Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tfNRhe0xNoLx6Nsq_phDnMYS3vI.roa
File: tfNRhe0xNoLx6Nsq_phDnMYS3vI.roa (raw, json)
Hash identifier: +UtyXAh/dlvFgTvtDZgAg+G6VkMv86ldOcvxYqTLFQE=
Subject key identifier: B5:F3:51:85:ED:31:36:82:F1:E8:DB:2A:FE:98:43:9C:C6:12:DE:F2
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0185BE6C89794F11B212304DF2E5916B6D48
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tfNRhe0xNoLx6Nsq_phDnMYS3vI.roa
Signing time: Tue 17 Jan 2023 06:31:02 +0000
ROA not before: Tue 17 Jan 2023 06:31:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 996
IP address blocks: 5.105.149.0/24 maxlen: 24
5.105.150.0/24 maxlen: 24
5.105.151.0/24 maxlen: 24
5.105.148.0/24 maxlen: 24
91.200.212.0/22 maxlen: 24
5.105.87.0/24 maxlen: 24
5.105.88.0/24 maxlen: 24
5.105.89.0/24 maxlen: 24
5.105.86.0/24 maxlen: 24
5.105.233.0/24 maxlen: 24
5.105.232.0/24 maxlen: 24
5.105.234.0/24 maxlen: 24
5.105.235.0/24 maxlen: 24
5.105.236.0/24 maxlen: 24
5.105.177.0/24 maxlen: 24
5.105.178.0/24 maxlen: 24
5.105.174.0/24 maxlen: 24
5.105.175.0/24 maxlen: 24
5.105.176.0/24 maxlen: 24
5.105.180.0/24 maxlen: 24
5.105.181.0/24 maxlen: 24
5.105.182.0/24 maxlen: 24
5.105.183.0/24 maxlen: 24
85.255.180.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:be:6c:89:79:4f:11:b2:12:30:4d:f2:e5:91:6b:6d:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 17 06:31:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5f35185ed313682f1e8db2afe98439cc612def2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cc:0a:7b:2b:a5:c7:60:28:85:19:6b:da:dd:
43:96:01:38:13:75:49:77:3f:de:af:07:05:8a:1e:
89:9e:7e:37:f1:da:8d:fb:b6:6c:b1:9a:d9:5e:34:
d1:9f:3f:b6:71:bc:01:52:6a:39:67:0b:dc:17:53:
55:eb:cc:d5:f8:53:7a:82:2f:d3:36:59:01:b0:8c:
a8:a8:a9:c3:3d:88:7e:ff:ff:89:e7:7e:2c:3c:bb:
d1:ab:64:df:96:95:b9:4e:bb:ab:8c:d6:8d:cc:de:
a3:13:f2:b0:59:8c:7c:30:14:f4:8a:97:8d:b1:9e:
08:a6:27:1f:8e:59:f4:c1:6f:e6:8c:a9:2f:b7:27:
45:a6:6e:c1:63:b0:9e:96:e0:a6:72:25:ad:43:75:
c0:31:be:d2:12:fe:aa:ed:8f:d4:2e:bd:dc:c5:58:
4a:fd:df:44:ed:4f:e3:88:03:a1:30:a1:ca:57:68:
c3:cb:65:1d:0c:73:52:d3:78:43:09:79:91:a7:fd:
d8:c1:1b:29:de:ce:e8:e4:83:33:88:fe:80:96:77:
b1:21:60:1a:ca:a5:dc:49:2b:2b:c7:ac:2b:69:59:
7b:12:da:da:ba:ea:e7:71:4c:a8:1a:b2:20:68:99:
23:53:32:8f:d5:77:f9:0d:74:54:67:d8:41:04:c6:
b6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F3:51:85:ED:31:36:82:F1:E8:DB:2A:FE:98:43:9C:C6:12:DE:F2
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tfNRhe0xNoLx6Nsq_phDnMYS3vI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.86.0-5.105.89.255
5.105.148.0/22
5.105.174.0-5.105.178.255
5.105.180.0/22
5.105.232.0-5.105.236.255
85.255.180.0/22
91.200.212.0/22
Signature Algorithm: sha256WithRSAEncryption
53:3e:0f:d8:e2:5e:f4:41:65:d4:bd:2e:35:5d:16:e5:dc:f4:
8e:a4:e1:3d:cc:c5:9e:0d:3c:ad:b5:08:51:88:89:be:05:53:
a8:16:9a:bc:75:83:65:94:5b:a9:d5:84:c5:3d:ac:83:f6:75:
90:ed:84:80:ad:c1:31:6a:c4:d8:81:27:d1:d0:6d:cf:c9:da:
39:cc:c5:69:97:e7:54:8a:4e:a0:1b:91:d9:62:c3:a1:9c:8c:
6b:46:ce:b3:16:26:33:5e:56:e7:7c:c4:14:b7:ad:d5:d3:dd:
3a:49:b9:23:b0:8d:28:82:aa:4c:cf:ce:a3:3d:b0:e6:14:af:
7f:23:2c:0d:49:a4:fe:3a:fd:a4:83:95:d5:e8:66:de:37:45:
95:4b:6b:98:7d:30:e5:f4:89:7e:3c:30:3d:39:24:6a:63:0c:
1b:35:48:e1:04:dd:6e:ee:3f:62:a0:0b:af:47:41:c0:57:02:
4f:df:82:91:37:34:3e:c7:79:bc:03:e7:b7:f9:62:6e:ee:ec:
5e:71:9a:ee:f8:ef:62:31:e0:56:15:62:9f:45:19:ac:16:9e:
36:03:9f:f6:50:7b:48:c4:03:7d:bb:df:18:88:b5:fb:cd:dc:
ff:36:21:f6:31:7b:e8:85:50:46:f4:2d:13:1c:e6:7c:97:9b:
6b:07:20:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:19 2023 by rpki-client on console-fra.rpki-client.org