Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/iBICYRVGMQTANsQMBTA_43AR5FM.roa
File: iBICYRVGMQTANsQMBTA_43AR5FM.roa (raw, json)
Hash identifier: 5tmUTPpMIppscWGV/aIYCu5cdd/WmC2jQPtUoj+6m30=
Subject key identifier: 88:12:02:61:15:46:31:04:C0:36:C4:0C:05:30:3F:E3:70:11:E4:53
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018A41C7C134FD1E3A268FC121B16C245390
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/iBICYRVGMQTANsQMBTA_43AR5FM.roa
Signing time: Tue 29 Aug 2023 14:52:04 +0000
ROA not before: Tue 29 Aug 2023 14:52:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21082
IP address blocks: 5.105.35.0/24 maxlen: 24
5.105.43.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.164.0/24 maxlen: 24
5.105.101.0/24 maxlen: 24
5.105.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Aug 2023 11:41:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:41:c7:c1:34:fd:1e:3a:26:8f:c1:21:b1:6c:24:53:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Aug 29 14:52:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8812026115463104c036c40c05303fe37011e453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:49:c4:2f:5d:6c:45:68:08:26:7a:ac:d6:d9:
ac:c6:c1:85:30:35:15:cc:62:ac:49:b4:ab:31:88:
20:fd:79:9a:a2:18:47:02:87:79:ba:81:6f:60:92:
ba:34:b1:47:da:47:24:6a:99:c9:9c:19:ad:13:7d:
6e:f7:9c:b0:b0:9e:d4:82:7d:10:cd:5c:bc:d7:95:
16:b1:5b:d3:bd:d2:cc:ca:1c:b0:1e:f9:3a:0a:31:
36:9a:a4:54:ea:58:9d:bf:b3:b5:c7:d8:d7:e4:51:
f9:d7:f5:ef:59:cf:47:0d:ec:c4:2e:d8:46:d5:e8:
b0:20:da:4e:d8:3b:08:dc:f8:9e:f0:dd:07:2c:b5:
20:74:7b:01:60:2f:a4:72:b8:d5:8b:7c:10:00:10:
70:fe:31:da:97:01:de:1c:5f:e6:de:4a:7f:4c:77:
51:42:fd:ee:59:41:47:36:2b:7b:28:b7:c2:ad:ce:
a1:9c:90:58:03:e4:42:2c:58:75:f5:a4:67:cd:82:
62:3b:61:cc:de:f5:9a:6c:c4:f8:c4:b1:87:88:cb:
3e:fb:ca:cd:56:f2:69:b1:ba:7d:2f:43:30:4b:5c:
af:c5:1e:3c:bf:2a:40:36:4f:f7:f4:54:58:31:19:
2c:f9:2e:23:65:68:b3:77:ac:a2:3b:56:fd:99:af:
6d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:12:02:61:15:46:31:04:C0:36:C4:0C:05:30:3F:E3:70:11:E4:53
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/iBICYRVGMQTANsQMBTA_43AR5FM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.35.0/24
5.105.43.0/24
5.105.101.0/24
5.105.111.0/24
5.105.164.0/23
Signature Algorithm: sha256WithRSAEncryption
38:97:d4:b4:d6:a9:b2:c2:bc:20:28:75:b0:50:26:b9:c5:cc:
ed:85:26:f2:f8:10:16:1d:57:db:f2:53:af:1f:e0:17:e5:7e:
ac:82:7d:d6:88:89:18:51:8c:8e:58:82:77:7a:3e:df:2f:fd:
af:52:51:f1:eb:b2:fb:12:96:41:02:d8:7f:a3:eb:0e:8d:78:
6f:ed:3e:0b:3c:3c:02:4a:c8:75:89:e2:84:fa:5a:90:f1:2b:
4f:cb:d3:ca:34:14:fe:2e:0d:39:d5:d7:0d:b3:42:5a:be:ca:
75:ef:02:df:45:27:35:56:7c:25:d1:79:c3:b6:ae:79:7b:9b:
76:68:20:8c:c6:6f:24:08:7a:59:3c:5c:98:f8:85:5f:be:66:
fa:cd:6e:8b:6e:78:c5:82:4d:44:ed:fe:0c:cb:5b:f6:4a:3f:
38:60:7d:4a:67:fa:66:b5:70:f2:b1:3b:3f:a9:bc:01:a4:44:
2b:34:b8:ab:76:3a:d7:23:21:38:fb:3c:ab:8c:3c:01:09:9a:
6d:0c:a5:e4:ee:89:53:18:3a:85:dd:76:ea:b8:59:27:f0:dc:
d5:0a:bc:c9:2f:55:f3:33:cc:2e:4f:26:62:5a:9f:c7:30:79:
e0:5c:5a:1d:be:11:79:03:8f:32:27:bb:f4:05:c0:1b:55:49:
41:91:10:f0
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYpBx8E0/R46Jo/BIbFsJFOQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZjhiNDUyNTRlNTQ3MGQxZDRjY2U2ZmI3ZGZkNGQwZDgz
YjVkNTkwHhcNMjMwODI5MTQ1MjA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODEyMDI2MTE1NDYzMTA0YzAzNmM0MGMwNTMwM2ZlMzcwMTFlNDUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqknEL11sRWgIJnqs1tmsxsGFMDUV
zGKsSbSrMYgg/XmaohhHAod5uoFvYJK6NLFH2kckapnJnBmtE31u95ywsJ7Ugn0Q
zVy815UWsVvTvdLMyhywHvk6CjE2mqRU6lidv7O1x9jX5FH51/XvWc9HDezELthG
1eiwINpO2DsI3Pie8N0HLLUgdHsBYC+kcrjVi3wQABBw/jHalwHeHF/m3kp/THdR
Qv3uWUFHNit7KLfCrc6hnJBYA+RCLFh19aRnzYJiO2HM3vWabMT4xLGHiMs++8rN
VvJpsbp9L0MwS1yvxR48vypANk/39FRYMRks+S4jZWizd6yiO1b9ma9t1QIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFIgSAmEVRjEEwDbEDAUwP+NwEeRTMB8GA1UdIwQY
MBaAFN34tFJU5UcNHUzOb7ff1NDYO11ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2It
ODkzOTA2ZmI3ODU4LzEvaUJJQ1lSVkdNUVRBTnNRTUJUQV80M0FSNUZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2ItODkzOTA2ZmI3ODU4
LzEvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQABWkjAwQA
BWkrAwQABWllAwQABWlvAwQBBWmkMA0GCSqGSIb3DQEBCwUAA4IBAQA4l9S01qmy
wrwgKHWwUCa5xczthSby+BAWHVfb8lOvH+AX5X6sgn3WiIkYUYyOWIJ3ej7fL/2v
UlHx67L7EpZBAth/o+sOjXhv7T4LPDwCSsh1ieKE+lqQ8StPy9PKNBT+Lg051dcN
s0Javsp17wLfRSc1Vnwl0XnDtq55e5t2aCCMxm8kCHpZPFyY+IVfvmb6zW6LbnjF
gk1E7f4My1v2Sj84YH1KZ/pmtXDysTs/qbwBpEQrNLirdjrXIyE4+zyrjDwBCZpt
DKXk7olTGDqF3XbquFkn8NzVCrzJL1XzM8wuTyZiWp/HMHngXFodvhF5A48yJ7v0
BcAbVUlBkRDw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:58 2024 by rpki-client on console-ams.rpki-client.org