Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/vHx0sgcbOyPXNDhLV1_hWnh7-YQ.roa
File: vHx0sgcbOyPXNDhLV1_hWnh7-YQ.roa (raw, json)
Hash identifier: hUW38C5N9syfpnVAXEPF56mQnejLWlEGFhiRGPXMDps=
Subject key identifier: BC:7C:74:B2:07:1B:3B:23:D7:34:38:4B:57:5F:E1:5A:78:7B:F9:84
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0188424430644E8A6FE8F18DFACDB297CEB8
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/vHx0sgcbOyPXNDhLV1_hWnh7-YQ.roa
Signing time: Mon 22 May 2023 07:02:25 +0000
ROA not before: Mon 22 May 2023 07:02:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 5.105.168.0/24 maxlen: 24
5.105.65.0/24 maxlen: 24
5.105.81.0/24 maxlen: 24
5.105.96.0/24 maxlen: 24
5.105.230.0/24 maxlen: 24
5.105.19.0/24 maxlen: 24
5.105.24.0/24 maxlen: 24
5.105.25.0/24 maxlen: 24
5.105.33.0/24 maxlen: 24
5.105.40.0/24 maxlen: 24
5.105.43.0/24 maxlen: 24
5.105.50.0/24 maxlen: 24
5.105.57.0/24 maxlen: 24
5.105.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 11:59:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:42:44:30:64:4e:8a:6f:e8:f1:8d:fa:cd:b2:97:ce:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: May 22 07:02:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc7c74b2071b3b23d734384b575fe15a787bf984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fc:1c:d3:7b:9e:aa:06:70:c5:4f:42:81:9a:
6e:88:f1:b2:df:2e:ed:30:77:d6:79:a2:5d:5a:36:
85:68:bb:53:c2:1f:69:89:02:13:34:58:48:29:8d:
6b:94:44:36:a5:c8:b0:c7:2c:3e:98:14:e5:23:59:
e6:a4:75:37:17:ab:68:9e:25:20:3a:28:27:89:c3:
86:cc:89:2a:dc:a6:19:9f:c6:b2:8e:1a:b6:6c:bf:
27:68:b5:89:c1:70:bc:54:4e:94:79:04:34:dd:a2:
b8:f7:b0:b5:3c:5c:a7:45:fb:05:6d:1c:8b:b6:82:
2b:4f:18:84:15:fd:dd:28:b0:03:e2:e3:94:87:7a:
ab:f9:06:9f:1a:dc:43:ea:f4:d1:b4:1f:d3:ab:81:
4a:95:d1:c2:06:90:fe:89:89:9f:4a:ae:6a:74:51:
e4:5e:5a:cf:46:4d:03:58:26:2c:b0:4d:fc:de:60:
ca:e2:6d:c2:dc:91:5a:5d:32:6e:5c:e1:f3:21:5b:
3a:14:25:0d:8d:db:64:ab:85:21:f5:8f:5c:bb:2b:
d3:7a:30:f5:42:f1:29:f1:2f:34:b5:5e:45:b3:d3:
2e:78:ac:90:82:07:5c:df:26:d2:c1:14:e9:de:1c:
f1:aa:60:63:18:89:31:bf:21:8a:55:a2:44:df:61:
98:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:7C:74:B2:07:1B:3B:23:D7:34:38:4B:57:5F:E1:5A:78:7B:F9:84
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/vHx0sgcbOyPXNDhLV1_hWnh7-YQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.19.0/24
5.105.24.0/23
5.105.33.0/24
5.105.40.0/24
5.105.43.0/24
5.105.50.0/24
5.105.57.0/24
5.105.65.0/24
5.105.81.0/24
5.105.96.0/24
5.105.168.0/24
5.105.184.0/24
5.105.230.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:1f:6c:18:94:cd:77:0c:cd:32:b7:43:f9:c4:0b:3b:7c:33:
98:91:d4:74:b0:91:68:09:c1:ac:cf:ca:a4:e9:09:ca:2d:66:
f7:0a:fe:63:04:d7:c1:ea:bd:e6:68:83:bc:52:2e:28:a2:cb:
05:52:3d:9a:b8:bf:51:53:a9:ac:84:ef:69:34:23:f9:41:01:
ac:3e:26:7d:f0:59:6c:8e:c0:2f:53:05:3d:09:ff:5f:6f:e2:
f0:9f:a3:50:ed:e7:c0:48:31:72:4e:f0:6f:6e:26:01:71:4c:
01:f2:36:ac:78:22:d2:78:78:f2:4a:1f:8b:58:77:f6:8b:0b:
f4:f2:2a:01:05:6c:19:d9:e9:65:d4:37:55:eb:02:5c:a3:83:
bb:e7:65:bd:c2:2e:84:d9:3f:04:b6:24:19:06:7b:24:1f:8a:
81:b1:8a:0a:70:59:54:2b:1d:a4:2b:a5:d2:7a:c1:07:2f:ce:
8d:cf:57:14:c6:b0:ce:ce:58:81:e4:fa:17:1d:22:a4:f4:61:
a2:4d:6d:bd:e3:ea:85:70:40:bb:4d:c8:9d:5f:cd:55:2a:38:
ae:fb:e0:f3:c7:f4:5a:6c:5f:8a:e9:8b:42:64:6c:1a:fc:e7:
cb:5b:ba:48:36:ef:f6:3d:28:f2:06:26:56:4f:53:1b:b8:84:
de:36:44:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:29 2024 by rpki-client on console-fra.rpki-client.org