Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/ovNC-fKdVyqj37vndhJcJjAlsYw.roa
File: ovNC-fKdVyqj37vndhJcJjAlsYw.roa (raw, json)
Hash identifier: 6vMn/lrOnL1ituCtO5Rj0qqdgOnde8Gt6VQXzc7+4Nk=
Subject key identifier: A2:F3:42:F9:F2:9D:57:2A:A3:DF:BB:E7:76:12:5C:26:30:25:B1:8C
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018AAD00E00ABF8A22DC74E1884F26156346
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/ovNC-fKdVyqj37vndhJcJjAlsYw.roa
Signing time: Tue 19 Sep 2023 10:33:50 +0000
ROA not before: Tue 19 Sep 2023 10:33:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 5.105.128.0/24 maxlen: 24
5.105.160.0/24 maxlen: 24
5.105.89.0/24 maxlen: 24
5.105.86.0/24 maxlen: 24
5.105.88.0/24 maxlen: 24
5.105.87.0/24 maxlen: 24
5.105.110.0/24 maxlen: 24
5.105.114.0/23 maxlen: 24
5.105.22.0/24 maxlen: 24
5.105.248.0/23 maxlen: 24
5.105.250.0/24 maxlen: 24
5.105.251.0/24 maxlen: 24
5.105.255.0/24 maxlen: 24
5.105.254.0/24 maxlen: 24
5.105.176.0/24 maxlen: 24
5.105.191.0/24 maxlen: 24
5.105.190.0/24 maxlen: 24
5.105.192.0/24 maxlen: 24
5.105.194.0/24 maxlen: 24
5.105.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ad:00:e0:0a:bf:8a:22:dc:74:e1:88:4f:26:15:63:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Sep 19 10:33:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2f342f9f29d572aa3dfbbe776125c263025b18c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c4:ab:fe:1b:71:f2:54:14:6d:05:d8:de:45:
8c:cd:53:be:83:92:66:f9:61:3e:44:cf:21:30:8b:
2c:63:31:57:0c:7b:be:4d:9c:9a:4b:45:ba:26:d0:
7a:7d:2f:ca:8b:c1:27:09:6d:f8:71:c4:7d:61:8b:
70:c0:6d:4b:29:98:7b:e0:29:e7:49:cd:d0:96:ad:
5b:f4:66:97:e9:b7:b4:eb:24:84:6e:13:e7:86:be:
55:1c:fa:ef:a5:70:94:92:8f:71:15:af:aa:44:ea:
66:d7:87:ec:86:85:07:09:1a:06:7c:0d:9f:c1:b7:
5c:b3:0e:a1:57:1d:77:ae:f8:b5:59:dd:2c:f6:81:
3d:d8:0d:51:49:ad:5c:f3:46:25:65:08:35:2f:1b:
5d:ed:32:d4:b3:75:36:c2:0a:b8:32:f1:7e:b8:38:
ba:e6:c0:7c:8f:32:43:57:88:0a:a1:01:e4:b3:37:
c6:92:61:b6:b4:bf:ea:b2:d6:24:78:51:4c:a7:dd:
53:04:84:e2:92:d1:ad:db:84:85:d5:89:a5:3f:b0:
d9:2a:5e:bc:9d:ec:76:a8:26:69:28:17:de:90:0e:
9f:95:67:de:76:5e:4b:1e:a8:ba:bd:a9:e4:d1:56:
8d:4b:2a:6b:86:17:69:bd:44:5b:6c:87:5c:f1:ee:
39:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:F3:42:F9:F2:9D:57:2A:A3:DF:BB:E7:76:12:5C:26:30:25:B1:8C
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/ovNC-fKdVyqj37vndhJcJjAlsYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.3.0/24
5.105.22.0/24
5.105.86.0-5.105.89.255
5.105.110.0/24
5.105.114.0/23
5.105.128.0/24
5.105.160.0/24
5.105.176.0/24
5.105.190.0-5.105.192.255
5.105.194.0/24
5.105.248.0/22
5.105.254.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:be:3a:67:e4:57:b4:5a:4d:47:7f:22:7f:5f:56:2f:76:8b:
a3:30:10:fe:a2:99:38:9c:4b:d7:26:2d:e8:b1:ce:83:a2:6f:
5d:f2:26:45:ea:2c:45:f8:cb:30:94:d2:1c:da:88:9d:b0:d5:
18:88:2d:5c:df:85:66:d8:19:ca:63:1f:d7:eb:29:ca:f8:3c:
e2:4d:ec:14:f0:15:d4:20:d8:ad:7c:f4:d7:bf:65:10:20:54:
48:ea:5d:7a:65:8d:50:84:7b:8b:28:03:70:ac:4b:81:34:0f:
b1:1e:76:a3:66:9f:f3:98:84:11:4e:4a:4d:87:36:c8:da:4f:
66:76:56:ec:83:8a:d6:b2:94:88:a3:7f:2c:ab:15:66:53:72:
34:02:a3:cc:5c:d1:6a:08:72:42:e3:99:f7:95:c2:7c:ff:2f:
3d:7a:0a:94:51:33:ea:01:cc:3e:27:b5:e9:bc:1c:d5:89:cd:
e0:02:86:d7:5c:58:90:8c:74:9f:df:3b:f4:5d:7f:60:16:86:
b9:69:2a:9a:f7:42:09:b9:36:4b:65:db:98:9e:bc:a2:67:95:
14:a8:b7:69:56:2a:98:b4:ef:a0:f8:04:f0:41:17:b9:4e:e4:
70:56:7f:47:7d:c0:3f:09:e9:bf:6b:9d:48:59:4f:cb:29:a8:
8c:4f:37:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 4 18:24:17 2023 by rpki-client on console-ams.rpki-client.org