Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/YwaaBX1p4Ua8vEk0iPiLrEW1hpA.roa
File: YwaaBX1p4Ua8vEk0iPiLrEW1hpA.roa (raw, json)
Hash identifier: 0HN1vXsoj646SJa+GUCTRQsnqhbzd30WqzYtMiP0izw=
Subject key identifier: 63:06:9A:05:7D:69:E1:46:BC:BC:49:34:88:F8:8B:AC:45:B5:86:90
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018809EAE6BB763105D8F7F484C5AB86F197
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/YwaaBX1p4Ua8vEk0iPiLrEW1hpA.roa
Signing time: Thu 11 May 2023 08:26:09 +0000
ROA not before: Thu 11 May 2023 08:26:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.123.0/24 maxlen: 24
5.105.158.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.77.0/24 maxlen: 24
5.105.75.0/24 maxlen: 24
5.105.104.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.185.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.49.0/24 maxlen: 24
5.105.51.0/24 maxlen: 24
5.105.64.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:09:ea:e6:bb:76:31:05:d8:f7:f4:84:c5:ab:86:f1:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: May 11 08:26:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63069a057d69e146bcbc493488f88bac45b58690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e1:28:e2:47:ce:17:ef:41:f8:e3:32:d1:60:
6a:e0:2d:27:54:98:13:fa:dd:b8:f0:cc:b3:dd:b2:
c0:33:b5:9d:1f:ce:b1:f8:9b:86:17:b4:98:c3:2b:
77:f6:b6:ed:21:00:c5:4f:1b:50:bd:a9:c7:5c:21:
e2:c7:11:d8:73:bd:30:59:92:e3:20:7f:8a:de:9e:
65:50:2d:77:a8:fe:d8:f3:4f:2d:58:b2:1b:26:d7:
d6:4d:fa:07:38:dd:5d:e7:45:27:79:f9:0d:90:d4:
f5:7d:7a:ec:f4:5e:09:4f:e8:8e:01:42:28:18:41:
82:fa:bd:84:45:a4:dd:79:d4:4f:2a:db:56:0c:a6:
aa:02:68:e7:f3:86:d8:db:7c:1a:88:c6:cd:b9:9a:
75:85:5b:9c:b8:74:f2:0a:ee:1b:31:29:ae:f9:47:
eb:5a:72:22:42:25:06:94:2e:7b:85:4c:64:53:2f:
a8:17:ef:cb:d2:af:63:26:9a:eb:b1:37:9b:3a:63:
68:9f:f7:b2:d3:80:34:4c:3f:15:1f:0f:cf:7d:ce:
60:9c:11:91:62:d5:49:fc:10:a1:a5:43:89:55:2a:
30:d8:f8:36:2a:58:e7:01:4a:c2:40:ed:e6:5c:60:
fd:42:c0:57:f9:5d:58:02:13:96:d4:52:8c:85:ea:
c6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:06:9A:05:7D:69:E1:46:BC:BC:49:34:88:F8:8B:AC:45:B5:86:90
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/YwaaBX1p4Ua8vEk0iPiLrEW1hpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.31.0/24
5.105.49.0/24
5.105.51.0/24
5.105.64.0/24
5.105.75.0/24
5.105.77.0/24
5.105.104.0/24
5.105.118.0/24
5.105.123.0/24
5.105.158.0/24
5.105.162.0/24
5.105.165.0-5.105.166.255
5.105.170.0/24
5.105.185.0-5.105.187.255
5.105.198.0/23
5.105.202.0/23
5.105.215.0/24
5.105.228.0/23
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.247.0/24
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
11:c1:af:cd:6e:7b:5b:70:a0:09:b1:b2:5f:6f:32:36:28:80:
e4:cd:6e:95:95:0c:f7:fe:e4:49:88:09:b7:52:1b:f7:71:d0:
43:a3:31:2e:80:6c:5a:ee:fb:83:23:d2:92:07:87:26:4e:34:
80:b6:ec:fa:93:d8:29:bc:32:fa:fd:0a:ea:b1:af:c8:6c:37:
99:07:c4:ab:d8:a5:0e:54:20:0d:bf:cb:6b:8f:c4:0b:3a:a7:
4a:67:d5:9e:9b:8c:59:3e:50:d4:79:f7:66:4c:24:01:a0:7e:
79:80:32:91:30:05:19:b5:ba:4c:1e:35:8f:5d:9c:ab:22:46:
9c:08:10:d8:22:7e:a3:8c:05:47:7e:cb:ca:42:33:bb:7c:f8:
76:07:a3:4e:8b:9b:b1:80:a6:16:56:79:68:12:2d:70:7a:d8:
34:78:81:e0:53:ea:c3:b8:a4:cd:82:e2:8b:ea:ee:f8:83:34:
80:0b:0f:8d:c3:5e:11:d9:c9:00:74:c7:29:b5:ba:10:ee:e7:
f4:69:e8:3f:81:2d:7a:65:1f:ce:83:79:e7:c6:99:38:59:6b:
f2:41:4f:bc:01:c8:a0:57:d6:08:23:54:cf:a6:06:e5:07:9d:
8c:53:19:36:9e:c5:35:f4:2a:5c:36:5e:66:b7:a8:59:50:86:
7c:3b:cc:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:18 2023 by rpki-client on console-fra.rpki-client.org