Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/yGa-D1rwQ4XaHaFWFAL4pRy1gWk.roa
File: yGa-D1rwQ4XaHaFWFAL4pRy1gWk.roa (raw, json)
Hash identifier: eSpXUIPozNLNRVQwiD9gv2FpouEbsDOO/tD8jnkgsfs=
Subject key identifier: C8:66:BE:0F:5A:F0:43:85:DA:1D:A1:56:14:02:F8:A5:1C:B5:81:69
Certificate issuer: /CN=75e05bc21b2a6f1033711ffca6491c6c30ce5a4a
Certificate serial: 01856C01064431690A057CE92F09074CE641
Authority key identifier: 75:E0:5B:C2:1B:2A:6F:10:33:71:1F:FC:A6:49:1C:6C:30:CE:5A:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/deBbwhsqbxAzcR_8pkkcbDDOWko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/yGa-D1rwQ4XaHaFWFAL4pRy1gWk.roa
Signing time: Sun 01 Jan 2023 06:24:44 +0000
ROA not before: Sun 01 Jan 2023 06:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198198
IP address blocks: 103.244.236.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:06:44:31:69:0a:05:7c:e9:2f:09:07:4c:e6:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75e05bc21b2a6f1033711ffca6491c6c30ce5a4a
Validity
Not Before: Jan 1 06:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c866be0f5af04385da1da1561402f8a51cb58169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:db:9b:1c:8d:d4:e4:fa:81:21:81:bc:e9:ec:
7a:bb:30:f5:3a:40:a7:1c:67:db:63:fb:17:46:ca:
a7:3e:5b:00:54:87:bd:b6:53:bb:61:7b:51:ac:33:
6d:cf:cc:13:41:d8:ec:2d:b3:8a:5e:31:d9:cd:04:
f3:7e:6d:36:c1:b7:ac:3b:9b:0e:84:a6:cd:f7:36:
64:9a:af:62:9e:5c:dd:ad:54:d8:b6:c4:48:a2:c8:
6c:64:92:93:eb:3a:b0:4f:67:e1:01:82:6d:96:3f:
26:09:6a:62:5c:00:66:9b:ad:c1:f7:17:4e:7b:98:
69:d7:19:d3:ce:6a:14:e6:4c:5e:36:ec:1b:2e:3f:
b5:f8:ae:e2:b5:48:11:a5:a4:fd:2d:a7:18:12:c1:
a4:99:6a:13:a3:6c:42:12:41:57:68:d5:f9:07:73:
ea:28:eb:88:17:39:cc:fd:6c:bf:c6:26:17:8e:5c:
4f:b3:31:f0:24:a9:63:ed:ed:f5:35:3d:09:8e:e7:
63:26:43:0f:76:9b:6a:33:f8:d0:2d:16:ca:ed:d5:
0f:5c:79:a3:43:e5:f9:e5:a3:c3:35:dc:54:12:6c:
fc:ad:16:f5:6a:48:9d:75:c3:cc:0e:28:ef:d4:30:
f7:08:d6:2e:3a:41:c9:b9:75:94:c5:08:fd:99:68:
4a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:66:BE:0F:5A:F0:43:85:DA:1D:A1:56:14:02:F8:A5:1C:B5:81:69
X509v3 Authority Key Identifier:
keyid:75:E0:5B:C2:1B:2A:6F:10:33:71:1F:FC:A6:49:1C:6C:30:CE:5A:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/deBbwhsqbxAzcR_8pkkcbDDOWko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/yGa-D1rwQ4XaHaFWFAL4pRy1gWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/deBbwhsqbxAzcR_8pkkcbDDOWko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.244.236.0/22
Signature Algorithm: sha256WithRSAEncryption
56:2b:bd:13:4a:17:98:63:ff:48:d7:11:70:99:4b:b4:1d:39:
59:bf:7c:04:91:96:de:08:fc:8f:26:cc:b5:75:f5:1a:a9:6b:
09:2b:50:c0:15:80:f1:f0:6f:93:34:24:bb:43:b2:55:eb:2e:
a0:cf:46:34:a5:92:4e:8e:fb:2b:7e:32:bc:18:f4:96:ae:4c:
ba:d0:57:37:f8:31:a8:e7:d5:b9:cd:60:e4:06:28:f2:b0:6d:
e6:44:e1:8d:cc:57:e9:a4:49:7c:17:b6:d7:0c:1e:e8:e0:77:
39:0f:98:ed:cc:8a:ac:37:f3:94:c1:4b:fe:1a:52:d9:7c:9c:
34:84:63:07:3f:d2:03:4d:86:0a:3e:30:b3:d3:7e:f7:6e:56:
7c:c4:e5:86:cd:f6:d8:2d:dd:7c:47:11:e7:50:e3:da:5d:87:
6d:5b:b9:ab:b6:cb:97:30:03:bc:92:59:60:5f:fe:cc:4f:1a:
c4:f1:3a:5a:f5:b5:2d:fd:ca:cc:10:69:f3:16:5c:c1:cc:79:
80:e3:21:6e:17:09:32:de:29:ad:ca:84:a1:7d:e3:39:5a:80:
be:01:00:b2:b2:df:b3:15:7b:3c:03:2c:2e:6a:85:1a:e9:cb:
3d:3c:c0:cb:b2:d6:cc:f5:7b:4d:e1:39:f2:80:d0:56:fd:65:
bf:76:6b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:58 2024 by rpki-client on console-ams.rpki-client.org