Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/_stFjXHw27lZN5y3s-cWQk1-sRg.roa
File: _stFjXHw27lZN5y3s-cWQk1-sRg.roa (raw, json)
Hash identifier: uur6ky/ybUzrAXmx0EGJ/m1nSYHMfVmJA4SMZNU2REA=
Subject key identifier: FE:CB:45:8D:71:F0:DB:B9:59:37:9C:B7:B3:E7:16:42:4D:7E:B1:18
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0186116BA525787F5582892902DE33D7E1B7
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/_stFjXHw27lZN5y3s-cWQk1-sRg.roa
Signing time: Thu 02 Feb 2023 09:18:32 +0000
ROA not before: Thu 02 Feb 2023 09:18:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 193.46.210.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.125.0/24 maxlen: 24
5.105.130.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.156.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.74.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.81.0/24 maxlen: 24
5.105.80.0/24 maxlen: 24
5.105.79.0/24 maxlen: 24
5.105.95.0/24 maxlen: 24
5.105.103.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.108.0/24 maxlen: 24
5.105.106.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
5.105.195.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.204.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.214.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.33.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
5.105.10.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:11:6b:a5:25:78:7f:55:82:89:29:02:de:33:d7:e1:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Feb 2 09:18:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fecb458d71f0dbb959379cb7b3e716424d7eb118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ac:e6:a2:b8:4c:ce:b3:75:40:10:11:5d:db:
2d:13:39:86:27:90:f0:70:8b:55:5e:d9:a2:30:d6:
ff:b8:47:86:75:db:63:97:a4:4b:99:a5:44:50:d6:
17:02:cb:f7:6a:b3:9e:30:06:f4:c0:d6:d7:c3:f0:
6e:77:e6:ee:55:cc:39:34:6d:9d:e5:fc:0a:9c:9c:
fe:aa:d8:13:0c:3a:a6:87:2d:d3:53:3b:63:61:02:
fd:1e:7b:94:5f:2d:e6:b1:4e:ae:a6:c9:58:bb:b0:
26:77:e5:71:c9:d3:89:d5:95:5a:84:47:c9:ef:dd:
1b:9a:27:8f:1f:25:56:ab:ac:4c:c3:5f:e9:d3:5c:
17:99:eb:57:f1:35:70:63:13:f5:67:93:1e:d5:fa:
7b:14:45:77:7e:9b:4f:19:46:a5:7e:38:3e:ab:e4:
1b:0c:46:53:81:3b:dd:d6:34:53:96:9c:98:cd:33:
9b:0b:b5:2c:11:dd:9f:94:bc:67:ed:49:05:a6:fa:
18:a4:93:31:7e:ed:24:a3:11:90:64:a9:8e:97:85:
70:3b:46:1b:06:3d:31:a0:75:f6:42:25:3e:95:8a:
ec:87:4f:c7:f7:ef:fc:59:31:04:b7:7d:c0:e2:ff:
86:c6:e9:f5:de:e1:9c:2b:2f:8f:d6:e8:68:cd:35:
b3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:CB:45:8D:71:F0:DB:B9:59:37:9C:B7:B3:E7:16:42:4D:7E:B1:18
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/_stFjXHw27lZN5y3s-cWQk1-sRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.7.0/24
5.105.10.0/24
5.105.12.0/24
5.105.33.0/24
5.105.68.0/23
5.105.74.0/24
5.105.79.0-5.105.82.255
5.105.95.0/24
5.105.103.0/24
5.105.106.0/24
5.105.108.0/24
5.105.112.0/22
5.105.125.0/24
5.105.127.0/24
5.105.130.0/24
5.105.134.0/24
5.105.138.0/23
5.105.142.0/23
5.105.156.0/24
5.105.162.0/24
5.105.165.0-5.105.166.255
5.105.168.0/24
5.105.172.0/24
5.105.186.0/23
5.105.195.0/24
5.105.197.0-5.105.199.255
5.105.202.0-5.105.204.255
5.105.206.0/23
5.105.214.0/24
5.105.216.0/24
5.105.229.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
51:5e:e7:60:9c:1a:ce:30:2c:7c:bd:f4:4a:9e:a2:7e:07:de:
6b:fb:7a:fc:01:65:fa:bf:d1:70:ff:23:92:31:25:05:2c:64:
aa:c6:00:b1:09:01:eb:14:97:a3:c3:92:4b:97:24:f0:4b:f2:
a5:4d:67:e1:c0:ab:20:23:f0:32:f0:c1:2c:ba:50:2e:4c:b0:
28:e4:a8:ef:5d:07:e5:df:20:c1:7c:1b:e3:bc:41:a3:70:1b:
68:36:c7:95:43:ef:47:1a:0a:db:4d:b9:8c:ad:ae:1c:7c:1f:
86:0f:18:56:49:12:35:42:c1:d8:f0:aa:49:66:4d:7d:9c:c3:
b4:f3:00:6c:ac:ad:08:50:be:1b:01:e4:dc:0e:6c:16:eb:6e:
20:35:71:21:90:32:5b:df:23:30:da:c1:7d:67:cf:5b:a7:67:
bf:fe:22:81:a8:47:bb:64:44:e5:4a:ca:99:e0:86:74:ee:ea:
74:0e:22:e4:92:88:5e:34:0d:46:7f:53:07:56:bc:6f:c0:7f:
6b:cb:dd:83:f1:77:b1:1b:c3:57:cf:69:f9:bb:f0:b5:80:61:
48:19:c5:0b:84:a8:b3:ab:a3:48:17:46:f7:21:02:92:40:ad:
b4:3c:11:9f:d8:ae:a7:36:88:6f:f1:13:36:a3:76:52:e1:98:
6f:f4:dc:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:00 2023 by rpki-client on console-ams.rpki-client.org