Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/VCmZ8rXq37RUmzH-YyeJzlPSOQM.roa
File: VCmZ8rXq37RUmzH-YyeJzlPSOQM.roa (raw, json)
Hash identifier: a7TSr5y1edSS+VuGA8acvo7OFB4sVC+GVTB7n6ioDQY=
Subject key identifier: 54:29:99:F2:B5:EA:DF:B4:54:9B:31:FE:63:27:89:CE:53:D2:39:03
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0189F59E1F277A28D47F96DFE5B4D6F9722F
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/VCmZ8rXq37RUmzH-YyeJzlPSOQM.roa
Signing time: Mon 14 Aug 2023 19:55:27 +0000
ROA not before: Mon 14 Aug 2023 19:55:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.122.0/24 maxlen: 24
5.105.131.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.136.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.169.0/24 maxlen: 24
5.105.75.0/24 maxlen: 24
5.105.101.0/24 maxlen: 24
5.105.111.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.185.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.209.0/24 maxlen: 24
5.105.14.0/24 maxlen: 24
5.105.21.0/24 maxlen: 24
5.105.23.0/24 maxlen: 24
5.105.18.0/24 maxlen: 24
5.105.26.0/24 maxlen: 24
5.105.30.0/24 maxlen: 24
5.105.32.0/24 maxlen: 24
5.105.40.0/24 maxlen: 24
5.105.44.0/24 maxlen: 24
5.105.57.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.105.62.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.1.0/24 maxlen: 24
5.105.2.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f5:9e:1f:27:7a:28:d4:7f:96:df:e5:b4:d6:f9:72:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Aug 14 19:55:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=542999f2b5eadfb4549b31fe632789ce53d23903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:31:f8:28:63:85:4f:1e:5f:a4:da:8f:7b:b3:
1b:65:b2:67:e4:0d:9b:78:59:c6:f0:17:14:ac:d7:
e7:a8:81:be:c4:2c:8b:89:0a:31:e1:ff:24:ee:d4:
1f:20:ef:48:0b:0f:20:ed:eb:1d:c2:73:7b:c8:7b:
a2:d2:8b:b6:5b:46:85:81:62:a9:2f:5a:3e:cc:4e:
63:46:72:55:11:a0:f3:b3:83:6f:57:08:93:4c:65:
19:2c:3a:82:61:c1:b3:78:fc:ec:7f:53:33:59:96:
2f:76:c0:9c:b6:e1:b4:1e:7c:1a:e4:18:6c:c9:68:
8b:6f:cf:09:60:23:bb:8a:73:12:fb:a2:98:40:fe:
ff:a1:18:88:87:de:4e:09:41:8c:57:2e:17:74:6d:
53:51:bb:dc:d1:77:c9:97:07:8c:23:29:c7:e5:ff:
4b:2d:d1:9e:94:0c:bc:da:22:fa:aa:b8:01:98:f3:
63:45:84:69:ce:0d:03:21:c7:c2:70:ab:19:63:c8:
c9:ae:bd:48:b7:02:da:c3:de:9d:03:6e:49:e4:d9:
14:e5:ab:c7:f2:4c:4e:ca:e5:03:90:f4:f7:28:24:
4b:bb:f1:c8:f3:1b:e5:79:5e:0f:83:0b:28:93:cd:
00:cf:f5:e6:54:1c:63:5d:ba:4b:cc:df:e5:07:10:
b5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:29:99:F2:B5:EA:DF:B4:54:9B:31:FE:63:27:89:CE:53:D2:39:03
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/VCmZ8rXq37RUmzH-YyeJzlPSOQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.1.0-5.105.2.255
5.105.14.0/24
5.105.18.0/24
5.105.21.0/24
5.105.23.0/24
5.105.26.0/24
5.105.30.0/24
5.105.32.0/24
5.105.40.0/24
5.105.44.0/24
5.105.57.0/24
5.105.62.0/23
5.105.75.0/24
5.105.101.0/24
5.105.111.0/24
5.105.114.0/23
5.105.122.0/24
5.105.127.0/24
5.105.131.0/24
5.105.134.0/24
5.105.136.0/24
5.105.138.0/24
5.105.157.0/24
5.105.162.0/24
5.105.169.0/24
5.105.185.0/24
5.105.209.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
56:bb:2f:34:6a:b6:ab:8b:94:0d:5e:d8:84:fa:bc:6b:a5:51:
58:04:3b:cf:8e:98:2d:a9:55:5f:ec:d1:ff:fc:5a:6c:ee:fe:
b1:94:01:b9:c3:60:4f:45:e5:42:9d:ca:b9:d3:2d:d0:f8:1b:
01:29:40:a6:25:7d:b3:97:fb:f0:eb:b4:44:db:5c:5e:98:d5:
c3:1f:66:47:f3:c9:16:2f:0b:e4:80:19:77:21:d4:34:5a:9b:
fe:a6:d4:cf:db:18:23:80:5f:dc:f9:31:75:a6:9e:fa:ec:00:
8a:ce:27:94:a0:a8:7a:32:1e:60:13:c6:f9:c5:5b:93:3f:9e:
79:5d:cd:bd:7a:21:4c:cc:7d:56:a8:d9:45:78:36:f6:bf:26:
96:e1:b0:3f:9c:da:ea:e3:83:40:8e:37:78:77:76:2b:3b:fc:
2a:a8:90:6d:ff:1e:be:b8:b0:a5:ba:a7:84:df:ae:7c:9c:02:
ef:78:46:d8:a6:c9:8d:7c:df:bd:da:72:34:60:fb:53:37:2e:
a6:ea:43:ef:2c:4b:fc:f8:42:10:ea:f7:5f:2f:24:6a:6e:8d:
a3:5d:55:47:cb:74:7e:93:e1:c5:08:d9:20:e3:8c:d0:f4:d2:
f7:54:be:94:db:32:67:66:8d:ab:18:c8:c1:de:7d:02:a3:4f:
ef:89:7d:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 15 13:57:38 2023 by rpki-client on console-ams.rpki-client.org