Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/VeUqtqnzg96GZq8Scoc-OLTgD_o.roa
File: VeUqtqnzg96GZq8Scoc-OLTgD_o.roa (raw, json)
Hash identifier: GGvBUy677Qyd2tbg3BtfX2g6IxEgcNpwMNBEDicYW3k=
Subject key identifier: 55:E5:2A:B6:A9:F3:83:DE:86:66:AF:12:72:87:3E:38:B4:E0:0F:FA
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0188539B9314CBD194D57A707EBAAF164F79
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/VeUqtqnzg96GZq8Scoc-OLTgD_o.roa
Signing time: Thu 25 May 2023 15:51:24 +0000
ROA not before: Thu 25 May 2023 15:51:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.158.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.71.0/24 maxlen: 24
5.105.77.0/24 maxlen: 24
5.105.85.0/24 maxlen: 24
5.105.98.0/24 maxlen: 24
5.105.104.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.242.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.185.0/24 maxlen: 24
5.105.188.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.221.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.41.0/24 maxlen: 24
5.105.51.0/24 maxlen: 24
5.105.64.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 May 2023 18:25:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:53:9b:93:14:cb:d1:94:d5:7a:70:7e:ba:af:16:4f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: May 25 15:51:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55e52ab6a9f383de8666af1272873e38b4e00ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0e:f4:1d:c1:8c:9d:31:47:0a:40:f1:a2:26:
5c:71:74:6f:ca:14:e2:8f:7a:8e:90:f8:d2:20:84:
e3:89:0b:a5:e3:5a:1b:a0:21:05:55:e5:6d:6a:ec:
08:5b:ed:83:8b:06:2f:81:59:11:de:e3:31:1c:29:
b3:66:3e:49:79:ff:de:1d:89:25:7b:38:df:ca:57:
cb:51:90:fe:6a:fa:92:a3:50:7a:d9:90:f5:c1:7d:
de:b9:39:93:96:6f:15:13:21:d0:c9:a7:d5:90:41:
3c:ba:e6:4c:8a:fe:26:91:34:de:e6:69:e0:b2:4b:
a4:4d:da:fe:a1:59:f4:62:96:c7:dd:e0:04:ce:29:
60:66:04:40:23:6c:3f:70:57:0f:00:2e:2d:b3:7d:
14:48:8a:a0:45:f6:6b:e6:81:3c:0d:9a:1c:d5:5f:
da:a8:6a:4b:d8:8f:72:ff:fd:ec:64:3b:4a:31:30:
8a:58:dd:c0:fe:9e:c6:72:9e:9e:0e:df:58:66:fa:
5d:cb:a7:eb:b1:4d:2c:6d:1b:39:32:e9:e6:f3:49:
1e:93:63:15:56:60:d2:8e:9a:3d:19:e6:b4:4a:0c:
92:de:cb:df:62:89:97:7e:3a:43:5a:04:57:97:45:
ac:62:79:8b:ee:d5:6d:f6:e5:27:fe:44:f4:55:43:
28:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E5:2A:B6:A9:F3:83:DE:86:66:AF:12:72:87:3E:38:B4:E0:0F:FA
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/VeUqtqnzg96GZq8Scoc-OLTgD_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.31.0/24
5.105.41.0/24
5.105.51.0/24
5.105.64.0/24
5.105.71.0/24
5.105.77.0/24
5.105.85.0/24
5.105.98.0/24
5.105.104.0/24
5.105.118.0/24
5.105.158.0/24
5.105.162.0/24
5.105.165.0-5.105.166.255
5.105.170.0/24
5.105.185.0-5.105.188.255
5.105.197.0-5.105.199.255
5.105.202.0/23
5.105.215.0/24
5.105.218.0/24
5.105.221.0/24
5.105.228.0/23
5.105.239.0-5.105.240.255
5.105.242.0/24
5.105.244.0/23
5.105.247.0/24
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:64:1b:4d:73:fc:e0:d5:55:f8:60:04:e2:54:9c:85:ae:7a:
51:94:cc:72:e7:4b:94:c4:c4:bb:1c:13:65:14:ce:19:8f:6b:
e1:ab:9e:f6:80:d2:7a:e2:e7:30:45:fa:81:6f:43:cb:66:8b:
53:70:17:cf:b7:cd:56:2c:5f:72:95:d5:2f:10:11:a3:57:40:
4b:a3:ae:aa:0f:3b:bc:9c:1b:2f:d0:78:8e:73:40:7a:a8:39:
d7:27:8a:7f:94:9c:82:ed:42:da:6f:12:a6:e5:4b:26:92:c4:
33:4b:63:40:e6:b7:d4:e5:83:30:2a:31:5d:1e:a8:a6:48:bd:
ba:e9:b9:64:86:01:34:07:73:c8:bb:03:55:21:58:32:f3:4a:
f7:34:46:57:6e:fe:04:cd:2b:b0:79:ac:26:c5:ca:b1:59:60:
fe:37:99:a3:14:f9:5f:86:f1:f1:f4:da:04:4f:54:2c:33:fa:
e5:11:0a:a9:64:f8:36:8a:a6:69:0f:93:7a:83:a2:28:11:b1:
aa:92:e2:d4:c2:56:53:55:ef:31:61:db:71:87:37:7b:c7:47:
4e:7b:41:04:fe:5e:3f:f6:44:84:84:34:c6:39:29:b9:e3:bd:
a5:cf:2d:2b:58:fe:70:04:a8:72:d0:d4:78:5c:65:fd:05:e7:
f7:f4:d8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:28 2024 by rpki-client on console-fra.rpki-client.org