Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/uyZVgrn6lu1N732H_t9KuRME91w.roa
File: uyZVgrn6lu1N732H_t9KuRME91w.roa (raw, json)
Hash identifier: VsxmYxLB59loY0xNBk+yuY2P3HM+FN1UZW13aDTOajw=
Subject key identifier: BB:26:55:82:B9:FA:96:ED:4D:EF:7D:87:FE:DF:4A:B9:13:04:F7:5C
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0189D39A1813D1784C208BC8A3AA6795D0FE
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/uyZVgrn6lu1N732H_t9KuRME91w.roa
Signing time: Tue 08 Aug 2023 05:23:58 +0000
ROA not before: Tue 08 Aug 2023 05:23:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.126.0/24 maxlen: 24
5.105.137.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.66.0/24 maxlen: 24
5.105.72.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.103.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.100.0/24 maxlen: 24
5.105.106.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.227.0/24 maxlen: 24
217.67.76.0/23 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.200.0/24 maxlen: 24
5.105.219.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.226.0/24 maxlen: 24
5.105.221.0/24 maxlen: 24
5.105.13.0/24 maxlen: 24
5.105.36.0/24 maxlen: 24
5.105.37.0/24 maxlen: 24
5.105.51.0/24 maxlen: 24
5.105.49.0/24 maxlen: 24
5.105.47.0/24 maxlen: 24
5.105.45.0/24 maxlen: 24
5.105.52.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d3:9a:18:13:d1:78:4c:20:8b:c8:a3:aa:67:95:d0:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Aug 8 05:23:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb265582b9fa96ed4def7d87fedf4ab91304f75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a5:4f:e7:ee:46:4c:0c:11:a4:c1:b7:62:a8:
79:5f:4b:ef:a5:5f:62:7d:43:88:d1:90:73:74:59:
f8:93:4a:b4:c5:39:f7:34:59:5f:22:76:8f:96:ad:
ec:41:c1:78:9a:75:95:0c:8b:8b:98:68:80:3d:f8:
70:95:b6:1c:b0:ec:8d:75:b7:a4:49:4c:e0:0a:cd:
eb:6e:d5:c9:36:a1:93:77:10:14:ec:65:03:9e:8d:
f2:42:28:4f:14:de:4b:68:de:89:90:3c:13:72:67:
02:98:8b:e7:ca:24:bb:b5:ed:52:4c:a9:c0:da:93:
cd:d0:4a:23:41:d5:a8:8a:0b:51:e7:2b:0a:fc:5e:
47:b9:f5:e1:22:c2:4d:7c:55:6e:86:70:db:0c:bd:
3e:12:f1:35:05:d8:80:f9:6b:d2:03:6b:75:4b:63:
d9:86:d4:6a:fb:50:d7:59:40:76:a7:e2:32:eb:76:
e3:35:cc:d8:be:a2:50:2b:71:f4:a7:40:a3:8e:d5:
fe:78:6a:86:10:23:30:f6:30:19:1b:00:b5:88:39:
15:3b:73:12:ec:32:99:8d:42:c7:e4:3d:ee:4d:27:
c0:29:03:c6:f4:c4:bb:bf:2e:20:0a:95:40:41:5d:
e1:35:aa:e1:17:cd:75:95:04:9f:ef:ea:91:7f:8d:
ac:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:26:55:82:B9:FA:96:ED:4D:EF:7D:87:FE:DF:4A:B9:13:04:F7:5C
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/uyZVgrn6lu1N732H_t9KuRME91w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.13.0/24
5.105.36.0/23
5.105.45.0/24
5.105.47.0/24
5.105.49.0/24
5.105.51.0-5.105.55.255
5.105.66.0/24
5.105.69.0/24
5.105.72.0/24
5.105.94.0/24
5.105.100.0/24
5.105.102.0/23
5.105.106.0/24
5.105.113.0/24
5.105.118.0/24
5.105.124.0/24
5.105.126.0/24
5.105.137.0/24
5.105.143.0/24
5.105.166.0/24
5.105.168.0/24
5.105.198.0-5.105.200.255
5.105.216.0/24
5.105.218.0/23
5.105.221.0/24
5.105.226.0/23
5.105.229.0/24
217.67.76.0/23
Signature Algorithm: sha256WithRSAEncryption
c9:30:83:79:6e:ac:fa:26:2a:01:06:30:26:05:6a:51:bb:cc:
7c:08:6a:40:70:c6:f0:d4:0b:14:52:66:b1:bd:58:91:4b:8b:
0c:c5:d6:ac:de:a6:04:89:ca:ce:55:b7:1c:1d:2f:35:5f:ac:
6d:51:60:8b:a2:9f:2e:33:89:96:da:eb:f1:f1:d6:a9:f9:7e:
8a:91:10:29:c1:cf:13:b4:21:af:da:71:56:20:48:b4:4c:3a:
4d:ae:c1:c2:dc:60:c1:8f:72:70:fc:ae:c0:d4:7b:40:f3:54:
2c:d4:a2:19:21:c7:ce:a1:65:96:5b:3a:c2:61:2a:87:0a:75:
21:03:7b:c7:54:84:5b:bd:2c:27:b8:bd:d6:a7:09:c2:9a:18:
9a:2c:61:fa:16:72:6e:b2:6f:41:62:99:85:23:00:56:89:bf:
06:d5:6f:3d:91:6f:f8:69:4e:1e:5e:5f:d5:e5:b4:e0:8f:19:
9d:96:ff:b8:c8:ef:24:81:18:81:03:b0:7a:5d:79:e0:5f:25:
a6:db:a4:2b:ac:78:97:b7:dc:12:9c:be:be:4c:84:ad:ce:a7:
83:5c:78:e0:42:30:55:94:cf:87:0a:ed:84:75:99:37:8d:c2:
69:2e:8a:8e:a0:10:65:aa:f4:fe:e6:f6:cb:55:5c:42:73:d0:
76:28:69:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 09:24:03 2023 by rpki-client on console-fra.rpki-client.org