Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/U_KD-B4axY7AQmEgXMwgWR_VY0k.roa
File: U_KD-B4axY7AQmEgXMwgWR_VY0k.roa (raw, json)
Hash identifier: LJvbopSMFGyVlAmFmJ8xC24iQVY9VRqx+xDfEgInbII=
Subject key identifier: 53:F2:83:F8:1E:1A:C5:8E:C0:42:61:20:5C:CC:20:59:1F:D5:63:49
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0185CC1C2EAD99C5A4A7809716F034009F49
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/U_KD-B4axY7AQmEgXMwgWR_VY0k.roa
Signing time: Thu 19 Jan 2023 22:17:57 +0000
ROA not before: Thu 19 Jan 2023 22:17:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.129.0/24 maxlen: 24
5.105.135.0/24 maxlen: 24
5.105.98.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.105.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.238.0/24 maxlen: 24
5.105.241.0/24 maxlen: 24
5.105.27.0/24 maxlen: 24
5.105.252.0/24 maxlen: 24
5.105.253.0/24 maxlen: 24
5.105.188.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cc:1c:2e:ad:99:c5:a4:a7:80:97:16:f0:34:00:9f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 19 22:17:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53f283f81e1ac58ec04261205ccc20591fd56349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b1:ba:0a:57:8f:53:77:62:ba:f2:8f:ec:10:
2d:ee:cd:01:5e:bd:75:53:12:73:e9:73:60:9f:2a:
4b:ff:2d:38:85:58:13:0e:d0:df:4d:da:97:06:31:
6b:6a:3b:6f:d2:5f:4b:86:41:9d:52:c0:cd:ce:1c:
91:c3:48:a5:3f:19:e0:68:68:af:99:74:bf:9b:9d:
ed:7b:5d:c0:42:15:ee:b8:47:cd:bf:9b:6b:5d:a1:
ae:cb:2c:70:8e:07:5d:b2:36:93:00:ee:01:1e:2c:
fe:21:b7:f8:f7:0b:db:1f:82:24:25:91:d1:6b:e4:
76:d4:d7:32:ed:73:ff:db:97:57:47:ba:f4:f6:5b:
2e:88:ee:fa:b3:88:e6:8e:cf:1e:3e:1b:6c:29:df:
c1:96:be:5f:a2:a4:7a:68:3e:d4:7a:01:8c:d9:8e:
2a:cb:bb:9d:2e:31:51:64:47:3f:44:a8:39:a8:2f:
c4:ba:5b:5b:bb:73:ee:f8:1f:43:fd:21:8e:61:0d:
03:3f:fa:03:21:11:cf:da:57:38:c4:26:ae:3d:27:
77:c9:8e:55:53:c2:61:69:32:7d:16:8e:df:d8:18:
b5:1e:e5:87:cc:fd:c5:9e:60:01:ba:62:e3:71:74:
d0:ea:cb:90:16:5b:23:46:f5:37:d8:9e:cd:4f:3f:
36:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F2:83:F8:1E:1A:C5:8E:C0:42:61:20:5C:CC:20:59:1F:D5:63:49
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/U_KD-B4axY7AQmEgXMwgWR_VY0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.27.0/24
5.105.94.0/24
5.105.98.0/24
5.105.102.0/24
5.105.105.0/24
5.105.124.0/24
5.105.129.0/24
5.105.135.0/24
5.105.188.0/24
5.105.238.0/24
5.105.241.0/24
5.105.252.0/23
Signature Algorithm: sha256WithRSAEncryption
68:19:27:a9:99:99:e5:90:87:3e:ac:ea:4c:b8:3f:30:23:e3:
7f:85:c8:2d:91:7d:5a:00:f4:ea:90:ca:b7:5b:7c:8a:53:e8:
cc:29:5f:a6:30:df:ea:85:22:52:ce:77:3e:42:a0:ad:d8:eb:
f3:bf:83:48:c3:49:6a:97:14:a2:6a:75:9b:8b:67:6a:50:41:
2b:92:d3:1f:b1:41:6d:ef:84:d9:fc:86:6b:6f:3e:2e:6f:f4:
ac:a8:63:9e:ba:0b:63:51:13:7c:8a:ec:23:35:58:97:87:8c:
7f:02:aa:d2:b7:f6:57:ef:20:53:1d:bd:98:3c:68:1a:61:e9:
4c:a5:c2:c7:2c:e2:e7:62:ed:f6:27:75:c1:00:02:ac:02:94:
d2:07:bf:a0:93:95:cc:82:7f:5c:25:99:6d:81:22:1b:72:72:
11:d6:d3:7c:f6:2e:06:6e:27:d5:b6:aa:ca:f5:b7:d7:47:7b:
ea:fb:90:d2:96:16:54:78:69:a2:65:ea:71:ad:1b:14:f2:28:
55:8b:4f:21:df:57:03:95:74:af:e1:3b:1b:e5:5a:97:df:4c:
22:19:a8:53:9a:b3:fe:6f:7e:45:f4:0d:9a:09:fd:52:27:71:
fc:e3:ca:72:96:41:cc:41:2a:48:13:3d:44:97:b2:62:b9:ae:
12:39:99:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org