Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/_ZohwaCfmwljlrpDQrLLcOA4zno.roa
File: _ZohwaCfmwljlrpDQrLLcOA4zno.roa (raw, json)
Hash identifier: YMb++cAuDvwjdILpXTIKtwAF8AzIDappvyUY72HTQsA=
Subject key identifier: FD:9A:21:C1:A0:9F:9B:09:63:96:BA:43:42:B2:CB:70:E0:38:CE:7A
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0186169D8D9EBA1E04E5B3B6D4412C27ED9D
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/_ZohwaCfmwljlrpDQrLLcOA4zno.roa
Signing time: Fri 03 Feb 2023 09:31:09 +0000
ROA not before: Fri 03 Feb 2023 09:31:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 996
IP address blocks: 5.105.149.0/24 maxlen: 24
5.105.150.0/24 maxlen: 24
5.105.151.0/24 maxlen: 24
5.105.148.0/24 maxlen: 24
5.105.87.0/24 maxlen: 24
5.105.88.0/24 maxlen: 24
5.105.89.0/24 maxlen: 24
5.105.86.0/24 maxlen: 24
5.105.233.0/24 maxlen: 24
5.105.232.0/24 maxlen: 24
5.105.234.0/24 maxlen: 24
5.105.235.0/24 maxlen: 24
5.105.236.0/24 maxlen: 24
5.105.177.0/24 maxlen: 24
5.105.178.0/24 maxlen: 24
5.105.174.0/24 maxlen: 24
5.105.175.0/24 maxlen: 24
5.105.176.0/24 maxlen: 24
5.105.180.0/24 maxlen: 24
5.105.181.0/24 maxlen: 24
5.105.182.0/24 maxlen: 24
5.105.183.0/24 maxlen: 24
85.255.180.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:16:9d:8d:9e:ba:1e:04:e5:b3:b6:d4:41:2c:27:ed:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Feb 3 09:31:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd9a21c1a09f9b096396ba4342b2cb70e038ce7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c8:c8:b8:a6:d8:b3:0f:7c:85:f5:1e:78:d8:
7d:67:87:ef:5f:fe:c3:48:b2:a1:6f:7d:cc:a1:89:
5f:80:48:a6:20:56:c6:5c:5b:0b:d9:39:d2:9e:b5:
f6:5e:fa:64:b0:7d:f5:e7:f0:39:b0:5e:c9:47:9c:
e4:c7:c7:45:c9:18:8d:20:62:e1:6d:68:6d:f1:8f:
ec:f1:00:ba:35:67:c1:43:42:c4:43:16:78:a6:88:
4e:80:47:8b:4e:14:7a:db:a3:f2:e3:29:ad:f4:27:
c2:7c:a4:a0:4a:91:d7:4b:97:f3:57:71:12:fe:37:
53:a2:b1:23:8b:42:12:19:fe:ac:5b:b2:c5:eb:31:
34:c2:c8:5a:38:6a:e0:20:08:b5:27:e2:7a:3f:a0:
6d:78:b4:43:5e:f1:f1:b7:9b:5c:3e:01:a2:fd:12:
e6:b4:a1:c3:b4:cb:c6:07:ae:e5:94:27:8f:a2:04:
f1:53:49:96:ba:a6:49:dc:bb:a5:85:67:26:54:9a:
4b:69:fe:b8:4b:9e:10:29:90:49:df:66:2c:56:19:
44:67:16:86:8f:86:b5:b5:7d:d8:2f:1e:4d:f8:05:
e9:8e:4a:95:e0:69:f6:e4:93:ad:fb:7d:ca:4a:d7:
95:78:77:3e:f5:01:05:3e:49:ac:b6:cc:43:ab:71:
49:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:9A:21:C1:A0:9F:9B:09:63:96:BA:43:42:B2:CB:70:E0:38:CE:7A
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/_ZohwaCfmwljlrpDQrLLcOA4zno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.86.0-5.105.89.255
5.105.148.0/22
5.105.174.0-5.105.178.255
5.105.180.0/22
5.105.232.0-5.105.236.255
85.255.180.0/22
Signature Algorithm: sha256WithRSAEncryption
72:20:5b:c6:1c:24:8d:76:b0:55:e1:d6:5c:cd:bb:09:ff:65:
6f:68:63:de:e7:f8:69:e1:0d:29:d6:e5:c1:b4:5b:82:01:11:
14:41:0d:ac:b2:04:b4:8e:93:4b:a4:0c:30:45:34:bf:a7:69:
f9:53:12:b3:42:fc:f2:09:11:e9:b5:ea:90:2f:e3:8a:17:1e:
04:42:99:be:50:52:53:9a:68:a5:b4:60:97:02:22:64:6e:c5:
80:a5:84:25:6d:b3:17:c5:0e:dd:ca:43:0e:1f:a8:32:f2:71:
b7:06:d6:3b:90:ff:96:a5:16:22:07:f5:d0:5e:84:c2:51:0b:
72:c9:d0:11:32:46:e1:74:24:35:96:4d:c2:78:0c:c7:14:20:
9e:ab:93:c3:06:15:1d:85:a7:d8:85:dd:21:20:c6:11:b7:f6:
90:20:73:0f:48:cb:15:5d:2d:0b:5d:b4:7a:3d:a5:3e:9b:85:
1b:e3:83:51:9a:77:7d:12:5d:1b:7c:19:38:b3:1f:fa:0e:36:
5f:51:a6:3a:05:5e:55:bf:3c:fc:bc:e4:54:13:4a:99:d6:ba:
75:e0:ad:28:3f:61:d8:11:d1:72:a5:d5:00:e0:73:cd:cd:5c:
6e:86:9f:91:18:cc:a5:64:53:9c:fd:ab:d3:ea:f4:36:56:73:
e8:ed:d5:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org