Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tmwEGqg3A_eiC5Rk5US_SjvIUcQ.roa
File: tmwEGqg3A_eiC5Rk5US_SjvIUcQ.roa (raw, json)
Hash identifier: D1i6Z5ws5aDpvLA7It/vNNlAgz0eNZPvssmm4fm7RJA=
Subject key identifier: B6:6C:04:1A:A8:37:03:F7:A2:0B:94:64:E5:44:BF:4A:3B:C8:51:C4
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018902832B0988CE9944F703A8B1212958EE
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tmwEGqg3A_eiC5Rk5US_SjvIUcQ.roa
Signing time: Wed 28 Jun 2023 14:58:17 +0000
ROA not before: Wed 28 Jun 2023 14:58:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 5.105.14.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jul 2023 11:35:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:02:83:2b:09:88:ce:99:44:f7:03:a8:b1:21:29:58:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jun 28 14:58:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b66c041aa83703f7a20b9464e544bf4a3bc851c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d7:83:5f:d3:36:23:82:d8:79:78:04:db:97:
9b:6f:e7:1f:87:24:eb:71:81:9e:26:28:1c:5d:e1:
6f:54:7a:ff:d3:ca:04:9a:8f:44:83:4c:bd:21:39:
4e:7b:26:9f:36:ba:03:6e:3d:d2:6f:fe:e6:ed:66:
78:de:fa:0f:ad:f2:b3:e9:83:87:33:40:58:16:a5:
e6:94:46:e7:47:2e:ca:1b:b0:fc:41:7f:ed:c4:c8:
9e:71:f7:79:ad:f4:64:ed:c8:74:86:7f:fb:b6:6c:
02:2a:26:92:ea:a6:b8:8c:31:f8:ed:0c:0a:b4:ce:
9b:f8:50:eb:75:ce:df:1f:31:9d:fe:0c:f6:05:ac:
6a:6e:29:a2:b8:fb:1c:a2:95:96:49:9f:3d:15:b6:
56:0b:8a:40:c0:31:df:cd:ee:d9:60:7d:59:66:ba:
13:bc:9a:64:72:1e:51:e6:4a:81:f1:d6:47:b7:05:
0a:51:0a:dd:c2:2b:50:3b:67:53:8c:f8:01:0c:15:
64:92:67:d2:ad:95:03:be:f0:15:94:b0:dd:41:13:
ba:47:10:f5:78:19:5c:a8:93:40:51:07:f3:1a:51:
68:74:14:48:f4:c0:14:6d:84:b7:74:b4:7a:d7:e9:
df:fd:ae:22:b5:b3:41:35:a9:bc:10:00:89:d2:fc:
f6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6C:04:1A:A8:37:03:F7:A2:0B:94:64:E5:44:BF:4A:3B:C8:51:C4
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tmwEGqg3A_eiC5Rk5US_SjvIUcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.14.0/24
5.105.139.0/24
5.105.142.0/24
5.105.207.0/24
5.105.221.0/24
5.105.249.0/24
Signature Algorithm: sha256WithRSAEncryption
06:b3:40:a9:86:86:11:c6:e1:fd:9b:ba:5a:15:9d:5f:3f:a0:
8d:06:12:ad:be:00:86:6b:46:b8:97:6b:d2:b2:5f:bd:85:40:
48:bf:4e:c3:31:d7:ee:c3:03:44:a0:d0:7c:a8:e8:fb:f4:83:
06:f2:a6:0f:e2:fd:f6:e5:c3:96:65:54:68:99:44:4e:83:77:
3d:66:b2:2e:dd:56:fb:68:a5:5a:df:4e:41:7b:27:4e:e8:e4:
fc:90:32:3b:4b:1b:b7:c3:b1:83:87:0f:fc:ea:5d:69:57:fe:
15:97:88:2b:19:b0:0b:08:73:34:50:55:84:f1:11:b6:fb:a4:
d3:91:7f:24:0c:8a:28:b2:b8:19:ba:69:7d:fe:ee:29:fa:79:
d8:4e:0a:23:81:91:76:1a:13:73:06:dd:0c:0e:fb:d7:3d:af:
a5:6d:9e:1d:64:af:ed:07:67:95:8e:b5:19:e0:00:c1:f3:68:
99:bc:37:47:bb:33:77:ec:bb:70:f0:b8:66:36:9b:e8:60:0a:
5f:53:41:0d:d1:78:91:2e:b5:5a:0a:1d:15:6e:88:5c:e5:68:
eb:1f:35:b1:a7:67:44:08:8d:a2:06:55:e1:f5:e5:26:2f:0b:
b3:9c:de:78:f4:18:60:d6:23:69:2d:59:30:06:d2:42:62:82:
f5:3e:87:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:59 2024 by rpki-client on console-ams.rpki-client.org