Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/YeKVzw418buI0LBmPnDwqVzV_FU.roa
File: YeKVzw418buI0LBmPnDwqVzV_FU.roa (raw, json)
Hash identifier: kn02+Op7Nc+DcrjebGfpouNoRheaR9cqJldQXhLSjIY=
Subject key identifier: 61:E2:95:CF:0E:35:F1:BB:88:D0:B0:66:3E:70:F0:A9:5C:D5:FC:55
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018959105F8999650F5E68FA8B7E3C1706DC
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/YeKVzw418buI0LBmPnDwqVzV_FU.roa
Signing time: Sat 15 Jul 2023 10:19:52 +0000
ROA not before: Sat 15 Jul 2023 10:19:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.117.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.200.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.21.0/24 maxlen: 24
5.105.18.0/24 maxlen: 24
5.105.37.0/24 maxlen: 24
5.105.36.0/24 maxlen: 24
5.105.49.0/24 maxlen: 24
5.105.47.0/24 maxlen: 24
5.105.45.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:59:10:5f:89:99:65:0f:5e:68:fa:8b:7e:3c:17:06:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jul 15 10:19:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61e295cf0e35f1bb88d0b0663e70f0a95cd5fc55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ad:7b:84:53:84:cf:30:26:09:c6:ea:80:9a:
07:c1:85:3c:17:12:c6:30:19:e6:dd:ad:ea:72:83:
6e:8a:50:40:0d:82:f7:26:5f:01:12:04:da:37:74:
80:33:7e:b8:58:8c:eb:7e:f3:f2:73:90:73:d3:b8:
3e:76:f6:03:96:fa:cb:bd:d7:a8:84:4f:48:94:01:
8b:85:73:f2:76:7b:81:00:a9:24:d7:1a:e5:e2:96:
22:2f:48:ac:a4:f9:f2:fe:5b:d4:00:32:e5:1b:49:
84:3d:f5:50:b2:6d:ba:94:53:85:ee:57:7c:9c:4f:
6d:4c:7a:97:73:ff:f9:66:24:24:5a:29:8c:8e:ff:
0e:09:3f:1b:b5:40:c3:e2:45:58:42:3d:3d:11:11:
61:68:09:02:fd:d5:61:4e:ac:04:a7:75:ea:7f:5a:
ff:f4:0a:73:a7:ca:19:cb:ee:cf:21:43:a3:a6:f8:
26:b2:02:c9:a1:89:e7:2d:42:4d:2a:ae:55:71:20:
c0:eb:97:bb:f4:5a:05:06:de:68:f0:e7:85:fd:30:
02:7b:3f:7f:5c:ab:10:d5:e4:5d:a2:65:d3:57:6e:
a4:fd:42:8c:0a:f7:82:ae:08:26:b7:97:a9:59:0a:
a9:2c:cc:67:fb:04:73:a7:c6:50:03:3c:75:c9:e1:
78:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E2:95:CF:0E:35:F1:BB:88:D0:B0:66:3E:70:F0:A9:5C:D5:FC:55
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/YeKVzw418buI0LBmPnDwqVzV_FU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.7.0/24
5.105.18.0/24
5.105.21.0/24
5.105.36.0/23
5.105.45.0/24
5.105.47.0/24
5.105.49.0/24
5.105.94.0/24
5.105.102.0/24
5.105.113.0/24
5.105.117.0-5.105.118.255
5.105.124.0/24
5.105.127.0/24
5.105.139.0/24
5.105.157.0/24
5.105.162.0/24
5.105.166.0/24
5.105.170.0/24
5.105.186.0/23
5.105.198.0-5.105.200.255
5.105.202.0/23
5.105.206.0/24
5.105.215.0-5.105.216.255
5.105.218.0/24
5.105.228.0/23
5.105.239.0-5.105.240.255
5.105.244.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:95:96:dd:30:d0:16:08:62:66:7b:47:87:19:b1:64:09:b1:
0c:61:de:26:fa:1a:12:5d:d1:e3:ad:4f:d7:91:4b:09:2b:fd:
f2:44:df:68:e2:73:29:4c:da:18:45:f3:ce:20:a1:21:85:80:
78:cf:41:4e:fd:3e:42:f1:78:b5:c5:52:c9:14:84:d9:10:25:
98:4e:68:77:49:c5:fe:89:c7:14:3b:4d:e5:6a:cf:25:f9:78:
c3:14:43:92:4f:8b:75:3e:17:92:5c:85:08:00:c8:09:bd:9f:
be:7a:6b:b5:96:70:b8:89:36:b8:28:af:64:21:9c:2f:9f:03:
42:86:2d:e1:20:ae:9f:06:9e:0a:e2:4c:ba:4d:6f:f5:bf:4d:
cc:ad:fa:84:9b:cf:57:24:17:01:40:4b:14:28:4a:3c:f2:b1:
1a:37:02:4d:09:a4:72:e6:51:60:3e:63:3a:f3:db:13:63:67:
f5:f0:e0:70:1f:db:62:3e:70:9a:54:0c:7f:b9:d0:cb:52:82:
ae:81:7c:31:95:09:55:29:ff:f0:0f:92:29:ca:a9:61:91:12:
91:06:6c:2c:a2:9d:6c:64:8d:f5:a9:53:19:05:fe:20:87:7e:
7d:aa:b5:85:65:e9:ae:bc:a2:a0:9b:71:8c:99:3b:13:c9:66:
d5:fb:40:4d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org