Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/iWzEMTcg7SVOOKLx02kgWNsNEVE.roa
File: iWzEMTcg7SVOOKLx02kgWNsNEVE.roa (raw, json)
Hash identifier: QYo71Nj6FVVbeM9HIrDJoPGdKGytooj03wk97oejBeM=
Subject key identifier: 89:6C:C4:31:37:20:ED:25:4E:38:A2:F1:D3:69:20:58:DB:0D:11:51
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01878407E2609D19C021A45375C2D361A667
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/iWzEMTcg7SVOOKLx02kgWNsNEVE.roa
Signing time: Sat 15 Apr 2023 08:28:41 +0000
ROA not before: Sat 15 Apr 2023 08:28:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.104.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.185.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.30.0/24 maxlen: 24
5.105.64.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:84:07:e2:60:9d:19:c0:21:a4:53:75:c2:d3:61:a6:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Apr 15 08:28:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=896cc4313720ed254e38a2f1d3692058db0d1151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:db:6b:f5:7d:f5:03:97:5b:b4:16:de:5b:b4:
95:b6:d0:f8:c9:23:0f:7a:b8:fa:fb:48:47:02:2d:
61:8c:a0:3a:21:1e:78:e7:e3:fb:5d:24:f8:b5:47:
b1:0b:fc:41:d2:60:82:cf:be:08:17:5c:5d:a6:41:
a5:34:57:8b:11:fe:cd:da:85:a6:ac:31:75:d9:5e:
e5:03:79:49:b4:57:d3:43:a3:f9:1b:ca:e8:58:c7:
f2:a0:35:3d:31:f2:07:76:b1:32:16:e0:11:f6:76:
5e:78:1f:ae:a1:be:bf:25:57:96:0c:10:a8:a1:2e:
04:41:91:01:fe:f8:34:06:09:ff:ab:93:cb:5a:7e:
ec:fe:8e:6b:53:16:53:80:06:33:ea:05:4d:09:8f:
5e:d1:01:38:ac:3b:fb:8d:ea:4f:93:dc:a2:0a:db:
b1:1b:92:4d:2d:2c:00:87:b8:84:14:ac:86:0c:d7:
6a:08:33:24:75:7d:f8:1e:b8:37:b1:b3:6d:b2:b9:
ad:d7:93:7d:7b:49:cb:e4:be:d4:11:62:d1:40:df:
b2:02:8a:05:c4:7b:96:b6:1a:1a:ac:af:58:90:b4:
62:b5:82:71:76:fa:a8:e6:ca:4d:e6:d4:9c:e8:ab:
19:ab:a7:dc:2b:11:71:cb:43:2c:d1:4f:78:81:2e:
60:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6C:C4:31:37:20:ED:25:4E:38:A2:F1:D3:69:20:58:DB:0D:11:51
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/iWzEMTcg7SVOOKLx02kgWNsNEVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.30.0/23
5.105.64.0/24
5.105.68.0/23
5.105.82.0/24
5.105.94.0/24
5.105.102.0/24
5.105.104.0/24
5.105.112.0/22
5.105.118.0/24
5.105.124.0/24
5.105.127.0/24
5.105.138.0/23
5.105.142.0/23
5.105.157.0/24
5.105.162.0/24
5.105.165.0/24
5.105.170.0/24
5.105.172.0/24
5.105.185.0-5.105.187.255
5.105.197.0-5.105.199.255
5.105.202.0/23
5.105.206.0/23
5.105.215.0-5.105.216.255
5.105.218.0/24
5.105.228.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:6f:dc:af:91:3a:e3:d6:89:c7:ae:b7:14:27:28:84:e4:8e:
dc:a1:17:53:4f:8a:17:d4:71:91:dc:95:7d:6c:de:df:a3:c6:
a0:c5:19:ac:96:74:af:32:73:62:6c:a9:e5:02:98:f0:34:64:
50:b5:b4:ec:6c:23:8a:90:1c:1e:f9:80:3d:43:43:22:7d:ac:
4f:f5:98:e3:38:5b:5a:43:51:64:f4:8d:97:da:1d:c8:a6:05:
8c:c3:6d:1b:07:85:62:ad:7a:4c:2b:91:75:62:a9:c2:58:6e:
6e:db:c7:48:07:f6:7a:30:0c:1a:34:98:6a:8d:14:84:64:65:
20:56:c3:d1:23:e7:82:6e:43:9b:05:2b:d7:d6:1e:17:8a:d9:
d7:53:2a:9e:83:66:25:95:bf:8b:b2:98:03:4c:d1:56:f1:66:
7b:4e:0d:4b:3c:2c:bc:28:d3:5f:86:76:78:76:c4:13:72:12:
e3:69:56:a4:f5:72:e5:38:e9:57:9a:16:0c:63:c7:c5:52:4e:
2c:da:4f:77:2c:c5:74:61:d5:0f:2a:a2:ca:0f:0e:ee:9d:81:
6c:56:5d:ce:a6:be:21:64:dc:20:14:3a:a8:64:1a:f3:b4:2f:
d8:c2:68:d4:69:a2:24:39:fd:a8:6b:c4:01:24:2e:e0:f4:0a:
b4:a1:b3:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:19 2023 by rpki-client on console-fra.rpki-client.org