Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Sz5yiXht1NNo_v-3M52xoVvEY_8.roa
File: Sz5yiXht1NNo_v-3M52xoVvEY_8.roa (raw, json)
Hash identifier: xEbQblqNNVMthqa9VzwCLYCPQiX4gKG6EL/cyVXg5t0=
Subject key identifier: 4B:3E:72:89:78:6D:D4:D3:68:FE:FF:B7:33:9D:B1:A1:5B:C4:63:FF
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018682B2B8CBE3C25857048E82596AC8104A
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Sz5yiXht1NNo_v-3M52xoVvEY_8.roa
Signing time: Fri 24 Feb 2023 09:13:16 +0000
ROA not before: Fri 24 Feb 2023 09:13:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.136.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Feb 2023 12:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:82:b2:b8:cb:e3:c2:58:57:04:8e:82:59:6a:c8:10:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Feb 24 09:13:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b3e7289786dd4d368feffb7339db1a15bc463ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ed:9a:98:4e:ab:7d:86:65:21:dc:92:a5:dd:
d4:84:97:21:0d:9f:5d:2d:bc:80:a5:69:44:de:a6:
96:02:38:e6:bc:74:55:12:f0:f2:17:94:57:f9:e9:
6d:5d:e4:c6:28:b0:91:d4:a8:a5:69:2c:e2:54:c0:
d2:8b:36:da:60:bd:91:df:f5:e6:ca:62:d9:3e:37:
8e:6d:93:3a:db:8c:1c:ad:88:2e:1e:d8:33:03:d1:
ae:b3:ab:25:1a:78:69:d3:87:74:bb:03:90:da:6d:
a5:26:c8:7c:e8:a3:8b:38:ad:74:92:68:fc:75:92:
06:08:cc:1f:9d:18:0e:dd:02:75:58:78:db:98:26:
c8:35:1b:c4:ec:51:bf:15:d2:ec:3d:6f:54:cb:81:
06:fa:ac:41:36:a3:35:48:9f:c0:c4:cf:ea:86:bb:
54:74:40:e2:90:d6:0c:54:be:49:5d:6c:28:27:ed:
90:2d:5c:cf:90:d6:2c:7f:e9:0f:31:a1:50:4f:38:
46:f5:f2:5a:1e:a6:3e:58:a6:52:b2:4e:0c:8f:75:
e2:34:fd:5b:d1:52:90:0a:dc:cc:f9:7b:8d:88:75:
11:a3:ba:bd:b9:9d:0e:51:63:78:1f:3b:ef:3d:4c:
b9:09:5f:b5:3f:dc:64:77:08:1b:49:79:83:98:15:
1b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:3E:72:89:78:6D:D4:D3:68:FE:FF:B7:33:9D:B1:A1:5B:C4:63:FF
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Sz5yiXht1NNo_v-3M52xoVvEY_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.12.0/24
5.105.68.0/23
5.105.112.0/22
5.105.136.0/24
5.105.138.0/23
5.105.142.0/23
5.105.162.0/24
5.105.165.0/24
5.105.186.0/23
5.105.198.0/23
5.105.202.0/23
5.105.206.0/23
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
56:fc:a0:86:c7:f4:5e:8d:65:db:81:80:26:23:f2:04:cf:44:
75:b6:da:20:64:91:3f:6b:81:d1:ba:b5:dc:8c:3e:78:b7:46:
72:29:03:e8:07:74:bd:13:1d:42:19:b9:7b:3c:2b:88:9e:82:
b7:9e:6a:64:40:31:70:ee:f8:6f:d7:fc:6b:47:2f:fb:c6:cd:
c0:96:b4:45:52:08:e8:ac:8e:43:a0:29:73:68:be:3f:a2:aa:
d5:43:91:f9:18:64:29:0d:f0:76:73:40:1a:22:d1:51:3c:39:
ed:2b:68:6b:e2:7f:77:f6:91:88:ce:7a:6a:2a:e7:2d:1b:ac:
fe:d6:f7:af:30:10:e0:3c:f3:8e:11:a8:0b:c3:e5:05:23:db:
9d:93:28:5c:e6:8f:2b:a0:15:eb:15:bd:4d:99:a8:8d:28:38:
86:4f:f8:14:e0:a0:8e:1c:84:2e:7a:e6:8f:82:ca:bc:55:da:
68:93:83:46:c7:4e:36:66:f5:88:01:1c:73:72:7a:5a:a3:00:
c1:52:28:12:1d:8f:f9:05:6b:1d:ec:7b:5b:8b:67:b6:25:be:
6b:2e:3d:45:7c:14:de:4b:64:7a:45:07:97:35:f9:71:7d:17:
15:7b:fc:fc:49:e5:6b:aa:08:8e:ba:02:5c:43:75:9a:bf:df:
fe:5c:e4:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:57 2024 by rpki-client on console-ams.rpki-client.org