw.roa
Signing time: Wed 01 Feb 2023 12:35:32 +0000
ROA not before: Wed 01 Feb 2023 12:35:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 193.46.210.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.125.0/24 maxlen: 24
5.105.130.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.156.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.74.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.81.0/24 maxlen: 24
5.105.80.0/24 maxlen: 24
5.105.79.0/24 maxlen: 24
5.105.95.0/24 maxlen: 24
5.105.103.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.108.0/24 maxlen: 24
5.105.106.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
5.105.195.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.204.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.214.0/24 maxlen: 24
5.105.226.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.33.0/24 maxlen: 24
5.105.50.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
5.105.10.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0c:f9:a3:a8:2d:e5:cd:8d:c8:ab:39:3d:c7:91:44:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Feb 1 12:35:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=496675dd87268ebbb9933669ca41046d2a86d69c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0d:4c:38:7e:9d:66:63:bf:fb:c7:06:2e:d5:
d2:aa:64:2c:33:86:6b:46:ea:67:a1:8f:4b:19:bf:
e8:80:75:3a:12:13:de:11:48:68:b3:f0:cc:a3:8a:
b7:a1:c5:b0:23:87:92:4f:b0:92:f6:87:11:bb:5f:
24:6c:37:0f:da:6b:2a:c2:3c:f3:5a:ca:dd:67:71:
e1:44:62:ba:5f:e0:1f:be:95:a0:8c:9d:43:c0:46:
03:b8:89:e7:0f:7e:54:95:b2:ce:c8:5a:61:e1:03:
77:6e:de:97:ff:f7:bd:e9:fc:69:ea:5f:7a:49:6c:
e1:69:68:32:23:f8:8a:8d:bb:9c:6b:88:1f:e0:11:
2a:03:e1:53:ce:3c:ee:78:96:81:12:35:40:e9:35:
d8:69:54:3b:fc:02:ad:9e:0a:e6:16:ba:7d:4a:11:
77:bb:a6:25:fe:c6:77:23:ed:44:dc:c9:84:50:85:
f4:b6:d5:71:94:95:0f:f1:d5:98:5d:c9:d9:36:a7:
0a:90:c5:28:ab:01:f0:46:d7:a3:70:95:4b:b0:a7:
f9:56:15:4f:76:46:df:18:d9:2d:14:22:99:e9:e7:
e2:e9:5e:af:38:e0:e4:38:82:b4:8c:5b:c5:fc:89:
be:b7:ba:a0:e0:14:63:cd:0b:30:9d:c5:3f:8f:54:
03:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:66:75:DD:87:26:8E:BB:B9:93:36:69:CA:41:04:6D:2A:86:D6:9C
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/SWZ13Ycmjru5kzZpykEEbSqG1pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.7.0/24
5.105.10.0/24
5.105.12.0/24
5.105.33.0/24
5.105.50.0/24
5.105.68.0/23
5.105.74.0/24
5.105.79.0-5.105.82.255
5.105.95.0/24
5.105.103.0/24
5.105.106.0/24
5.105.108.0/24
5.105.112.0/22
5.105.125.0/24
5.105.127.0/24
5.105.130.0/24
5.105.134.0/24
5.105.138.0/23
5.105.142.0/23
5.105.156.0/24
5.105.162.0/24
5.105.165.0-5.105.166.255
5.105.168.0/24
5.105.172.0/24
5.105.186.0/23
5.105.195.0/24
5.105.197.0-5.105.199.255
5.105.202.0-5.105.204.255
5.105.206.0/23
5.105.214.0-5.105.216.255
5.105.226.0/24
5.105.229.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:0d:80:64:ee:1b:fa:e0:a7:9c:70:aa:d6:7e:63:89:8b:26:
b2:8f:a6:30:39:b7:89:f7:c1:eb:58:0f:5f:4d:32:95:d3:52:
90:28:b4:a1:7a:a4:8f:5d:f6:a4:58:aa:27:7a:e3:8e:db:b5:
f3:15:34:57:ef:a2:95:b3:78:58:1f:fa:5a:bf:a4:f6:49:97:
19:4a:36:02:77:43:04:68:c2:66:fd:5d:36:50:8d:27:18:17:
51:02:68:20:5c:5f:36:52:38:9d:46:92:22:c0:fb:40:d4:87:
71:75:98:9e:10:ec:55:bd:62:21:ff:b6:d9:2b:e6:86:dc:8b:
9f:5c:29:0c:d3:78:62:1d:c1:95:e8:fb:62:b3:59:c1:64:ec:
71:91:dd:d5:70:b9:d9:8a:95:db:68:fc:02:39:64:52:57:c0:
7a:ce:2f:b3:53:cc:7d:69:ff:94:91:07:51:0d:97:65:a6:8f:
5f:ea:d0:81:c4:25:ae:db:ed:1e:34:7b:81:14:94:39:3c:6a:
e4:31:4a:be:4e:af:02:55:fe:7c:a6:4f:62:68:4d:89:44:7c:
b1:8c:c7:85:a8:19:4c:d7:ef:7e:55:d3:f8:5b:12:2a:93:02:
d2:83:b8:1f:a1:3d:b9:eb:32:93:fc:1b:3a:a4:b0:e0:b6:cb:
51:f2:cd:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org