Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/lzLAsl3MdjOEqcj_bmnJGGJ-gQo.roa
File: lzLAsl3MdjOEqcj_bmnJGGJ-gQo.roa (raw, json)
Hash identifier: QMZ13LK8MAd8aGXKKlZrxMg6fBnaU0OIW2f94yNMMQ4=
Subject key identifier: 97:32:C0:B2:5D:CC:76:33:84:A9:C8:FF:6E:69:C9:18:62:7E:81:0A
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0188D92B784D069FCA4E1CB4665699B7728F
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/lzLAsl3MdjOEqcj_bmnJGGJ-gQo.roa
Signing time: Tue 20 Jun 2023 14:18:04 +0000
ROA not before: Tue 20 Jun 2023 14:18:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.143.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.117.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.230.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.184.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.19.0/24 maxlen: 24
5.105.18.0/24 maxlen: 24
5.105.36.0/24 maxlen: 24
5.105.59.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.3.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
5.105.5.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d9:2b:78:4d:06:9f:ca:4e:1c:b4:66:56:99:b7:72:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jun 20 14:18:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9732c0b25dcc763384a9c8ff6e69c918627e810a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d4:84:b1:fb:a2:46:7a:a4:e0:e7:6a:5f:8c:
b0:aa:2e:fa:62:f4:4c:d5:d9:86:5d:23:1e:82:17:
0f:d4:63:93:6c:93:10:5d:7c:55:0a:2e:fd:40:70:
6a:0e:b4:b6:cb:a5:dd:33:1e:fc:be:ea:41:ea:c3:
41:d9:e9:3c:04:0a:95:3c:4b:fa:c3:fd:26:7b:7a:
b2:d7:37:8f:e3:75:5e:49:85:2b:ad:bc:c0:7d:6f:
aa:52:d0:94:81:b7:2e:92:3d:ae:83:cd:1c:48:3f:
b2:cf:a8:5f:ae:1c:02:9e:c6:a9:48:bc:6a:a1:83:
d6:b6:7b:12:63:54:80:22:7f:de:35:b6:5e:7a:d6:
46:76:61:5d:fe:f6:92:ea:e8:3e:40:f7:e3:76:ed:
3c:d9:0a:16:31:49:70:a4:b7:6a:a7:dd:99:e7:73:
03:e5:f3:9b:0b:3a:21:75:7f:2c:e7:cd:e1:a2:f8:
ea:fe:3a:eb:37:23:7f:7b:ec:b9:93:4a:89:33:ce:
6c:4f:12:cf:10:80:f0:ad:9d:01:f3:03:ef:bf:f9:
bc:9a:4d:3f:a5:34:9b:6f:bc:69:b2:b8:ea:64:4b:
24:38:4f:1b:e0:d8:8b:70:4e:e4:3d:c2:18:b3:b9:
a1:82:a6:d5:f5:15:6a:c8:54:82:b2:91:13:49:12:
44:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:32:C0:B2:5D:CC:76:33:84:A9:C8:FF:6E:69:C9:18:62:7E:81:0A
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/lzLAsl3MdjOEqcj_bmnJGGJ-gQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.3.0/24
5.105.5.0/24
5.105.7.0/24
5.105.18.0/23
5.105.36.0/24
5.105.59.0/24
5.105.94.0/24
5.105.102.0/24
5.105.113.0/24
5.105.117.0-5.105.118.255
5.105.143.0/24
5.105.162.0/24
5.105.170.0/24
5.105.184.0/24
5.105.186.0/23
5.105.198.0/23
5.105.202.0/23
5.105.206.0/24
5.105.215.0-5.105.216.255
5.105.218.0/24
5.105.228.0-5.105.230.255
5.105.239.0-5.105.240.255
5.105.244.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:09:50:c3:b8:79:30:1e:ec:0c:42:a1:86:a3:8e:72:20:5a:
34:d4:b9:25:f2:3b:d3:b6:35:17:79:82:ab:3f:13:02:5b:05:
da:6b:53:cd:75:3b:84:0c:e4:38:dc:82:70:4b:49:d6:69:af:
21:e3:65:e5:d0:fb:8c:38:4d:de:11:64:dc:22:00:16:40:77:
79:d5:8b:d7:31:dc:48:df:43:43:fb:1d:4c:8e:96:be:d8:e2:
c1:36:1d:e3:60:c3:fa:76:37:52:38:aa:c7:b6:59:57:a6:47:
af:8c:ea:5e:05:8a:ea:c9:32:5f:19:7a:37:f3:a9:e4:91:54:
bd:23:36:26:6f:8c:0d:5c:de:8a:d1:0a:99:ba:e3:79:61:fd:
b2:e8:05:0d:ab:ed:05:ef:14:1f:5c:f8:c0:83:09:e4:51:a0:
32:99:a4:3f:32:db:d7:ca:e0:45:66:74:5a:7a:ae:e2:37:bb:
dd:fd:c2:49:a9:40:02:af:32:30:9a:0b:d2:e4:d1:97:d0:56:
b3:26:d4:ec:db:35:d9:1b:f2:10:30:d1:45:73:72:59:e8:6b:
16:b9:ad:7c:da:ae:af:f7:aa:67:ec:d9:72:d6:ca:07:08:ca:
31:21:5b:6e:53:e0:7a:bd:19:3c:a9:e5:52:45:07:d0:d6:3f:
07:db:a3:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:01 2023 by rpki-client on console-ams.rpki-client.org