Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/il7gncdQuhI5xMB6txG13_zoYaM.roa
File: il7gncdQuhI5xMB6txG13_zoYaM.roa (raw, json)
Hash identifier: O0e4WnZrdq0k8ca3PuwYC8tHsGL1S0tbAV1l7e80p4U=
Subject key identifier: 8A:5E:E0:9D:C7:50:BA:12:39:C4:C0:7A:B7:11:B5:DF:FC:E8:61:A3
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01859B1D2F299AA5281EF1D89A9622BBE390
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/il7gncdQuhI5xMB6txG13_zoYaM.roa
Signing time: Tue 10 Jan 2023 09:57:39 +0000
ROA not before: Tue 10 Jan 2023 09:57:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.129.0/24 maxlen: 24
5.105.135.0/24 maxlen: 24
5.105.98.0/24 maxlen: 24
5.105.105.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.238.0/24 maxlen: 24
5.105.241.0/24 maxlen: 24
5.105.27.0/24 maxlen: 24
5.105.252.0/24 maxlen: 24
5.105.253.0/24 maxlen: 24
5.105.188.0/24 maxlen: 24
5.105.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9b:1d:2f:29:9a:a5:28:1e:f1:d8:9a:96:22:bb:e3:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 10 09:57:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a5ee09dc750ba1239c4c07ab711b5dffce861a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:62:f3:af:81:8c:1a:a0:22:f7:b2:24:1d:18:
04:d9:54:cd:b3:d8:ef:2d:2d:3f:52:75:55:43:dc:
c2:38:f4:a3:e2:cb:18:1b:d3:f8:93:e8:1f:60:ae:
a3:a3:78:92:b6:ac:2c:dc:8b:64:e6:99:db:86:01:
79:36:e9:9c:38:f0:a7:4b:e0:fb:4f:8e:dd:b0:8c:
ed:45:44:7c:f7:f0:08:5e:ee:26:53:e8:94:1a:31:
53:87:16:70:c6:dd:f7:29:a7:e5:44:19:93:3c:07:
22:2a:91:48:d5:94:47:04:82:12:57:80:0a:4b:10:
46:7a:a6:c0:52:2e:22:df:88:ab:66:ab:b9:4e:ec:
75:f5:4e:5e:4c:ef:59:6d:ea:19:31:9f:83:8f:06:
b9:49:31:b9:b8:35:8e:09:12:5d:0a:c5:5a:bf:bc:
04:cb:14:24:88:80:a7:92:6e:67:72:7e:67:da:dc:
ad:c9:7d:99:62:c0:b7:cc:22:15:93:fd:81:6a:b8:
f5:a8:63:13:b2:0b:3c:3d:d1:e0:7d:74:55:84:ed:
5a:84:49:12:e9:93:a2:e0:1b:79:57:62:cd:93:6a:
38:c5:f7:d5:9e:23:2a:8c:ce:62:79:af:72:fa:f1:
46:51:ce:cd:15:d2:c7:e2:2e:7e:b6:cc:d9:41:bc:
23:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:5E:E0:9D:C7:50:BA:12:39:C4:C0:7A:B7:11:B5:DF:FC:E8:61:A3
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/il7gncdQuhI5xMB6txG13_zoYaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.27.0/24
5.105.98.0/24
5.105.102.0/24
5.105.105.0/24
5.105.124.0/24
5.105.129.0/24
5.105.135.0/24
5.105.188.0/24
5.105.204.0/24
5.105.238.0/24
5.105.241.0/24
5.105.252.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:ca:7f:39:3d:05:c8:68:01:de:f3:75:b2:48:5a:20:e8:3b:
7c:63:43:6a:08:e4:3a:70:3a:f9:ac:4c:04:74:9a:cc:7e:a8:
55:76:81:e1:0c:31:b1:1c:8b:0e:02:8c:67:c0:af:dd:e7:4d:
87:d4:c0:71:64:a8:57:51:3a:3e:aa:f5:1a:7e:97:59:b0:3f:
1d:cb:9a:f4:c3:e8:57:04:17:da:ba:a6:f3:d5:b7:5d:56:3d:
f6:e6:87:95:0e:21:11:ee:04:4c:94:f7:da:24:03:42:50:a6:
2a:19:6c:5b:b2:e3:c8:6a:c4:2a:aa:f2:98:f8:39:ff:43:34:
7f:4c:d0:1a:65:a8:71:00:a6:58:dc:00:f2:53:ea:58:87:e7:
17:31:e0:19:a9:18:a1:a1:70:55:8d:6a:5e:75:8d:12:d8:d9:
b6:00:ac:80:cb:23:a5:c9:35:92:db:ae:a7:87:5a:ff:15:52:
8d:37:14:f7:04:b3:7a:76:2e:51:e4:fd:dd:70:39:5a:60:b7:
91:36:da:6a:6c:41:49:b5:ca:ec:ba:54:d9:1e:db:3d:c9:40:
4d:44:24:aa:8e:3f:2a:7b:29:07:81:bc:15:06:0b:ff:55:03:
ae:05:88:bd:75:80:bb:ab:35:3a:a3:5d:9f:74:d7:a4:e9:75:
ef:8e:35:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:19 2023 by rpki-client on console-fra.rpki-client.org