Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/04ab46-83f3-415b-883a-c7c326d7a364/1/A0ONIgOMjqdFxOqaYTrCynFPufQ.roa
File: A0ONIgOMjqdFxOqaYTrCynFPufQ.roa (raw, json)
Hash identifier: yZsjtYU1W38NaBqL8ECicNnmbsbmbRelPR8qvubpB0w=
Subject key identifier: 03:43:8D:22:03:8C:8E:A7:45:C4:EA:9A:61:3A:C2:CA:71:4F:B9:F4
Certificate issuer: /CN=a4932fa49564a576a6143e45f815668f200d7637
Certificate serial: 018B6B49BB05BC1096DDACC21748085BA014
Authority key identifier: A4:93:2F:A4:95:64:A5:76:A6:14:3E:45:F8:15:66:8F:20:0D:76:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pJMvpJVkpXamFD5F-BVmjyANdjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/04ab46-83f3-415b-883a-c7c326d7a364/1/A0ONIgOMjqdFxOqaYTrCynFPufQ.roa
Signing time: Thu 26 Oct 2023 09:21:15 +0000
ROA not before: Thu 26 Oct 2023 09:21:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200366
IP address blocks: 103.76.166.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6b:49:bb:05:bc:10:96:dd:ac:c2:17:48:08:5b:a0:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4932fa49564a576a6143e45f815668f200d7637
Validity
Not Before: Oct 26 09:21:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03438d22038c8ea745c4ea9a613ac2ca714fb9f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:13:14:47:35:59:29:b5:1a:cd:be:54:50:7a:
63:6d:29:48:41:a3:14:6e:28:83:a3:8b:b2:9e:b3:
6e:39:ca:a1:d3:e7:ab:84:20:df:37:1d:6f:60:a8:
24:c3:55:76:e2:02:6b:77:dd:b6:53:2c:c2:96:47:
23:a3:9a:14:a4:c1:46:b4:58:a3:b0:52:f1:47:54:
0b:9a:35:c7:e0:55:2f:e1:37:e7:e1:4f:b6:1c:25:
42:bb:e1:bc:39:8d:fe:83:f1:24:5b:b2:35:f2:6e:
9c:0a:38:58:38:42:a5:f7:9c:54:71:28:26:4d:bf:
70:37:53:84:b1:28:64:ac:62:81:01:c8:b2:2f:e0:
7f:aa:4a:06:cc:ff:33:6b:64:b9:34:c0:1e:ac:c3:
af:87:b2:e5:1d:e1:7c:fc:24:27:cb:99:ea:c0:6d:
a5:d8:7a:44:e2:ed:1b:4a:b2:84:3b:89:3c:d9:8a:
e0:af:27:bc:0b:1f:95:3e:27:0c:b0:47:49:ce:50:
86:ee:67:82:3e:06:bf:00:fb:fc:1a:5b:30:7a:6a:
c5:78:30:6d:0d:a2:04:22:a5:df:2c:4d:63:c5:2b:
b8:fd:50:4e:eb:3a:17:e6:04:90:af:26:ab:d0:53:
ef:49:8a:d7:71:b5:31:1c:c5:28:d7:70:a0:e1:5d:
d6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:43:8D:22:03:8C:8E:A7:45:C4:EA:9A:61:3A:C2:CA:71:4F:B9:F4
X509v3 Authority Key Identifier:
keyid:A4:93:2F:A4:95:64:A5:76:A6:14:3E:45:F8:15:66:8F:20:0D:76:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pJMvpJVkpXamFD5F-BVmjyANdjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/04ab46-83f3-415b-883a-c7c326d7a364/1/A0ONIgOMjqdFxOqaYTrCynFPufQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/04ab46-83f3-415b-883a-c7c326d7a364/1/pJMvpJVkpXamFD5F-BVmjyANdjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.76.166.0/23
