Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3Ldnw0FXyJf8Wo0Sjw9BoZB7ae0.roa
File: 3Ldnw0FXyJf8Wo0Sjw9BoZB7ae0.roa (raw, json)
Hash identifier: gMYERFyJarDjKvZoHtnbcLeWAvJza03MLFY5amaCTz8=
Subject key identifier: DC:B7:67:C3:41:57:C8:97:FC:5A:8D:12:8F:0F:41:A1:90:7B:69:ED
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01863051F5128701BE81A71CF9C36772DE2E
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3Ldnw0FXyJf8Wo0Sjw9BoZB7ae0.roa
Signing time: Wed 08 Feb 2023 09:18:42 +0000
ROA not before: Wed 08 Feb 2023 09:18:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 193.46.210.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.130.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.156.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.74.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.81.0/24 maxlen: 24
5.105.79.0/24 maxlen: 24
5.105.95.0/24 maxlen: 24
5.105.103.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.108.0/24 maxlen: 24
5.105.106.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
5.105.195.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.204.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.214.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.33.0/24 maxlen: 24
5.105.38.0/24 maxlen: 24
5.105.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:30:51:f5:12:87:01:be:81:a7:1c:f9:c3:67:72:de:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Feb 8 09:18:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcb767c34157c897fc5a8d128f0f41a1907b69ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:96:fd:4d:ea:db:74:fd:6a:dd:13:6e:04:2e:
d0:7d:db:ca:8b:54:70:d8:e8:e1:6a:1c:82:73:ad:
03:2f:ee:ff:96:be:2b:24:54:1f:02:26:00:a6:32:
42:fb:f3:1a:2c:fa:19:86:90:cb:c5:45:4b:8b:f7:
6b:c1:45:95:76:62:ae:2d:fc:c0:53:7a:cc:c3:82:
bb:cd:07:87:85:e5:81:0b:6a:c1:97:38:09:82:16:
87:6f:39:48:35:a2:72:20:da:78:6b:69:db:20:63:
81:79:90:7c:4a:f3:6e:ec:05:45:c1:5f:75:ca:40:
f2:e1:2c:1f:66:2f:92:ce:61:8f:30:ec:4a:84:79:
58:66:22:a3:71:76:70:81:95:d2:07:b2:f4:7e:f7:
a7:3d:dc:31:cf:c0:b7:67:e3:e1:d7:0f:0f:56:3b:
47:5a:94:6f:5e:9a:ee:4a:9e:05:05:63:dd:48:19:
43:82:07:20:fb:38:93:76:ec:28:d5:9e:63:05:f9:
bc:5e:c7:e4:d3:9d:c1:af:7b:3c:f8:09:74:44:ab:
77:18:8c:ae:17:c2:80:8c:4e:9a:6a:2f:9c:35:ed:
12:55:1c:ec:6b:ce:71:4b:f0:00:61:5e:c1:04:a2:
4f:d3:e7:ab:bc:5f:11:41:43:71:d7:ce:05:67:49:
55:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B7:67:C3:41:57:C8:97:FC:5A:8D:12:8F:0F:41:A1:90:7B:69:ED
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3Ldnw0FXyJf8Wo0Sjw9BoZB7ae0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.12.0/24
5.105.33.0/24
5.105.38.0/23
5.105.68.0/23
5.105.74.0/24
5.105.79.0/24
5.105.81.0-5.105.82.255
5.105.95.0/24
5.105.103.0/24
5.105.106.0/24
5.105.108.0/24
5.105.112.0/22
5.105.127.0/24
5.105.130.0/24
5.105.138.0/23
5.105.142.0/23
5.105.156.0/24
5.105.162.0/24
5.105.165.0/24
5.105.168.0/24
5.105.172.0/24
5.105.186.0/23
5.105.195.0/24
5.105.197.0-5.105.199.255
5.105.202.0-5.105.204.255
5.105.206.0/23
5.105.214.0/24
5.105.216.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
76:75:39:eb:24:99:54:03:6b:2b:83:eb:41:5a:01:76:6f:e2:
84:8a:38:c8:87:3f:88:c2:46:45:1b:b6:71:09:93:16:50:e6:
cd:84:67:b3:c8:9a:8b:8f:ec:e5:f6:f7:53:64:22:aa:75:7f:
ce:75:dd:56:6e:e2:8b:10:ff:72:63:a2:7e:30:13:12:28:e8:
76:a0:9b:76:8f:7c:51:08:fb:f9:03:97:f0:de:10:6d:6a:a2:
de:86:dc:4b:e3:e0:42:19:df:eb:18:f5:68:94:3b:d6:b9:08:
64:87:14:7c:37:dc:17:41:5a:f6:2f:3a:fb:0c:65:35:e1:41:
cc:1b:3f:cb:c5:14:62:6a:f5:6e:89:ea:2e:81:db:07:d4:75:
a1:17:0b:74:37:c6:39:da:df:1a:e9:6c:27:70:da:ba:d5:0c:
b7:b9:9c:d3:f4:6c:44:c9:26:8f:fb:bc:b8:e2:8c:d8:9c:16:
87:2c:04:6e:b4:48:6f:91:cb:f5:58:db:da:be:12:ab:ef:df:
3f:64:d1:7f:53:71:32:ab:34:5e:44:60:a2:b7:28:e8:7f:32:
32:bc:55:51:50:51:fe:5b:df:ee:6e:f6:1a:1b:d2:d1:50:fb:
87:56:e3:b8:5b:ec:e6:93:a5:22:98:cb:64:d7:55:b4:a9:1a:
93:0f:a0:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:03 2023 by rpki-client on console.sobornost.net