Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/lWYwAX1Pr1hsmoSMWOGjErWblhE.roa
File: lWYwAX1Pr1hsmoSMWOGjErWblhE.roa (raw, json)
Hash identifier: /C0txPP/9Wu2NvCgUw3fDqx1ttRacpfhVAzrWk3jmek=
Subject key identifier: 95:66:30:01:7D:4F:AF:58:6C:9A:84:8C:58:E1:A3:12:B5:9B:96:11
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 01856F94D5D48FF0051967E9B8C00D20F41D
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/lWYwAX1Pr1hsmoSMWOGjErWblhE.roa
Signing time: Sun 01 Jan 2023 23:05:02 +0000
ROA not before: Sun 01 Jan 2023 23:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 103.35.56.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:d5:d4:8f:f0:05:19:67:e9:b8:c0:0d:20:f4:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jan 1 23:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=956630017d4faf586c9a848c58e1a312b59b9611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e6:3c:e8:a5:9b:8c:71:aa:5c:f9:89:70:03:
cc:ae:cb:6e:f0:74:13:c0:0a:56:92:91:ed:99:4f:
1f:c9:df:47:dd:ef:1c:78:8f:91:25:c3:64:de:bd:
5e:e7:d5:1a:e3:a8:eb:e8:c6:fb:fa:0f:8e:1a:76:
53:e3:40:dd:6a:c3:4f:27:8d:c7:23:15:e3:ac:b9:
f6:a9:15:f7:76:ee:5f:da:f0:2a:ae:0f:3d:a0:06:
03:9b:77:55:79:e0:98:83:73:09:b9:83:e8:4a:ec:
0c:b9:c9:7b:2f:60:bd:7b:0a:7b:6c:40:07:64:eb:
e1:1c:2d:45:42:fe:30:0e:64:98:65:7e:90:88:67:
8c:55:8a:7e:5e:be:17:2d:4a:12:00:88:d3:08:39:
a1:d1:24:78:b7:44:f7:40:f7:b3:ee:fc:bc:46:11:
04:3a:0d:6b:03:c8:d9:de:56:c8:ed:83:37:b8:f0:
01:a5:1c:b9:cd:4a:c4:31:d0:7e:c0:1f:5a:9d:c3:
4f:31:9b:7d:87:be:49:34:6c:c5:6e:a2:8c:d8:be:
a3:f0:1d:2b:64:33:17:af:97:67:bf:73:b5:57:97:
de:b9:25:b7:f9:d7:75:bc:38:dd:93:54:7d:94:b8:
14:3b:d5:00:ba:1f:f3:dc:d8:79:cc:7f:b6:1b:02:
39:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:66:30:01:7D:4F:AF:58:6C:9A:84:8C:58:E1:A3:12:B5:9B:96:11
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/lWYwAX1Pr1hsmoSMWOGjErWblhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.35.56.0/22
Signature Algorithm: sha256WithRSAEncryption
20:e7:e4:8f:14:d2:6c:81:6b:f8:68:db:77:60:1e:52:2a:f1:
9d:35:2b:07:d5:be:84:0f:8a:c2:b3:6a:99:f2:9f:47:b6:f4:
0e:86:69:67:36:e3:96:7d:8a:01:c6:5c:5f:3d:09:77:51:57:
44:df:8d:b0:68:4d:8c:ce:ee:06:91:bd:51:4d:5d:b1:fc:e0:
e9:ba:0b:b2:dd:6c:7c:3e:9c:3b:a6:42:c7:c8:48:1c:57:39:
89:4f:c8:a1:a6:63:97:e7:b8:ff:af:0c:08:12:c4:4a:d9:ac:
45:08:c9:2e:73:e8:68:01:e4:e0:8e:d4:53:dd:bf:f7:49:c6:
5a:05:41:a4:f0:76:b7:8b:5b:1f:33:b8:5d:14:14:a8:d2:ff:
67:45:15:10:14:e5:dc:a2:c6:3e:b1:f6:ea:c0:a2:e6:8c:8e:
74:96:71:9d:68:c7:5d:f9:53:51:ea:19:1d:c4:1d:01:9d:1a:
ee:6a:b7:21:e7:e0:29:4d:b5:ae:81:cb:29:bf:83:d6:57:ff:
02:77:b4:13:b9:bd:7c:78:a0:b3:57:f4:a7:3b:b8:6c:bd:a5:
6f:50:ef:53:75:8b:86:15:15:bd:5a:97:f1:ec:d7:3d:d1:c3:
0f:2e:1f:8e:9a:69:00:2f:d5:3f:35:0d:26:69:7e:f0:ab:a0:
7c:3a:19:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvlNXUj/AFGWfpuMANIPQdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NTRjMzQ3ZDY4ZDE1NDkzZGU3MWJiOTYyZjBhNTY3ZTEz
NGQ2MDMwHhcNMjMwMTAxMjMwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTY2MzAwMTdkNGZhZjU4NmM5YTg0OGM1OGUxYTMxMmI1OWI5NjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+Y86KWbjHGqXPmJcAPMrstu8HQT
wApWkpHtmU8fyd9H3e8ceI+RJcNk3r1e59Ua46jr6Mb7+g+OGnZT40DdasNPJ43H
IxXjrLn2qRX3du5f2vAqrg89oAYDm3dVeeCYg3MJuYPoSuwMucl7L2C9ewp7bEAH
ZOvhHC1FQv4wDmSYZX6QiGeMVYp+Xr4XLUoSAIjTCDmh0SR4t0T3QPez7vy8RhEE
Og1rA8jZ3lbI7YM3uPABpRy5zUrEMdB+wB9ancNPMZt9h75JNGzFbqKM2L6j8B0r
ZDMXr5dnv3O1V5feuSW3+dd1vDjdk1R9lLgUO9UAuh/z3Nh5zH+2GwI5UQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJVmMAF9T69YbJqEjFjhoxK1m5YRMB8GA1UdIwQY
MBaAFOdUw0fWjRVJPecbuWLwpWfhNNYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTFURFI5YU5GVWs5NXh1NVl2Q2xaLUUwMWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80NmRiM2EtYTU3My00ZjI4LWI0M2It
MzdiNjJkMjIzOTI0LzEvbFdZd0FYMVByMWhzbW9TTVdPR2pFcldibGhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80NmRiM2EtYTU3My00ZjI4LWI0M2ItMzdiNjJkMjIzOTI0
LzEvNTFURFI5YU5GVWs5NXh1NVl2Q2xaLUUwMWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZyM4MA0G
CSqGSIb3DQEBCwUAA4IBAQAg5+SPFNJsgWv4aNt3YB5SKvGdNSsH1b6ED4rCs2qZ
8p9HtvQOhmlnNuOWfYoBxlxfPQl3UVdE342waE2Mzu4Gkb1RTV2x/ODpuguy3Wx8
Ppw7pkLHyEgcVzmJT8ihpmOX57j/rwwIEsRK2axFCMkuc+hoAeTgjtRT3b/3ScZa
BUGk8Ha3i1sfM7hdFBSo0v9nRRUQFOXcosY+sfbqwKLmjI50lnGdaMdd+VNR6hkd
xB0BnRruarch5+ApTbWugcspv4PWV/8Cd7QTub18eKCzV/SnO7hsvaVvUO9TdYuG
FRW9Wpfx7Nc90cMPLh+OmmkAL9U/NQ0maX7wq6B8Ohmc
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:14 2023 by rpki-client on console-ams.rpki-client.org