Signature Algorithm: sha256WithRSAEncryption
02:00:6e:06:0f:d0:91:93:77:af:66:89:0a:b7:a7:ae:a3:1e:
07:61:b9:cd:c9:6e:be:c6:38:66:da:3c:4b:5f:a1:32:fe:a5:
49:bc:6d:e6:db:0e:ad:24:54:e0:ce:ec:d4:45:9c:7d:e9:d9:
51:e4:40:9f:91:5e:b3:c2:c8:05:ad:3c:fa:58:6a:75:65:fb:
98:56:c1:e5:65:d8:56:af:9a:49:4c:13:0a:fa:a3:50:1e:1b:
17:77:6c:4a:de:68:2d:38:13:e4:b2:ed:68:4b:59:e6:62:a6:
02:69:bf:77:61:8b:8c:7f:72:91:47:de:df:ef:8d:d6:11:84:
ab:b1:f1:bd:1f:19:88:f8:bd:f0:ff:77:da:51:4e:80:0c:1f:
30:a7:d0:4a:77:c0:f2:e7:4e:22:e0:86:46:39:f1:40:ac:7d:
fc:c7:7d:f1:4d:d6:2b:fd:be:4a:02:b0:5a:03:bd:26:76:fa:
bb:c1:ed:69:91:68:52:bb:43:0a:60:db:e6:a9:db:f0:42:cd:
89:ba:ab:71:1d:fc:e1:0f:45:bf:1f:05:c9:f4:5b:f6:0d:cd:
28:30:95:ad:97:42:9c:48:70:fb:14:ab:bd:ec:59:14:d0:d0:
61:2e:73:c7:ee:05:13:ab:1e:78:d8:04:c2:3a:75:62:7a:84:
df:ab:67:10
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtrSbsFvBCW3azCF0gIW6AUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0OTMyZmE0OTU2NGE1NzZhNjE0M2U0NWY4MTU2NjhmMjAw
ZDc2MzcwHhcNMjMxMDI2MDkyMTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzQzOGQyMjAzOGM4ZWE3NDVjNGVhOWE2MTNhYzJjYTcxNGZiOWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmxMURzVZKbUazb5UUHpjbSlIQaMU
biiDo4uynrNuOcqh0+erhCDfNx1vYKgkw1V24gJrd922UyzClkcjo5oUpMFGtFij
sFLxR1QLmjXH4FUv4Tfn4U+2HCVCu+G8OY3+g/EkW7I18m6cCjhYOEKl95xUcSgm
Tb9wN1OEsShkrGKBAciyL+B/qkoGzP8za2S5NMAerMOvh7LlHeF8/CQny5nqwG2l
2HpE4u0bSrKEO4k82Yrgrye8Cx+VPicMsEdJzlCG7meCPga/APv8GlswemrFeDBt
DaIEIqXfLE1jxSu4/VBO6zoX5gSQryar0FPvSYrXcbUxHMUo13Cg4V3WDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFANDjSIDjI6nRcTqmmE6wspxT7n0MB8GA1UdIwQY
MBaAFKSTL6SVZKV2phQ+RfgVZo8gDXY3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcEpNdnBKVmtwWGFtRkQ1Ri1CVm1qeUFOZGpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8wNGFiNDYtODNmMy00MTViLTg4M2Et
YzdjMzI2ZDdhMzY0LzEvQTBPTklnT01qcWRGeE9xYVlUckN5bkZQdWZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8wNGFiNDYtODNmMy00MTViLTg4M2EtYzdjMzI2ZDdhMzY0
LzEvcEpNdnBKVmtwWGFtRkQ1Ri1CVm1qeUFOZGpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0ymMA0G
CSqGSIb3DQEBCwUAA4IBAQACAG4GD9CRk3evZokKt6euox4HYbnNyW6+xjhm2jxL
X6Ey/qVJvG3m2w6tJFTgzuzURZx96dlR5ECfkV6zwsgFrTz6WGp1ZfuYVsHlZdhW
r5pJTBMK+qNQHhsXd2xK3mgtOBPksu1oS1nmYqYCab93YYuMf3KRR97f743WEYSr
sfG9HxmI+L3w/3faUU6ADB8wp9BKd8Dy504i4IZGOfFArH38x33xTdYr/b5KArBa
A70mdvq7we1pkWhSu0MKYNvmqdvwQs2JuqtxHfzhD0W/HwXJ9Fv2Dc0oMJWtl0Kc
SHD7FKu97FkU0NBhLnPH7gUTqx542ATCOnVieoTfq2cQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:00 2024 by rpki-client on console-ams.rpki-client.org