Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/TueM2oWL8oG8HmFBfbh2OBcpJl8.roa
File: TueM2oWL8oG8HmFBfbh2OBcpJl8.roa (raw, json)
Hash identifier: 3HaW2h4e95cAIVAMQTiVfhmETVBnv5iJNc2Er2Qk2sY=
Subject key identifier: 4E:E7:8C:DA:85:8B:F2:81:BC:1E:61:41:7D:B8:76:38:17:29:26:5F
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01873194350B6C7223798EFF406AF376B45D
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/TueM2oWL8oG8HmFBfbh2OBcpJl8.roa
Signing time: Thu 30 Mar 2023 08:13:29 +0000
ROA not before: Thu 30 Mar 2023 08:13:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 193.46.210.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.124.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.66.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.104.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.185.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.30.0/24 maxlen: 24
5.105.51.0/24 maxlen: 24
5.105.4.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:31:94:35:0b:6c:72:23:79:8e:ff:40:6a:f3:76:b4:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Mar 30 08:13:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ee78cda858bf281bc1e61417db876381729265f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2f:6b:a6:7b:6a:e7:b6:f8:98:6e:d8:b9:75:
aa:85:ce:e4:2f:a3:57:99:09:bf:c7:e0:bf:5d:34:
c3:f1:d2:2b:40:de:af:13:c7:7f:79:cb:ab:7d:12:
07:63:b4:10:8b:9f:78:ab:57:d5:d6:0e:db:3a:95:
26:f0:5d:6b:27:f8:e3:cf:72:53:23:a8:41:62:d6:
9f:ed:ac:e6:a2:7d:22:bd:27:cc:ff:f5:ce:0b:16:
75:ef:cd:e2:68:2c:bb:61:1f:1d:80:cd:22:31:af:
0d:4e:16:1e:ff:73:c0:ab:a7:a4:85:97:1f:07:7a:
b5:f5:be:f4:23:bc:4b:af:4b:64:03:53:da:36:60:
bf:36:a7:dc:08:e2:02:50:17:b3:3c:36:6c:df:76:
f6:0d:2f:e0:c1:9a:a1:66:5d:58:04:db:03:a3:e3:
9f:84:54:9c:2f:4c:09:13:51:05:a7:57:4d:58:8f:
8f:98:4f:41:de:da:10:d0:f3:4c:5b:16:ef:c5:16:
c1:13:ab:48:1f:f3:e4:8a:29:c7:cc:23:4a:d1:ba:
98:d9:f0:6c:4f:ba:de:26:33:49:98:06:82:c3:14:
98:12:ea:7a:b7:99:a7:68:06:a0:66:94:ca:c6:e9:
ee:73:9e:a7:df:65:50:cd:af:fc:5c:c0:32:78:ca:
45:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E7:8C:DA:85:8B:F2:81:BC:1E:61:41:7D:B8:76:38:17:29:26:5F
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/TueM2oWL8oG8HmFBfbh2OBcpJl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.4.0/24
5.105.30.0/23
5.105.51.0/24
5.105.66.0/24
5.105.68.0/23
5.105.82.0/24
5.105.102.0/24
5.105.104.0/24
5.105.112.0/22
5.105.118.0/24
5.105.124.0/24
5.105.127.0/24
5.105.138.0/23
5.105.142.0/23
5.105.157.0/24
5.105.162.0/24
5.105.165.0/24
5.105.168.0/24
5.105.170.0/24
5.105.172.0/24
5.105.185.0-5.105.187.255
5.105.197.0-5.105.199.255
5.105.202.0/23
5.105.206.0/23
5.105.215.0-5.105.216.255
5.105.218.0/24
5.105.228.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:b4:38:b1:66:f7:42:1f:f2:54:64:ed:93:33:76:be:51:2d:
c6:7b:90:a4:88:53:f4:2a:6e:b4:5a:ef:f8:89:5b:61:43:79:
b9:2e:bb:61:cb:3c:f3:74:7e:71:5e:91:56:fe:bd:f9:f1:9c:
bb:eb:09:63:f4:55:1a:31:de:9e:c8:2c:fa:14:2f:09:ed:db:
36:66:14:de:7b:9a:8c:58:c5:82:71:83:87:1f:e5:a8:99:ef:
6b:fc:0b:a7:6f:9b:f2:c6:5b:13:29:f6:50:fb:e5:85:e1:f7:
ba:fa:4d:9a:ba:b9:73:ef:f3:ff:87:44:e1:fa:4e:42:f5:6a:
c6:9a:8d:39:59:33:ae:32:57:7f:49:b8:23:eb:6b:2f:b3:7a:
af:8e:4c:28:19:08:65:5e:23:42:a9:f9:ce:30:20:d8:fb:a4:
87:9c:58:fa:e6:11:1a:2d:7f:7b:b8:9e:de:0b:64:c2:85:82:
4e:89:70:f0:fa:ea:cb:20:73:39:d5:1d:dc:91:fd:fb:7c:85:
0b:62:95:20:93:ac:4a:d0:d9:9f:dc:a3:29:c7:8b:0e:71:d9:
5e:2a:ae:ce:4c:04:27:a2:27:4b:2b:94:39:3a:75:5c:3a:63:
c7:31:1c:d1:50:80:7a:55:49:bd:8e:60:21:3b:3a:61:42:f8:
20:6d:c6:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org