Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PeOAkUbF1vTd1WddQDf4PkI3HBA.roa
File: PeOAkUbF1vTd1WddQDf4PkI3HBA.roa (raw, json)
Hash identifier: 1VZcuKpXilOI7BRHylenrliZjlxYbkWMlnSf95AiEG4=
Subject key identifier: 3D:E3:80:91:46:C5:D6:F4:DD:D5:67:5D:40:37:F8:3E:42:37:1C:10
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018B927BE957EA15F41B706FB2457A155FBD
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PeOAkUbF1vTd1WddQDf4PkI3HBA.roa
Signing time: Fri 03 Nov 2023 00:01:16 +0000
ROA not before: Fri 03 Nov 2023 00:01:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216415
IP address blocks: 103.25.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:92:7b:e9:57:ea:15:f4:1b:70:6f:b2:45:7a:15:5f:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Nov 3 00:01:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3de3809146c5d6f4ddd5675d4037f83e42371c10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d2:43:74:83:f2:33:ab:5f:d1:fe:f6:a9:1d:
74:cf:71:d0:5a:92:8f:a0:73:c6:99:86:6c:0a:4c:
33:34:31:a2:5d:6d:8c:30:df:04:92:f2:91:d0:8c:
c6:0b:9a:14:4c:2c:13:90:87:d0:82:23:25:7b:09:
21:c3:34:c3:28:ec:d4:1c:c3:65:7a:72:30:ec:65:
64:d7:80:9b:9a:3d:8e:dd:e1:b4:18:2b:db:ad:25:
52:bf:b1:be:c4:e8:c6:a0:bd:b3:7b:33:d3:2d:58:
96:73:92:d5:55:18:0b:cf:1d:20:4c:90:c4:ba:99:
d0:0f:9c:c9:8d:ac:33:4d:77:84:ea:3c:8a:47:39:
f1:56:f6:6a:f1:13:77:ae:be:04:47:ab:19:d3:81:
ad:19:8f:9d:a4:42:96:4a:6e:06:57:f9:9c:98:e9:
70:a4:ab:55:48:ca:b8:68:24:86:4a:eb:e1:6c:0d:
4a:a3:1d:5a:9d:e8:65:2f:85:d9:11:4f:73:5a:3a:
3d:39:92:d4:50:12:b2:3d:5b:5a:6b:9c:37:2e:1f:
c1:c0:45:d3:be:e7:6f:bb:56:6a:69:c7:08:80:72:
6b:17:06:4f:53:f1:9c:5f:05:b8:d5:c3:07:a3:13:
30:cd:08:69:47:37:d4:51:71:fe:c6:de:47:41:2f:
39:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E3:80:91:46:C5:D6:F4:DD:D5:67:5D:40:37:F8:3E:42:37:1C:10
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PeOAkUbF1vTd1WddQDf4PkI3HBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.25.85.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:48:e3:b5:17:63:80:ea:bc:d3:c8:f3:42:8c:99:2f:da:01:
84:7d:b9:ad:19:63:6e:1f:ef:f9:2c:bb:6b:34:0f:f1:ca:3a:
5a:82:e6:a8:04:6b:f1:8d:07:44:b6:5c:70:2f:a6:19:71:30:
28:9f:4e:5b:59:4c:53:19:d1:62:54:d5:a5:0c:0e:61:87:74:
b2:ae:7c:94:ad:30:5a:77:a2:84:b4:52:52:35:93:49:a4:9f:
ca:64:59:4c:07:26:5e:c4:c3:a5:43:2c:7c:8e:aa:d9:fc:7c:
3f:48:be:50:76:d3:9d:d9:d9:63:de:48:32:84:5e:63:b8:ac:
e1:96:0c:ab:24:6d:e9:d7:d9:c9:57:a2:0e:38:39:46:f6:29:
df:84:74:ab:55:fa:1d:e2:05:6e:d7:62:af:80:0c:50:68:d7:
ec:d3:56:68:09:5c:77:af:09:f4:98:ca:ec:69:ee:81:25:bd:
a9:75:9f:75:fa:7c:9d:bd:25:c7:34:b5:94:c3:59:f4:0e:e1:
1b:d8:43:35:a1:d0:ed:a4:56:4a:ac:af:47:23:7e:79:18:1d:
bb:90:ca:1b:9d:8f:ce:9d:b2:5a:32:65:30:db:6c:6f:cf:be:
6d:e8:54:5f:8c:5e:04:28:f9:05:b5:24:af:d8:16:15:9c:59:
6e:0c:19:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:16 2024 by rpki-client on console-ams.rpki-client.org