Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/VI3ijMKtcKu2OXnAoY3dj46EGgY.roa
File: VI3ijMKtcKu2OXnAoY3dj46EGgY.roa (raw, json)
Hash identifier: JQZFtUFsieRb83vHcDPtDghzHzUKs5ncSj68hqAu+Nw=
Subject key identifier: 54:8D:E2:8C:C2:AD:70:AB:B6:39:79:C0:A1:8D:DD:8F:8E:84:1A:06
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0185CC14A92ADAEC29E8B7436150A4B19D63
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/VI3ijMKtcKu2OXnAoY3dj46EGgY.roa
Signing time: Thu 19 Jan 2023 22:09:44 +0000
ROA not before: Thu 19 Jan 2023 22:09:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 5.105.130.0/24 maxlen: 24
5.105.136.0/24 maxlen: 24
5.105.96.0/24 maxlen: 24
5.105.30.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.38.0/24 maxlen: 24
5.105.33.0/24 maxlen: 24
5.105.32.0/24 maxlen: 24
5.105.39.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.105.184.0/24 maxlen: 24
5.105.200.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
5.105.226.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cc:14:a9:2a:da:ec:29:e8:b7:43:61:50:a4:b1:9d:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 19 22:09:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=548de28cc2ad70abb63979c0a18ddd8f8e841a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f9:d5:30:bc:9c:a1:80:30:c5:6f:7e:1f:a3:
42:a8:08:bf:d4:9a:6a:1c:70:cb:51:f4:56:6b:03:
76:84:a3:1d:b5:85:94:21:b9:25:3d:bd:a4:5b:2d:
7b:8b:d9:8f:cb:4a:55:89:43:20:e5:20:b9:43:2d:
53:8a:20:82:e4:cf:2a:95:9a:ce:0d:c6:81:d4:01:
cc:74:b5:61:d5:a6:53:e4:7f:8e:ae:04:bd:8a:4d:
e9:45:8f:3a:b6:cd:59:de:3e:d6:eb:d1:d2:35:30:
c7:0b:e7:5c:fe:84:cd:7d:4d:ee:96:e8:e0:f3:bb:
47:93:3b:fa:9f:c3:0f:28:52:4a:87:20:6f:81:66:
d5:25:ed:aa:bb:77:e9:ad:b9:78:16:41:58:77:b9:
76:0c:6b:1b:82:d0:32:66:93:aa:98:e1:c4:6e:5c:
41:b0:a4:89:ef:97:33:81:1f:71:f3:03:ea:5e:0b:
c6:2a:18:7e:43:cf:c4:2e:b2:ae:f9:e5:77:a8:0f:
e0:da:96:46:3b:56:ed:af:e1:07:8c:09:6d:70:d7:
4f:9a:1c:7c:22:63:98:fc:0c:01:6a:18:5d:3b:d4:
39:ba:db:64:a2:40:46:10:38:06:a7:c1:4a:94:0a:
3b:8c:e6:9f:76:ec:8b:a5:ce:27:e6:a2:32:9b:d7:
02:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:8D:E2:8C:C2:AD:70:AB:B6:39:79:C0:A1:8D:DD:8F:8E:84:1A:06
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/VI3ijMKtcKu2OXnAoY3dj46EGgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.7.0/24
5.105.30.0-5.105.33.255
5.105.38.0/23
5.105.63.0/24
5.105.96.0/24
5.105.130.0/24
5.105.136.0/24
5.105.184.0/24
5.105.200.0/24
5.105.215.0/24
5.105.226.0/24
