Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/9U6U_SALcT0-P4LkNi9MsFOZryI.roa
File: 9U6U_SALcT0-P4LkNi9MsFOZryI.roa (raw, json)
Hash identifier: 7aPlMis5kabkYoMBJy/+un3IPV3fJYOpbX7l85oWOqY=
Subject key identifier: F5:4E:94:FD:20:0B:71:3D:3E:3F:82:E4:36:2F:4C:B0:53:99:AF:22
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01892010A097DB0BB42C90F9432C68098839
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/9U6U_SALcT0-P4LkNi9MsFOZryI.roa
Signing time: Tue 04 Jul 2023 08:41:47 +0000
ROA not before: Tue 04 Jul 2023 08:41:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 5.105.124.0/24 maxlen: 24
5.105.128.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.157.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.75.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.102.0/24 maxlen: 24
5.105.118.0/24 maxlen: 24
5.105.117.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.228.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
193.46.210.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.200.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.215.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.22.0/24 maxlen: 24
5.105.21.0/24 maxlen: 24
5.105.18.0/24 maxlen: 24
5.105.36.0/24 maxlen: 24
5.105.47.0/24 maxlen: 24
5.105.45.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.3.0/24 maxlen: 24
5.105.7.0/24 maxlen: 24
5.105.5.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:10:a0:97:db:0b:b4:2c:90:f9:43:2c:68:09:88:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jul 4 08:41:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f54e94fd200b713d3e3f82e4362f4cb05399af22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1f:76:0a:b3:c6:a7:04:4d:01:fd:89:a7:ab:
7c:0a:cf:b2:a8:23:c2:3e:6f:2d:36:1f:1d:18:18:
16:a1:c5:3c:70:bd:0f:75:17:ee:92:6e:67:36:cb:
1e:b8:57:99:5b:bf:9f:57:c7:34:00:eb:1f:16:80:
c9:24:ce:15:41:2d:d7:97:95:97:d3:76:cc:00:56:
f4:4b:d1:ee:97:a9:c8:9f:b0:0b:97:f7:c6:b2:08:
ae:27:43:cb:05:79:7b:22:1f:ea:4c:01:8d:ac:17:
f1:9b:94:c8:7d:24:fe:86:23:aa:2c:6c:0a:7e:0f:
15:b6:37:fa:5b:69:11:59:55:6d:18:08:26:74:3f:
5a:50:73:8b:1c:8a:45:43:87:e7:20:d3:74:90:04:
05:d4:c7:bc:6a:8a:ad:ab:3c:df:00:7b:ef:54:41:
cd:de:f5:68:6a:b1:df:d8:17:7b:70:25:b7:bd:bc:
22:3d:94:70:64:ce:c5:10:07:f2:e6:51:35:8b:80:
c1:69:72:ef:9a:18:61:3c:1b:58:a9:36:c9:46:37:
e8:26:3f:06:25:a5:4c:f2:28:dc:c0:a6:d4:72:40:
96:49:35:7d:a0:e0:e5:ae:e0:28:c6:11:63:bc:53:
56:20:1a:b2:0f:05:06:3d:99:c8:d3:eb:01:79:ce:
9c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:4E:94:FD:20:0B:71:3D:3E:3F:82:E4:36:2F:4C:B0:53:99:AF:22
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/9U6U_SALcT0-P4LkNi9MsFOZryI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.3.0/24
5.105.5.0/24
5.105.7.0/24
5.105.18.0/24
5.105.21.0-5.105.22.255
5.105.36.0/24
5.105.45.0/24
5.105.47.0/24
5.105.63.0/24
5.105.75.0/24
5.105.94.0/24
5.105.102.0/24
5.105.113.0/24
5.105.117.0-5.105.118.255
5.105.124.0/24
5.105.127.0-5.105.128.255
5.105.157.0/24
5.105.162.0/24
5.105.170.0/24
5.105.186.0/23
5.105.198.0-5.105.200.255
5.105.202.0/23
5.105.206.0/24
5.105.215.0-5.105.216.255
5.105.218.0/24
5.105.228.0/23
5.105.239.0-5.105.240.255
5.105.244.0/23
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
44:2e:65:3d:d3:a9:0c:35:4b:a6:83:ad:e8:e2:ab:5d:88:5e:
d4:44:78:5d:a7:67:1b:71:ac:2b:43:15:ac:b5:2c:a9:f1:90:
00:bf:e6:35:4b:dc:da:5d:28:02:1f:f7:72:9a:5b:df:29:48:
5e:c2:83:63:d6:93:8a:b9:0b:f1:74:3f:52:89:49:08:17:d5:
99:ea:aa:01:4d:79:d3:9e:cd:54:45:7e:9e:bc:ba:2c:27:66:
47:86:92:92:42:a1:53:d2:1c:37:39:71:e7:8f:06:14:e8:7e:
02:59:62:28:0d:33:63:f7:9f:9e:31:50:d2:9e:37:3f:80:c2:
81:0d:e6:78:b4:22:29:14:bd:22:1f:4a:ec:6a:d5:5e:24:8f:
2a:e8:aa:a6:34:b8:85:84:1a:44:1c:59:36:ed:b8:92:71:bd:
2e:57:07:b5:9e:66:cf:4e:2f:f0:07:99:d8:7a:64:2c:cd:33:
4a:61:bf:d8:35:59:8c:13:77:94:ed:3c:76:ac:3d:03:26:dc:
87:ad:e9:43:94:f3:fc:bb:56:59:fc:5e:cb:b3:30:fd:43:68:
b9:9f:bf:af:e2:ce:49:66:e9:e2:39:2c:69:bc:b0:85:ce:7a:
2b:66:25:2f:b6:9b:24:c8:1b:f5:b9:e7:cf:74:15:c6:51:a6:
16:0f:35:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:03 2023 by rpki-client on console.sobornost.net