Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/hw9mdPEBJQ0eyIf26sXvb3LXaSo.roa
File: hw9mdPEBJQ0eyIf26sXvb3LXaSo.roa (raw, json)
Hash identifier: QjLXmduBP/F7XuJ7oSra7ZwUTExGUQqb71MgygsDqT8=
Subject key identifier: 87:0F:66:74:F1:01:25:0D:1E:C8:87:F6:EA:C5:EF:6F:72:D7:69:2A
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0186380A0E5C13BABE2331C5E1B3BBAE58C7
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/hw9mdPEBJQ0eyIf26sXvb3LXaSo.roa
Signing time: Thu 09 Feb 2023 21:17:08 +0000
ROA not before: Thu 09 Feb 2023 21:17:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 5.105.131.0/24 maxlen: 24
5.105.29.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.80.0/24 maxlen: 24
5.105.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Feb 2023 14:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:38:0a:0e:5c:13:ba:be:23:31:c5:e1:b3:bb:ae:58:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Feb 9 21:17:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=870f6674f101250d1ec887f6eac5ef6f72d7692a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:82:fb:98:b3:20:c8:a0:10:13:b0:a2:ab:75:
ed:d5:52:43:fc:e1:fc:7b:6f:8f:bc:6f:d4:84:a7:
4a:b2:3b:72:b5:c5:98:cb:19:a7:ee:75:23:3c:fd:
99:bf:9e:97:40:9f:3a:58:9a:b4:e7:b1:7c:86:fa:
37:13:d1:39:69:a0:ad:a7:e2:8f:bf:cf:74:9a:6c:
ae:77:fb:ca:91:ed:6b:5c:b9:96:db:e3:ac:1f:03:
73:03:67:b6:36:fd:db:8d:ae:e7:7d:6f:dc:71:18:
c3:5f:ce:d3:8c:43:79:f2:5e:9d:14:33:aa:13:0c:
a8:f6:42:e4:12:bd:d6:95:b0:48:35:7a:ca:89:04:
74:49:55:0e:e7:cc:18:5a:49:05:f2:f3:f6:58:3c:
1b:ae:c8:d1:2a:6a:54:6f:c7:9f:23:73:6f:47:8b:
e6:98:30:78:a1:28:c7:13:4c:4b:eb:c7:72:27:10:
ec:58:2e:df:27:b0:bf:b9:a9:97:1b:5b:32:06:34:
dd:e1:6e:a4:f0:f5:52:af:15:2f:a4:0c:e7:0d:3b:
67:38:be:54:06:fb:39:53:7c:1b:7f:9a:fe:c1:c6:
1d:76:2a:d6:5b:a6:0f:64:bb:7b:f3:fa:df:59:de:
f1:22:73:e6:0e:ea:88:30:02:21:4f:d3:b4:7b:ab:
1f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:0F:66:74:F1:01:25:0D:1E:C8:87:F6:EA:C5:EF:6F:72:D7:69:2A
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/hw9mdPEBJQ0eyIf26sXvb3LXaSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.29.0/24
5.105.80.0/24
5.105.131.0/24
5.105.134.0/24
5.105.157.0/24
5.105.214.0/24
Signature Algorithm: sha256WithRSAEncryption
09:7a:a0:90:73:b9:a5:58:d9:36:69:5b:ad:0c:5b:77:fb:7d:
a4:11:a8:b8:3f:f2:2f:66:70:5a:15:30:e6:bf:86:21:fd:95:
98:b7:05:59:95:04:4c:4f:f3:e0:62:d0:36:29:ab:fe:c2:fb:
9a:d8:8c:af:d7:16:1c:24:00:4b:6c:06:1d:35:81:db:db:25:
d8:d7:3e:b6:f8:8b:81:e8:92:8a:f2:4a:8c:fb:07:b9:57:69:
4d:36:38:9c:a9:d6:bc:37:a7:d0:9b:51:a6:b6:49:0b:f6:e3:
94:28:b0:81:cf:70:dc:a9:72:e7:ac:59:f7:2b:9a:b5:36:75:
e8:74:60:64:62:5f:06:c9:b2:26:7a:41:06:ea:af:7c:24:db:
db:87:07:41:06:c7:61:df:dc:d0:b3:d9:dd:cf:e4:bb:50:10:
e7:23:55:a4:8b:d0:45:69:5b:19:18:c1:8d:ef:af:19:ce:39:
6e:95:e3:60:be:e0:00:ee:9e:d0:f7:06:b7:6e:2b:df:f0:bd:
4d:2d:1d:d1:23:95:48:84:bb:c6:ff:18:a7:a7:52:94:82:29:
92:69:39:3b:0e:27:be:bf:a6:73:15:12:bd:71:56:b5:82:9a:
fe:8e:09:f7:8f:dc:80:b3:2d:2c:6c:98:77:f5:7d:71:e0:07:
7f:13:a4:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:28 2024 by rpki-client on console-fra.rpki-client.org