Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/yYVCUW8ZO5bBCLLviBilKEWRaRM.roa
File: yYVCUW8ZO5bBCLLviBilKEWRaRM.roa (raw, json)
Hash identifier: E73/uoHoYuy4hWwMY8cbIPX1exOEEgnhN0C9F3ME3+Q=
Subject key identifier: C9:85:42:51:6F:19:3B:96:C1:08:B2:EF:88:18:A5:28:45:91:69:13
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0187FF3C38D2AC2326AA93C7509298D28185
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/yYVCUW8ZO5bBCLLviBilKEWRaRM.roa
Signing time: Tue 09 May 2023 06:39:09 +0000
ROA not before: Tue 09 May 2023 06:39:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.143.0/24 maxlen: 24
5.105.158.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.77.0/24 maxlen: 24
5.105.75.0/24 maxlen: 24
5.105.104.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.247.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.185.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.31.0/24 maxlen: 24
5.105.49.0/24 maxlen: 24
5.105.51.0/24 maxlen: 24
5.105.64.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ff:3c:38:d2:ac:23:26:aa:93:c7:50:92:98:d2:81:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: May 9 06:39:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c98542516f193b96c108b2ef8818a52845916913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:57:da:af:64:80:46:f0:f2:c8:18:8e:a6:48:
19:9f:04:b9:87:bf:8c:20:bb:e7:55:f8:39:d7:37:
8b:fc:9e:63:a7:5b:ec:a8:8f:ae:08:38:ae:9f:a2:
5d:53:e8:3c:f4:2f:1a:ea:3a:32:53:a9:9f:8a:bb:
e8:aa:1c:54:20:db:33:49:df:61:89:ce:43:cf:43:
46:e4:5f:f6:bb:d6:a2:91:5d:99:c8:da:b9:15:b3:
50:0f:6e:a4:1a:7d:82:3d:ac:36:b2:de:af:32:22:
ec:29:93:2a:e2:d7:78:41:ba:ae:43:9a:f0:3e:34:
d5:c6:3e:48:cb:f2:b8:a8:2b:3a:78:4d:a8:81:c7:
46:2e:11:4e:ae:f3:2d:2d:4c:fb:2c:a5:56:3d:4d:
e5:34:7f:db:8b:9d:c9:d3:1d:7d:bd:95:95:f0:ca:
57:53:8e:67:02:37:31:80:20:c7:ec:56:5f:df:d5:
96:42:b6:cb:e3:e7:dd:c0:59:a6:ef:a5:ec:fb:5e:
9e:3c:e8:bc:67:75:e6:d3:bb:dc:78:f3:17:5c:23:
8b:5f:a0:50:b1:4a:9d:8e:44:d5:60:65:87:d8:3f:
b2:65:3d:06:41:00:40:c4:5a:13:de:92:f8:70:31:
20:8c:b1:eb:29:79:47:90:b7:73:94:31:fd:35:1a:
8d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:85:42:51:6F:19:3B:96:C1:08:B2:EF:88:18:A5:28:45:91:69:13
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/yYVCUW8ZO5bBCLLviBilKEWRaRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.31.0/24
5.105.49.0/24
5.105.51.0/24
5.105.64.0/24
5.105.75.0/24
5.105.77.0/24
5.105.104.0/24
5.105.112.0/22
5.105.118.0/24
5.105.143.0/24
5.105.158.0/24
5.105.162.0/24
5.105.165.0-5.105.166.255
5.105.170.0/24
5.105.185.0-5.105.187.255
5.105.198.0/23
5.105.202.0/23
5.105.215.0/24
5.105.228.0/23
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.247.0-5.105.248.255
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:83:b1:81:63:d5:9f:c0:07:c7:f1:86:60:c2:b8:6c:8f:9b:
d4:8c:cb:68:c7:54:84:52:77:b1:99:75:92:66:5a:f0:53:7e:
86:2e:e5:fa:87:45:6f:89:b0:48:ca:42:0c:6d:b0:9b:a6:52:
54:19:ae:79:c6:10:be:66:dc:c8:e3:87:3a:fa:c8:70:20:16:
26:68:08:ef:db:42:7f:fa:0a:e4:20:d0:f6:28:eb:b1:6d:68:
a4:5e:29:b1:c2:ba:1b:7a:38:c8:ee:06:42:06:f6:f2:49:67:
ce:a9:3a:3a:c4:22:93:69:11:76:88:cf:39:bb:fe:89:16:b5:
91:e3:bf:02:52:a5:da:fb:f6:ff:de:05:9a:5b:f7:0f:84:06:
b8:84:b6:e2:65:fd:1c:59:8c:80:20:ae:37:d3:20:bf:88:3f:
2c:56:d1:44:bf:17:1c:69:1f:78:7a:53:cf:ee:98:d4:b8:ae:
9d:11:87:96:5e:c1:39:18:98:48:a1:ce:62:ec:c5:9e:db:17:
10:a9:49:02:c9:f1:b4:d1:4c:84:c1:92:f2:ea:2e:6d:a8:60:
fd:23:af:9e:db:ff:4f:10:0b:eb:96:f9:52:91:f5:12:82:77:
91:df:c2:f1:23:2c:a4:b7:61:6a:8b:a2:3b:01:a8:b0:da:8d:
e2:71:90:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:19 2023 by rpki-client on console-fra.rpki-client.org