Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Ztb-Wnu1VR8h0ZnXOoaKt8NCaKw.roa
File: Ztb-Wnu1VR8h0ZnXOoaKt8NCaKw.roa (raw, json)
Hash identifier: YxmGE6GCwG74Qddf/Sf/IeA9UvsD7kcbgm/LuBk45yk=
Subject key identifier: 66:D6:FE:5A:7B:B5:55:1F:21:D1:99:D7:3A:86:8A:B7:C3:42:68:AC
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0186095FB3AABA98DADC458E92CCCC3C0CCE
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Ztb-Wnu1VR8h0ZnXOoaKt8NCaKw.roa
Signing time: Tue 31 Jan 2023 19:48:32 +0000
ROA not before: Tue 31 Jan 2023 19:48:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.129.0/24 maxlen: 24
5.105.135.0/24 maxlen: 24
5.105.158.0/24 maxlen: 24
5.105.84.0/24 maxlen: 24
5.105.98.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.105.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.238.0/24 maxlen: 24
5.105.241.0/24 maxlen: 24
5.105.27.0/24 maxlen: 24
5.105.252.0/24 maxlen: 24
5.105.253.0/24 maxlen: 24
5.105.188.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:09:5f:b3:aa:ba:98:da:dc:45:8e:92:cc:cc:3c:0c:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 31 19:48:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66d6fe5a7bb5551f21d199d73a868ab7c34268ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fa:58:e5:09:1a:1a:cd:7c:61:36:44:72:39:
a4:d3:3d:a1:3e:be:5e:cb:e2:e0:28:6a:f6:46:a1:
3f:ad:80:6d:a6:04:5a:23:be:0e:f0:89:04:20:51:
ff:a9:8f:a2:c7:be:b8:04:29:79:11:f3:e7:be:c0:
82:86:de:03:e1:ca:df:f3:53:b4:a8:d0:21:62:58:
5e:3b:70:c2:34:ba:49:0e:73:50:b7:fc:ff:8d:6d:
6c:70:f0:9e:c6:7a:49:58:5e:c8:f9:ae:4d:e9:b0:
4c:e2:a1:59:ea:df:ed:27:87:79:80:36:e4:90:90:
f5:dc:17:4a:d7:14:64:b6:e8:1d:64:e5:69:f7:de:
0d:e6:c7:c9:12:4f:61:fd:89:80:4f:23:d9:23:0d:
3b:f1:3d:7c:ac:8b:fc:5b:68:2b:4f:bc:d0:d6:06:
26:a4:d6:69:83:9e:38:73:4a:dc:62:56:12:d3:5a:
97:64:51:de:de:7d:fa:7c:19:ca:90:39:94:ad:a7:
26:c3:4a:92:67:3e:21:bd:29:c9:1d:6a:b4:55:39:
3a:c0:5b:f0:5d:25:70:af:69:55:80:ca:44:2b:c0:
6b:bb:53:45:87:9a:df:6a:57:98:3e:37:5d:8e:34:
67:8a:11:c9:a2:80:33:57:1d:32:4b:fe:4f:9b:b4:
48:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D6:FE:5A:7B:B5:55:1F:21:D1:99:D7:3A:86:8A:B7:C3:42:68:AC
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/Ztb-Wnu1VR8h0ZnXOoaKt8NCaKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.27.0/24
5.105.84.0/24
5.105.94.0/24
5.105.98.0/24
5.105.102.0/24
5.105.105.0/24
5.105.124.0/24
5.105.129.0/24
5.105.135.0/24
5.105.158.0/24
5.105.188.0/24
5.105.238.0/24
5.105.241.0/24
5.105.252.0/23
Signature Algorithm: sha256WithRSAEncryption
49:42:1b:95:c4:37:d1:da:3e:53:1f:4a:b8:3e:0d:06:f8:ae:
e8:8a:60:1f:5f:fa:c0:15:ce:2f:1f:e7:18:2f:8d:fb:a4:3f:
72:9a:b8:ec:e1:00:ce:ae:5c:40:f8:cb:99:8b:44:2f:04:3a:
6b:9f:5d:1d:08:f6:97:5e:f8:b4:bb:2e:c8:23:9d:6c:ad:cb:
a7:9f:aa:e5:ca:cb:eb:fb:87:04:68:13:20:82:cf:fe:a6:1f:
b4:c8:c5:b9:1c:de:78:cd:32:bc:9c:44:73:c6:5d:05:4f:b1:
78:d6:4a:ec:84:8b:8a:b8:6b:0a:59:1f:71:c4:e0:29:70:5f:
b9:d6:59:fb:c8:f6:70:d1:58:58:a4:d3:6d:e5:43:2d:87:6b:
a8:d4:29:8f:dc:44:2c:d8:09:7b:26:3a:a1:89:78:f2:29:ff:
1f:5c:38:89:8a:05:f6:0b:b6:b8:ae:32:62:9e:96:5a:ab:3d:
cb:e9:d2:da:35:bd:c0:39:52:f6:40:b9:27:c4:88:75:15:cf:
bf:00:60:cf:2c:23:03:25:da:ab:06:be:13:be:44:9d:92:78:
dd:83:19:d8:c7:a3:5d:60:6e:1c:88:61:39:54:5b:45:87:30:
f1:af:98:25:e7:95:2a:7f:09:83:c1:6f:cc:8f:0e:2a:30:c3:
77:7f:09:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org