Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/g45brw53oRBmROqrdoBzYugulj4.roa
File: g45brw53oRBmROqrdoBzYugulj4.roa (raw, json)
Hash identifier: Hw6/pAx4ALX5v4YFcrQmn8mJ1LlDv3mQ6qgCrqcyZ5w=
Subject key identifier: 83:8E:5B:AF:0E:77:A1:10:66:44:EA:AB:76:80:73:62:E8:2E:96:3E
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0185BE6C8A4A33EB0D07FA13B5682F4CBFEA
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/g45brw53oRBmROqrdoBzYugulj4.roa
Signing time: Tue 17 Jan 2023 06:31:02 +0000
ROA not before: Tue 17 Jan 2023 06:31:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 5.105.138.0/23 maxlen: 24
5.105.142.0/23 maxlen: 24
5.105.164.0/23 maxlen: 24
5.105.68.0/23 maxlen: 24
5.105.112.0/23 maxlen: 24
5.105.114.0/23 maxlen: 24
5.105.29.0/24 maxlen: 24
5.105.248.0/23 maxlen: 24
5.105.186.0/23 maxlen: 24
5.105.198.0/23 maxlen: 24
5.105.206.0/23 maxlen: 24
5.105.202.0/23 maxlen: 24
85.255.176.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:be:6c:8a:4a:33:eb:0d:07:fa:13:b5:68:2f:4c:bf:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 17 06:31:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=838e5baf0e77a1106644eaab76807362e82e963e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:3a:da:ad:77:7f:b7:4f:21:77:2d:27:46:ff:
05:17:cd:ff:f1:0c:28:c3:75:c5:2b:d4:ae:34:72:
15:c6:87:fe:c4:c2:d5:2e:b7:f8:06:2c:59:8b:3d:
1a:9c:13:f7:ef:f5:fb:8d:0f:ca:25:df:0d:83:ba:
7d:dd:03:ad:71:a2:4b:e7:66:b5:e0:1e:83:d6:78:
40:84:f2:ea:34:39:89:8b:9b:af:99:a1:54:e3:64:
80:13:e5:63:2f:85:47:a6:89:26:75:ae:0e:d7:4d:
fd:82:69:11:5a:96:e9:83:9b:e5:1a:3a:54:13:87:
ff:0f:8c:6d:19:d8:87:3b:be:54:3a:34:cd:2a:58:
5b:c0:5b:52:55:e9:ef:96:39:c8:62:e2:01:0c:fa:
8b:ca:4a:e2:a3:7b:1e:ac:90:a9:6e:a2:35:71:a1:
47:a2:75:7f:f2:46:65:37:9b:f5:08:13:cb:c2:70:
a7:90:d5:b3:a9:2b:96:39:fc:55:04:23:82:f6:1f:
33:16:fb:25:9d:77:82:63:f4:de:ec:2d:70:ea:c8:
19:a2:a5:38:6c:fd:f0:53:2a:f9:77:45:64:3d:88:
9f:81:5b:eb:a6:ea:7e:75:b0:1a:fa:f4:8f:ef:8a:
30:60:06:7c:96:3d:60:ca:a0:1c:04:08:79:b8:bb:
03:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:8E:5B:AF:0E:77:A1:10:66:44:EA:AB:76:80:73:62:E8:2E:96:3E
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/g45brw53oRBmROqrdoBzYugulj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.29.0/24
5.105.68.0/23
5.105.112.0/22
5.105.138.0/23
5.105.142.0/23
5.105.164.0/23
5.105.186.0/23
5.105.198.0/23
5.105.202.0/23
5.105.206.0/23
5.105.248.0/23
85.255.176.0/21
Signature Algorithm: sha256WithRSAEncryption
20:f3:8e:28:f0:04:51:58:f3:12:e0:8b:93:0b:1a:2c:8d:0f:
83:c9:bf:cf:2f:11:19:6b:04:df:d5:45:08:d1:df:52:4e:8c:
d3:ab:9a:1f:2c:38:16:1e:8a:a1:ae:e3:cd:14:b5:d9:3c:8c:
e2:84:02:ec:1a:29:e8:5c:a3:85:44:cf:4e:17:95:60:33:a2:
66:e5:74:99:4e:d8:91:d6:ae:e5:8c:9a:8e:e3:a4:07:8b:5e:
0c:a4:8d:90:93:f0:09:c9:ef:bb:c6:0a:3c:4c:33:3b:6e:81:
6e:47:ff:3b:28:1a:41:ad:bf:05:cf:72:ba:8b:7a:bf:89:d3:
fc:0d:99:2a:66:c0:73:2e:a0:cf:64:52:b2:69:21:0a:e5:0d:
cd:47:dd:dd:32:67:cc:7d:7d:25:5d:82:ac:ed:39:d3:d7:9e:
8d:67:4f:2f:24:4c:31:d5:42:11:b2:e3:a7:dd:1b:c7:01:d9:
3b:4a:07:aa:20:8e:be:dc:d1:96:93:dd:60:2d:69:fd:55:26:
50:c3:4a:e2:60:00:0d:b7:2f:76:19:69:9f:27:ee:48:9f:25:
04:60:30:de:6b:d9:7b:4b:28:77:2f:d2:d5:23:05:0a:29:85:
be:e3:bf:b7:a5:a2:d8:89:77:92:5c:b9:c0:e3:c0:36:63:b5:
24:9e:d6:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:01 2023 by rpki-client on console-ams.rpki-client.org