Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/DhF1JyrGSn1KGxo7hheZptOD0jQ.roa
File: DhF1JyrGSn1KGxo7hheZptOD0jQ.roa (raw, json)
Hash identifier: Mud/vRDW4uVvHwYwZJH+TBUPqKekqW9tPEqju6zTypM=
Subject key identifier: 0E:11:75:27:2A:C6:4A:7D:4A:1B:1A:3B:86:17:99:A6:D3:83:D2:34
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0188D9902A619EB882F6D69F4881EACE3A3A
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/DhF1JyrGSn1KGxo7hheZptOD0jQ.roa
Signing time: Tue 20 Jun 2023 16:08:03 +0000
ROA not before: Tue 20 Jun 2023 16:08:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49304
IP address blocks: 103.25.84.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Jul 2023 15:44:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d9:90:2a:61:9e:b8:82:f6:d6:9f:48:81:ea:ce:3a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 20 16:08:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e1175272ac64a7d4a1b1a3b861799a6d383d234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:6a:d7:7e:2e:2a:32:ad:87:6d:86:cd:f8:41:
d8:8a:8c:42:2e:0f:7d:cb:7a:3e:26:55:24:c2:f5:
19:83:b8:c3:04:02:5b:01:6f:d9:eb:e7:8f:74:30:
2e:63:5e:0e:db:e3:cd:08:0e:05:3f:00:c5:6a:9c:
75:e0:0a:41:c3:a2:0c:06:9e:64:53:f2:31:2c:71:
b9:be:03:a5:fa:82:42:df:e1:cd:76:e0:32:c1:bc:
43:bb:db:f3:84:9a:83:e3:2e:d3:c1:ff:cf:40:9a:
86:98:cf:f8:53:c0:26:52:e6:ac:09:8a:11:9d:44:
63:f7:1e:1f:e4:9c:58:d1:99:f1:ac:d4:7a:87:cf:
8f:8e:de:95:54:9e:71:9b:8d:6d:02:d9:b3:be:c9:
a2:4f:99:7a:35:ff:9e:b3:60:01:fd:69:ac:c2:45:
0f:c4:f3:ad:3e:11:ae:c3:4e:99:52:08:ea:3f:49:
6c:62:e3:18:7d:85:54:8d:70:7a:23:07:65:51:f1:
59:50:bb:e4:7e:e4:4c:3a:b8:02:a0:10:1f:53:24:
8e:5f:b4:f4:f8:1e:8b:0e:02:51:91:c7:b1:d9:cd:
c7:48:ec:ca:a6:17:f4:e5:cd:0d:d9:9a:4d:ae:f6:
ce:fa:c3:97:05:26:f5:ca:dc:cf:b3:92:a3:63:1c:
e5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:11:75:27:2A:C6:4A:7D:4A:1B:1A:3B:86:17:99:A6:D3:83:D2:34
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/DhF1JyrGSn1KGxo7hheZptOD0jQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.25.84.0/22
Signature Algorithm: sha256WithRSAEncryption
da:41:e7:52:b0:b9:ad:bb:6c:a9:19:e4:bb:57:d4:c3:14:92:
ee:3a:db:e3:8a:8e:fb:13:aa:c6:88:e9:89:d0:a3:e6:e9:87:
4f:a7:21:5c:e6:26:be:03:1d:1b:bb:b4:25:76:ee:0b:2e:20:
93:e2:e2:a1:59:b0:9d:37:74:2a:73:12:bc:98:d7:13:ed:31:
64:79:0f:fb:ac:84:19:da:e9:a0:99:ea:ba:f5:e4:cd:05:c6:
5b:ce:33:be:56:57:d9:68:4d:0b:28:07:f8:7b:35:87:9d:2f:
5c:06:89:99:ed:f7:b2:d7:56:85:ca:27:13:02:aa:05:97:6b:
dc:bd:b8:a5:84:79:8e:1e:fa:bc:d4:fd:c1:b3:a3:c9:57:29:
c3:a9:17:27:03:32:a0:a3:a9:eb:23:17:13:3e:00:a1:6a:50:
f7:33:26:5f:41:7c:ea:ce:74:4d:08:3d:72:39:8e:2e:30:70:
30:eb:58:97:56:24:c2:ef:45:54:06:14:9b:65:2c:34:bd:c0:
3a:02:29:29:61:d7:51:b9:52:eb:a3:ce:0a:93:de:ec:99:e0:
72:54:b0:44:52:2b:c1:d4:a8:f1:c1:83:5f:2e:b7:1a:6d:26:
71:aa:c6:42:36:40:24:6d:f2:58:c3:0e:1d:22:84:ea:43:ba:
6a:ad:a8:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:15 2024 by rpki-client on console-ams.rpki-client.org