Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tq_bqWdABAxy-PLqDyp1_SEuwjw.roa
File: tq_bqWdABAxy-PLqDyp1_SEuwjw.roa (raw, json)
Hash identifier: KCPk6W7cLnIatavTdq0mP75br6Dgs1qXgvBJifj9lzw=
Subject key identifier: B6:AF:DB:A9:67:40:04:0C:72:F8:F2:EA:0F:2A:75:FD:21:2E:C2:3C
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0185F3040FE6EE49382C1243094DE0FC0AC2
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tq_bqWdABAxy-PLqDyp1_SEuwjw.roa
Signing time: Fri 27 Jan 2023 11:36:47 +0000
ROA not before: Fri 27 Jan 2023 11:36:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 193.46.210.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.125.0/24 maxlen: 24
5.105.123.0/24 maxlen: 24
5.105.122.0/24 maxlen: 24
5.105.131.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.156.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.74.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.81.0/24 maxlen: 24
5.105.80.0/24 maxlen: 24
5.105.79.0/24 maxlen: 24
5.105.95.0/24 maxlen: 24
5.105.103.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.108.0/24 maxlen: 24
5.105.106.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
5.105.195.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.204.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.214.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.10.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f3:04:0f:e6:ee:49:38:2c:12:43:09:4d:e0:fc:0a:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 27 11:36:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6afdba96740040c72f8f2ea0f2a75fd212ec23c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1c:46:02:6c:2c:8c:82:1a:10:15:77:7e:34:
63:58:66:9a:55:03:15:19:38:37:57:5b:62:1d:3a:
c7:e9:16:d3:44:06:ce:38:ca:db:02:47:a3:56:e5:
f4:62:a7:f8:4b:92:65:71:f7:aa:38:9c:1a:7b:b8:
f6:d5:61:4e:2e:ba:da:21:88:6c:b4:eb:b2:09:f5:
65:83:70:1e:0d:27:ec:97:d5:ae:91:4e:33:63:5f:
1a:40:eb:2e:ee:70:79:94:19:fa:95:9f:13:93:2d:
66:aa:fe:b8:2d:5d:8b:1b:73:d2:46:4f:10:b1:b0:
0d:57:3e:ff:04:a5:f0:53:c7:2c:6b:4d:87:43:c8:
ba:3b:9c:3d:fd:a9:8c:76:55:81:e3:f2:6e:1b:38:
1c:1f:c2:d7:87:2c:fa:be:c2:d8:54:62:11:3e:56:
e6:e9:ef:40:d2:d1:ba:6d:25:01:cc:de:4a:1b:9c:
bd:50:75:38:8d:80:11:b2:be:bf:5e:95:87:52:4c:
42:94:db:09:84:8a:9f:9b:5c:e8:7b:c8:1e:64:9a:
75:92:5f:68:9f:1b:22:ff:ad:91:63:84:58:83:a4:
3d:c3:be:65:99:92:f8:92:cb:1c:e2:ec:89:a6:a6:
11:18:3b:0b:0a:b8:e0:97:68:29:ed:5f:6e:a1:f8:
5f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:AF:DB:A9:67:40:04:0C:72:F8:F2:EA:0F:2A:75:FD:21:2E:C2:3C
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tq_bqWdABAxy-PLqDyp1_SEuwjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.10.0/24
5.105.12.0/24
5.105.68.0/23
5.105.74.0/24
5.105.79.0-5.105.82.255
5.105.95.0/24
5.105.103.0/24
5.105.106.0/24
5.105.108.0/24
5.105.112.0/22
5.105.122.0/23
5.105.125.0/24
5.105.127.0/24
5.105.131.0/24
5.105.134.0/24
5.105.138.0/23
5.105.142.0/23
5.105.156.0/24
5.105.162.0/24
5.105.165.0-5.105.166.255
5.105.168.0/24
5.105.172.0/24
5.105.186.0/23
5.105.195.0/24
5.105.197.0-5.105.199.255
5.105.202.0-5.105.204.255
5.105.206.0/23
5.105.214.0/24
5.105.216.0/24
5.105.229.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:f0:e9:1f:82:05:65:fc:ba:cf:48:75:ac:f3:0f:45:57:28:
67:c3:0b:80:5e:b2:cf:60:22:c5:cd:7c:e8:f6:5d:15:6b:3f:
87:27:58:f0:e4:f3:bd:91:6a:d3:a9:cd:de:bd:97:95:97:e0:
75:9d:7c:8a:c0:80:ea:a3:0e:3a:9a:57:f6:63:bb:6f:aa:38:
e7:9e:04:d1:42:0d:5d:61:dd:d5:43:31:83:f0:41:07:47:44:
af:6b:a7:aa:96:df:c4:97:59:d4:47:04:cb:60:50:78:ce:ad:
b2:e7:07:2f:5c:37:c0:0b:48:80:85:2a:d8:21:16:7a:23:0f:
59:5b:f4:28:43:5a:a1:51:af:0d:aa:d1:3e:dd:b2:7d:0e:a2:
09:ac:bf:72:73:a1:5a:bd:f4:31:88:b5:f3:1f:41:9e:99:1e:
1e:da:6a:b4:68:6b:af:f3:e0:22:b7:62:e4:e4:83:6e:77:14:
a2:d4:9c:58:b9:40:4f:a0:ce:59:5b:bc:5d:5c:00:14:ed:4f:
78:b2:40:87:f8:d4:f9:f8:72:31:80:e1:08:9e:b6:46:dc:2a:
c6:8d:26:da:7b:38:28:6f:6e:b1:cf:30:f4:b5:7d:44:d7:e4:
a4:33:e8:e3:9a:36:35:d2:45:86:82:32:da:8f:ac:b6:bc:48:
83:9d:81:eb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:19 2023 by rpki-client on console-fra.rpki-client.org