Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/XgCsukQglg-Fi_y--ZlVsfcync0.roa
File: XgCsukQglg-Fi_y--ZlVsfcync0.roa (raw, json)
Hash identifier: 81fvdnG/xzCeCsK0ovLyRvqTUMILesgdsM3crtHqmdc=
Subject key identifier: 5E:00:AC:BA:44:20:96:0F:85:8B:FC:BE:F9:99:55:B1:F7:32:9D:CD
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018622F7CA668CEC0FB43E21595EA20A82E2
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/XgCsukQglg-Fi_y--ZlVsfcync0.roa
Signing time: Sun 05 Feb 2023 19:05:09 +0000
ROA not before: Sun 05 Feb 2023 19:05:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 193.46.210.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.125.0/24 maxlen: 24
5.105.130.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.156.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.74.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.81.0/24 maxlen: 24
5.105.79.0/24 maxlen: 24
5.105.95.0/24 maxlen: 24
5.105.103.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.108.0/24 maxlen: 24
5.105.106.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
5.105.195.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.204.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.214.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.33.0/24 maxlen: 24
5.105.38.0/24 maxlen: 24
5.105.39.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:22:f7:ca:66:8c:ec:0f:b4:3e:21:59:5e:a2:0a:82:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Feb 5 19:05:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e00acba4420960f858bfcbef99955b1f7329dcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9b:01:2d:3d:81:45:fc:20:47:32:41:1e:47:
39:e5:c8:18:c5:7a:21:75:01:74:21:27:97:51:60:
29:b9:7f:7e:21:22:47:fa:0c:80:37:d5:ba:9e:f1:
49:6a:41:cc:ce:1e:d6:8e:58:01:11:2f:24:2b:d0:
cd:f1:8b:dd:56:d5:6b:d2:bb:8e:70:bf:5a:91:c5:
45:db:ad:8c:8e:c1:fc:81:c5:81:ae:3f:c7:ff:e6:
f6:0a:b9:ae:cf:7e:8c:17:be:59:1a:68:81:3e:48:
29:17:8e:08:53:ec:70:b4:be:4a:70:2d:30:13:75:
cd:64:c9:78:59:1d:44:ba:52:f3:3f:68:b4:ba:54:
5a:39:e8:ee:ff:44:dd:a4:34:2d:10:c0:f7:41:3e:
0c:73:08:97:08:63:d2:51:b2:06:26:5b:fa:29:21:
4b:c8:3c:0f:fb:d3:66:c0:2f:3c:f7:22:bf:b3:d4:
4d:d7:f2:13:ad:f3:4c:46:7a:31:cc:7d:4b:af:b7:
f8:6a:d7:e3:47:74:c5:10:05:ae:57:c4:bd:9d:a8:
0f:3e:32:66:86:a1:e1:1f:bd:2a:30:c4:80:98:64:
5a:c1:5a:91:94:e9:18:02:04:d5:39:8e:d6:2b:53:
2e:99:4d:0f:e3:d8:06:f5:96:ef:bf:25:ee:a5:f7:
81:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:00:AC:BA:44:20:96:0F:85:8B:FC:BE:F9:99:55:B1:F7:32:9D:CD
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/XgCsukQglg-Fi_y--ZlVsfcync0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.7.0/24
5.105.12.0/24
5.105.33.0/24
5.105.38.0/23
5.105.68.0/23
5.105.74.0/24
5.105.79.0/24
5.105.81.0-5.105.82.255
5.105.95.0/24
5.105.103.0/24
5.105.106.0/24
5.105.108.0/24
5.105.112.0/22
5.105.125.0/24
5.105.127.0/24
5.105.130.0/24
5.105.138.0/23
5.105.142.0/23
5.105.156.0/24
5.105.162.0/24
5.105.165.0-5.105.166.255
5.105.168.0/24
5.105.172.0/24
5.105.186.0/23
5.105.195.0/24
5.105.197.0-5.105.199.255
5.105.202.0-5.105.204.255
5.105.206.0/23
5.105.214.0/24
5.105.216.0/24
5.105.229.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:58:94:c5:62:24:30:a3:40:43:a9:98:2c:ef:8f:89:33:cb:
b3:d3:5c:7e:77:46:c5:97:d6:b4:a8:bd:47:28:b1:f2:0a:6d:
d9:7f:c8:42:a0:f7:29:57:51:80:c6:78:ba:4e:7e:1b:1b:00:
86:48:7e:ff:ef:1f:7b:74:e7:7d:1c:1f:27:bb:57:6c:ca:65:
f0:23:99:21:35:a9:0e:84:1e:45:ef:16:49:2e:11:55:f3:8a:
70:88:a6:c5:9b:52:65:21:77:95:b7:a1:c4:5c:25:5e:69:c0:
58:60:01:02:cc:72:81:42:ba:ba:be:29:b5:ae:bd:88:0c:5b:
26:c5:f8:37:f8:24:fb:93:03:c9:71:da:4d:4a:c6:96:ee:3b:
27:0d:6f:31:f3:c1:06:0b:65:88:8a:58:37:a2:1d:bb:ef:30:
3e:44:14:ca:f5:ef:a6:99:42:03:27:7f:1e:be:ed:d2:65:a1:
dc:23:b8:e8:86:34:5a:d5:7e:4f:bf:55:83:eb:d0:00:09:2f:
e1:f9:15:25:66:9d:e6:06:b3:c2:bf:b5:62:55:61:34:ac:52:
38:15:fe:31:7f:51:22:4a:a2:6e:4b:35:67:b8:63:f5:07:18:
d1:46:90:47:b4:24:60:10:4c:b0:ec:4e:11:09:41:e4:70:6d:
40:35:95:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:18 2023 by rpki-client on console-fra.rpki-client.org