Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/q1yxnzbkl8quZqrkO14qj8qWajo.roa
File: q1yxnzbkl8quZqrkO14qj8qWajo.roa (raw, json)
Hash identifier: eVA4HUemDskTZLwP48R88zzI7VidMIkbe1XLqy006a0=
Subject key identifier: AB:5C:B1:9F:36:E4:97:CA:AE:66:AA:E4:3B:5E:2A:8F:CA:96:6A:3A
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018A3130D9563D6DB97FC3A3561A4C503152
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/q1yxnzbkl8quZqrkO14qj8qWajo.roa
Signing time: Sat 26 Aug 2023 09:33:19 +0000
ROA not before: Sat 26 Aug 2023 09:33:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10753
IP address blocks: 5.105.158.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.71.0/24 maxlen: 24
5.105.65.0/24 maxlen: 24
5.105.75.0/24 maxlen: 24
5.105.80.0/24 maxlen: 24
5.105.98.0/24 maxlen: 24
5.105.104.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
217.67.68.0/22 maxlen: 22
5.105.188.0/24 maxlen: 24
85.255.176.0/21 maxlen: 24
91.200.212.0/22 maxlen: 24
5.105.14.0/24 maxlen: 24
5.105.23.0/24 maxlen: 24
5.105.20.0/24 maxlen: 24
5.105.30.0/24 maxlen: 24
5.105.26.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.32.0/24 maxlen: 24
5.105.34.0/24 maxlen: 24
5.105.44.0/24 maxlen: 24
5.105.46.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.105.64.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:31:30:d9:56:3d:6d:b9:7f:c3:a3:56:1a:4c:50:31:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Aug 26 09:33:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab5cb19f36e497caae66aae43b5e2a8fca966a3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:69:a1:c7:8d:f2:88:06:c6:ee:99:9f:d8:45:
dd:f4:09:86:79:b2:67:ff:79:a7:56:1c:07:49:0e:
3d:16:58:ce:94:89:75:a1:5d:f9:54:f4:b5:cf:d2:
cf:81:20:b0:9d:32:ba:54:e9:97:d9:ef:9f:c9:07:
62:83:f7:d4:06:16:0f:ee:bb:8d:a0:6d:c7:b9:34:
4e:2a:eb:14:0c:41:98:f3:c5:91:ac:84:37:dc:1c:
2a:04:cc:cc:66:00:c9:82:18:1d:a1:8c:ce:b2:a9:
e2:1e:6f:68:c3:01:cb:fa:af:d8:34:f9:c9:ca:fd:
ef:06:ad:b7:ed:ee:95:04:99:64:c9:1f:91:d2:83:
46:f3:4b:f0:0c:e3:a2:5a:2a:9c:ab:28:fb:8e:a8:
41:75:dd:bc:7a:53:6d:16:af:27:a3:87:b9:94:81:
90:56:d0:8f:95:40:56:09:bc:c2:c0:18:32:fd:33:
bf:6e:dd:55:a4:23:81:68:cf:b0:49:f9:20:da:0a:
d2:c0:b4:25:c9:9f:22:84:21:c4:5a:a5:f1:87:db:
57:e6:94:13:1b:19:36:d7:b9:85:7a:5f:f3:b4:73:
86:93:00:49:6f:39:9c:eb:64:f8:d7:27:bc:f0:ac:
5c:79:9c:19:bc:36:50:39:7b:e7:03:68:b1:b3:9c:
09:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5C:B1:9F:36:E4:97:CA:AE:66:AA:E4:3B:5E:2A:8F:CA:96:6A:3A
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/q1yxnzbkl8quZqrkO14qj8qWajo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.14.0/24
5.105.20.0/24
5.105.23.0/24
5.105.26.0/24
5.105.30.0-5.105.32.255
5.105.34.0/24
5.105.44.0/24
5.105.46.0/24
5.105.63.0-5.105.65.255
5.105.71.0/24
5.105.75.0/24
5.105.80.0/24
5.105.98.0/24
5.105.104.0/24
5.105.112.0/24
5.105.158.0/24
5.105.172.0/24
5.105.188.0/24
85.255.176.0/21
91.200.212.0/22
217.67.68.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:5b:66:c7:3c:32:af:ad:a3:1f:2b:fd:51:17:9f:cd:24:e0:
5b:ef:55:19:7d:19:ce:06:29:7e:ad:e8:fd:f9:01:4d:95:bd:
49:89:5d:bc:6b:a6:1d:9b:a3:36:db:0e:ae:aa:ab:4f:9c:8e:
9b:bc:55:6a:06:60:27:10:00:49:88:99:35:b9:92:b6:d9:e9:
9c:06:dd:ba:e3:ee:1c:2d:bd:96:cf:07:83:27:01:ca:4f:ee:
2a:7d:96:05:74:50:30:29:89:34:51:22:ba:eb:5c:1f:e6:1f:
2e:1a:b4:47:01:80:7d:1e:7f:9e:f2:cc:10:aa:1b:79:ef:c9:
34:be:a3:8d:2d:4d:68:cc:71:1a:b1:3c:b9:e0:ce:9f:f1:c8:
77:3d:1b:f0:3d:e9:62:e1:76:17:b2:1d:52:e4:ae:7d:66:67:
92:d2:3a:3a:58:15:73:02:0b:87:53:19:f2:cf:71:6c:1f:f2:
35:a1:a5:46:53:c4:a1:e7:b4:8b:78:c4:62:76:0e:7d:3d:7b:
48:3c:d4:55:d9:db:d6:91:fd:b9:24:46:72:b4:6b:36:2c:11:
d5:d0:2b:2c:4c:ce:51:f9:4b:11:54:a3:a1:a4:10:64:60:3c:
5a:e0:f4:ed:13:2a:29:06:b1:5d:ff:44:04:2b:3e:cf:30:7e:
2a:96:d1:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 4 18:45:09 2023 by rpki-client on console-fra.rpki-client.org