Signature Algorithm: sha256WithRSAEncryption
20:94:4c:fe:7d:0e:e6:1f:8a:7d:89:3e:7c:0f:1a:bd:c9:6d:
77:15:a9:82:25:63:6d:49:b7:68:2f:0e:f2:e1:3c:64:b9:c9:
cc:1b:68:eb:39:c5:0c:cf:4c:83:3c:ec:f2:f2:3c:1e:b7:92:
ff:ed:85:83:c8:6a:3c:80:8a:b9:74:4b:04:df:87:ea:91:82:
da:f0:e0:fa:31:9b:54:4d:23:05:a2:2c:c4:74:96:d2:14:ee:
c8:47:d6:e7:ce:96:95:21:e9:71:aa:ea:3e:2e:7c:7b:d7:61:
53:f9:f8:e2:de:a2:12:52:32:84:e9:be:e2:25:fd:f6:fe:e2:
fa:66:ba:b2:1e:81:03:9e:22:68:7c:40:d5:bd:33:7d:fa:9a:
eb:68:51:45:ef:6a:2b:b2:2d:c3:26:e8:66:ba:c0:7a:af:d2:
e2:ca:3f:a0:db:ec:77:39:b7:33:47:2b:51:49:d8:45:02:9e:
22:d5:18:d9:e7:8d:96:0b:3b:5c:1b:89:eb:77:dd:8a:0f:f9:
09:96:e4:54:ba:e0:74:1d:4e:82:41:c4:82:00:50:10:42:61:
35:4b:60:c0:8c:d5:05:9b:24:4c:bc:08:2c:50:b7:1f:cd:5d:
a9:58:39:fe:9e:5e:01:de:5b:62:39:de:c7:32:31:e5:7e:93:
24:90:48:3e
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgISAYXMFKkq2uwp6LdDYVCksZ1jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZjhiNDUyNTRlNTQ3MGQxZDRjY2U2ZmI3ZGZkNGQwZDgz
YjVkNTkwHhcNMjMwMTE5MjIwOTQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NDhkZTI4Y2MyYWQ3MGFiYjYzOTc5YzBhMThkZGQ4ZjhlODQxYTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmPnVMLycoYAwxW9+H6NCqAi/1Jpq
HHDLUfRWawN2hKMdtYWUIbklPb2kWy17i9mPy0pViUMg5SC5Qy1TiiCC5M8qlZrO
DcaB1AHMdLVh1aZT5H+OrgS9ik3pRY86ts1Z3j7W69HSNTDHC+dc/oTNfU3ulujg
87tHkzv6n8MPKFJKhyBvgWbVJe2qu3fprbl4FkFYd7l2DGsbgtAyZpOqmOHEblxB
sKSJ75czgR9x8wPqXgvGKhh+Q8/ELrKu+eV3qA/g2pZGO1btr+EHjAltcNdPmhx8
ImOY/AwBahhdO9Q5uttkokBGEDgGp8FKlAo7jOafduyLpc4n5qIym9cCvQIDAQAB
o4ICTTCCAkkwHQYDVR0OBBYEFFSN4ozCrXCrtjl5wKGN3Y+OhBoGMB8GA1UdIwQY
MBaAFN34tFJU5UcNHUzOb7ff1NDYO11ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2It
ODkzOTA2ZmI3ODU4LzEvVkkzaWpNS3RjS3UyT1huQW9ZM2RqNDZFR2dZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2ItODkzOTA2ZmI3ODU4
LzEvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGMGCCsGAQUFBwEHAQH/BFQwUjBQBAIAATBKAwQABWkHMAwD
BAEFaR4DBAEFaSADBAEFaSYDBAAFaT8DBAAFaWADBAAFaYIDBAAFaYgDBAAFabgD
BAAFacgDBAAFadcDBAAFaeIwDQYJKoZIhvcNAQELBQADggEBACCUTP59DuYfin2J
PnwPGr3JbXcVqYIlY21Jt2gvDvLhPGS5ycwbaOs5xQzPTIM87PLyPB63kv/thYPI
ajyAirl0SwTfh+qRgtrw4Poxm1RNIwWiLMR0ltIU7shH1ufOlpUh6XGq6j4ufHvX
YVP5+OLeohJSMoTpvuIl/fb+4vpmurIegQOeImh8QNW9M336mutoUUXvaiuyLcMm
6Ga6wHqv0uLKP6Db7Hc5tzNHK1FJ2EUCniLVGNnnjZYLO1wbiet33YoP+QmW5FS6
4HQdToJBxIIAUBBCYTVLYMCM1QWbJEy8CCxQtx/NXalYOf6eXgHeW2I53scyMeV+
kySQSD4=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org