Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/xrlBf7eMODc2iTYc8ACgYlEVqGY.roa
File: xrlBf7eMODc2iTYc8ACgYlEVqGY.roa (raw, json)
Hash identifier: 9UOQ6kZGUnA8oZsx9+IhnyvWMiKElEkNSEfsh5YgqEY=
Subject key identifier: C6:B9:41:7F:B7:8C:38:37:36:89:36:1C:F0:00:A0:62:51:15:A8:66
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018713E4D718063B3315D54A00418BFAC683
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/xrlBf7eMODc2iTYc8ACgYlEVqGY.roa
Signing time: Fri 24 Mar 2023 13:52:56 +0000
ROA not before: Fri 24 Mar 2023 13:52:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.104.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.226.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Mar 2023 07:43:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:13:e4:d7:18:06:3b:33:15:d5:4a:00:41:8b:fa:c6:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Mar 24 13:52:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6b9417fb78c38373689361cf000a0625115a866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:6c:18:90:ab:95:77:bd:42:02:98:cf:20:d1:
ad:0c:a3:ef:b2:9e:d6:9d:6b:94:a0:2d:4f:aa:36:
f5:9a:73:ca:1f:80:6f:76:5a:e3:6c:b1:49:f4:d7:
82:bd:63:58:27:7a:94:f9:3a:83:5c:6b:1b:4b:d8:
05:3e:a6:84:f4:d9:6b:b8:cd:79:f2:da:e5:d5:09:
99:24:60:b2:82:9c:eb:45:28:61:e7:6d:2c:26:9b:
91:ac:19:09:d7:f1:d8:c0:90:ae:74:2e:08:b9:ff:
9f:53:a0:60:00:22:93:bc:83:11:ad:25:29:f2:3c:
1c:80:1f:7c:36:69:6a:fd:55:bf:fd:3b:16:da:aa:
cd:43:f2:85:b9:1f:bf:09:a7:a3:4a:df:4f:01:21:
01:0c:4b:53:6e:4e:c7:32:59:f8:71:c8:f2:5c:23:
fe:8f:23:cd:9d:45:4a:85:0f:b8:e9:2c:66:10:c0:
78:79:f4:73:72:d5:6e:3f:2e:19:40:16:c3:85:26:
3c:cd:01:ee:59:e0:9a:b0:12:e4:c5:7e:ad:f3:d9:
58:19:09:17:2f:fd:07:7f:42:72:c4:32:ab:51:90:
23:e9:41:7b:5a:a6:a4:6e:51:34:ee:b1:23:bc:0f:
f9:d3:9a:06:f0:31:4c:3b:50:f4:d5:9b:bf:c4:0f:
10:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B9:41:7F:B7:8C:38:37:36:89:36:1C:F0:00:A0:62:51:15:A8:66
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/xrlBf7eMODc2iTYc8ACgYlEVqGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.31.0/24
5.105.68.0/23
5.105.82.0/24
5.105.102.0/24
5.105.104.0/24
5.105.112.0/22
5.105.118.0/24
5.105.124.0/24
5.105.127.0/24
5.105.138.0/23
5.105.142.0/23
5.105.157.0/24
5.105.162.0/24
5.105.165.0/24
5.105.168.0/24
5.105.172.0/24
5.105.186.0/23
5.105.197.0-5.105.199.255
5.105.202.0/23
5.105.206.0/23
5.105.215.0-5.105.216.255
5.105.218.0/24
5.105.226.0/24
5.105.228.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.247.0-5.105.249.255
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
52:20:97:3e:fc:d0:62:18:a1:30:89:c8:4b:bf:cc:56:b6:c9:
39:bc:9f:21:90:d4:75:e4:79:8f:ed:d9:12:1b:cd:a3:4d:a4:
cb:dd:1f:cd:66:51:15:e1:ec:b5:af:9e:dd:e7:39:3f:a2:c8:
4b:4a:6f:6b:5c:32:19:0b:1b:c8:3c:0e:b2:9b:24:4a:0b:b8:
a1:5b:a5:15:b6:ac:f8:0a:29:4b:9f:ac:fb:e1:ac:c2:36:13:
72:e6:d5:39:d4:0a:ae:51:3e:33:6b:b9:6b:c1:84:c2:59:7c:
16:02:b9:5f:34:4d:cb:08:c9:2d:25:60:a9:0e:89:39:0e:bb:
01:da:eb:85:ec:e4:80:36:15:c1:e6:2c:97:8a:a0:69:9e:a5:
1b:59:7a:da:33:91:19:7c:f0:f7:08:12:7f:5b:15:d6:f8:18:
a5:2a:ad:2d:90:77:ff:7b:13:d9:57:45:67:83:63:3c:46:9c:
65:bc:32:c2:6a:91:44:c9:c4:e6:fe:1c:d2:8a:45:fb:65:ac:
14:a6:58:7f:1f:cb:d6:c4:aa:fa:63:b0:0c:ce:30:87:29:f6:
14:c2:f4:d2:ea:e4:81:3b:57:ff:87:48:d8:60:b0:13:8d:d1:
7f:84:bf:69:f9:10:32:50:67:68:48:ae:72:41:66:51:50:35:
a6:1f:d4:0c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:29 2024 by rpki-client on console-fra.rpki-client.org