Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/YiZVXEbd82prEZQlFMacV-Zm6J0.roa
File: YiZVXEbd82prEZQlFMacV-Zm6J0.roa (raw, json)
Hash identifier: FeLr5BhCystmig2+x+wA7NXeSyOBW5nzXAMpGxoxexs=
Subject key identifier: 62:26:55:5C:46:DD:F3:6A:6B:11:94:25:14:C6:9C:57:E6:66:E8:9D
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0189D4637FECE3E3E0A7630AF06C8EA96B59
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/YiZVXEbd82prEZQlFMacV-Zm6J0.roa
Signing time: Tue 08 Aug 2023 09:03:57 +0000
ROA not before: Tue 08 Aug 2023 09:03:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.126.0/24 maxlen: 24
5.105.137.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.66.0/24 maxlen: 24
5.105.72.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.103.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.100.0/24 maxlen: 24
5.105.106.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.227.0/24 maxlen: 24
217.67.76.0/23 maxlen: 24
5.105.175.0/24 maxlen: 24
5.105.174.0/24 maxlen: 24
5.105.177.0/24 maxlen: 24
5.105.183.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.200.0/24 maxlen: 24
5.105.219.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.226.0/24 maxlen: 24
5.105.221.0/24 maxlen: 24
5.105.13.0/24 maxlen: 24
5.105.36.0/24 maxlen: 24
5.105.37.0/24 maxlen: 24
5.105.51.0/24 maxlen: 24
5.105.49.0/24 maxlen: 24
5.105.47.0/24 maxlen: 24
5.105.45.0/24 maxlen: 24
5.105.52.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:63:7f:ec:e3:e3:e0:a7:63:0a:f0:6c:8e:a9:6b:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Aug 8 09:03:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6226555c46ddf36a6b11942514c69c57e666e89d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:87:3b:e5:a8:68:a9:55:5a:1b:87:50:5c:da:
e4:19:ec:61:0b:9b:d5:6d:04:6e:4c:c0:0f:26:6d:
88:ef:10:b7:2d:5e:a4:d0:c5:a4:93:a7:e3:39:78:
22:e6:29:87:87:16:99:c2:3d:7a:bc:fd:ce:be:00:
47:19:65:9c:e2:bf:d3:8a:0b:7f:b5:48:28:fe:4b:
0a:e0:a9:9d:e6:96:7a:17:65:4c:e9:8d:69:25:df:
b4:c9:f9:da:ae:ed:1c:ba:7c:85:cb:b3:fc:ca:e7:
fa:0a:07:5e:e7:c9:be:ca:16:d0:aa:0d:ee:23:54:
3b:d9:f8:98:06:03:86:bf:ab:79:5c:ac:a2:64:31:
c7:fd:1d:a5:19:82:b3:95:51:72:6a:99:25:dd:32:
4c:8b:7c:d0:67:41:74:c0:9f:64:ac:4c:77:76:b5:
97:52:f5:3f:85:9e:7b:cc:c6:50:ff:ba:e5:11:1c:
c4:c5:d4:cb:11:91:0b:ce:11:34:80:a1:8a:0b:af:
40:a5:97:4c:00:f1:16:51:d9:41:5d:e7:d9:7c:17:
4b:a4:90:0f:28:bd:bd:70:40:cf:4b:f5:1e:e7:1b:
55:2d:d0:e7:77:7e:3c:09:d6:f5:05:bf:50:da:f0:
3a:9f:a6:57:6b:82:30:f6:a3:68:34:36:dd:46:74:
12:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:26:55:5C:46:DD:F3:6A:6B:11:94:25:14:C6:9C:57:E6:66:E8:9D
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/YiZVXEbd82prEZQlFMacV-Zm6J0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.13.0/24
5.105.36.0/23
5.105.45.0/24
5.105.47.0/24
5.105.49.0/24
5.105.51.0-5.105.55.255
5.105.66.0/24
5.105.69.0/24
5.105.72.0/24
5.105.94.0/24
5.105.100.0/24
5.105.102.0/23
5.105.106.0/24
5.105.113.0/24
5.105.118.0/24
5.105.124.0/24
5.105.126.0/24
5.105.137.0/24
5.105.143.0/24
5.105.166.0/24
5.105.168.0/24
5.105.174.0/23
5.105.177.0/24
5.105.183.0/24
5.105.198.0-5.105.200.255
5.105.216.0/24
5.105.218.0/23
5.105.221.0/24
5.105.226.0/23
5.105.229.0/24
217.67.76.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:36:6d:da:88:2d:5b:f0:8b:71:3a:9b:18:ae:18:0b:7c:1a:
82:fb:6d:28:88:ad:a1:5a:12:87:b2:c2:03:b7:29:76:b0:f7:
9e:6e:5e:0d:90:cf:1b:fc:df:6b:9c:ff:a0:b5:5e:52:a1:6b:
7d:10:aa:b0:d1:dc:2c:00:84:72:1a:05:69:dc:8c:65:90:01:
a9:86:82:19:86:ed:79:df:fc:f8:71:1c:15:f8:84:58:9c:7e:
ba:88:b0:9d:0f:a9:35:6e:76:57:2a:c6:20:d3:57:9d:e4:7b:
8c:9c:cd:c9:ab:36:dd:c2:39:92:15:3e:ef:af:3c:29:05:9c:
d8:c1:2d:1a:a7:fe:d1:6c:84:f0:1e:e2:c4:f0:46:5a:54:1d:
b5:35:9a:15:89:94:7b:64:fa:48:a7:65:6b:51:81:29:eb:31:
34:34:f2:a9:17:42:f4:fc:fc:bc:df:2a:5a:d6:34:2b:cb:a5:
35:00:3c:8c:1c:e0:79:ab:6a:b6:f7:42:bf:01:43:41:07:d7:
61:c4:b5:95:2c:53:b8:72:e2:ad:7a:00:52:12:f5:4f:41:2c:
44:3f:b4:5d:94:0c:43:2b:76:51:b3:42:dd:af:2f:d7:7c:1e:
aa:76:84:95:80:fd:ff:d8:31:91:08:bb:0f:86:66:ba:da:a8:
29:67:42:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 5 15:12:07 2023 by rpki-client on console-fra.rpki-client.org