Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313432303436.roa
File: 3130332e3234342e3136332e302f32342d3234203d3e20313432303436.roa (raw, json)
Hash identifier: YJD0JcFbLew5SatIrcZvpEZDDkOl3PKtVZn3Xm0iQTU=
Subject key identifier: 62:2C:98:00:98:AC:E8:AA:23:AD:64:31:0C:46:18:00:46:CF:AA:4F
Certificate issuer: /CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9
Certificate serial: 070A4614780C3E5E6FBB6574A37E0271084FC284
Authority key identifier: 70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer
Subject info access: rsync://rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313432303436.roa
Signing time: Wed 17 Jul 2024 04:55:00 +0000
ROA not before: Wed 17 Jul 2024 04:50:00 +0000
ROA not after: Wed 16 Jul 2025 04:55:00 +0000
asID: 142046
IP address blocks: 103.244.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Oct 2024 15:05:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:0a:46:14:78:0c:3e:5e:6f:bb:65:74:a3:7e:02:71:08:4f:c2:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9
Validity
Not Before: Jul 17 04:50:00 2024 GMT
Not After : Jul 16 04:55:00 2025 GMT
Subject: CN=622C980098ACE8AA23AD64310C46180046CFAA4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:94:75:ca:30:0f:c1:8c:f0:f8:4f:ee:fe:9b:
f8:88:f2:94:26:f9:49:02:98:b1:5c:e1:be:9e:54:
bc:c2:49:02:5b:7d:f5:50:cb:08:bd:75:bd:2b:5e:
d1:ed:e3:10:32:9b:31:2a:59:3e:b5:17:65:15:ce:
66:58:6a:36:cb:01:d4:92:4a:b5:c8:1b:89:c3:13:
3b:5f:23:a6:ee:c3:e9:8a:06:6d:0e:4a:bc:e7:88:
2a:a7:23:c2:4c:74:6a:25:a7:73:db:1b:24:25:e4:
a2:89:7d:e8:1f:9c:68:d7:ce:05:cf:d4:17:d3:cc:
c2:cd:f1:0d:54:93:e5:bc:d9:24:18:e0:82:35:8c:
10:eb:ab:ad:d6:da:c6:0f:ee:e6:86:0f:3b:c1:18:
e7:67:e7:e5:25:a3:61:eb:f3:01:c8:db:e4:ee:8c:
79:2a:16:32:6a:3f:40:c9:11:d1:a7:96:85:f8:42:
58:7f:9f:cc:c1:5f:52:cb:45:7a:b8:09:71:2a:85:
17:c6:e4:ab:bd:9d:2c:af:96:1b:04:e3:4a:c9:ff:
51:37:4b:8b:55:47:60:3e:fd:63:d1:bf:34:59:52:
bd:7f:64:51:6f:cc:9b:50:0c:94:9a:a1:76:03:77:
d2:8a:3c:3b:da:25:30:11:9e:fa:e2:e0:98:34:01:
a0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:2C:98:00:98:AC:E8:AA:23:AD:64:31:0C:46:18:00:46:CF:AA:4F
X509v3 Authority Key Identifier:
keyid:70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313432303436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.244.163.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:4d:f5:7d:fe:7b:fa:60:69:3c:51:7d:c9:3c:2d:fd:d5:d2:
72:79:cb:47:24:93:6f:be:a5:0f:f4:f8:5c:08:f7:9a:95:14:
8f:1d:66:4b:8f:b5:fc:e6:5d:78:b5:21:15:ed:e1:bb:6c:6a:
0e:39:f2:bf:28:58:4e:1a:c6:8f:63:33:46:57:31:89:1b:7d:
ab:ff:46:4b:fc:5e:f5:15:7a:22:e7:22:6a:bc:1b:88:b9:fd:
df:38:23:34:6f:27:01:02:9d:8f:ff:f1:1f:83:2b:21:5c:18:
b4:55:c5:db:d2:6b:6e:68:17:42:aa:f7:6b:24:36:ca:a8:66:
5a:dc:92:8c:84:aa:55:df:c2:cd:0a:63:32:fb:0e:47:33:b7:
b7:33:25:74:1f:b7:4d:b5:68:e5:1e:1a:4f:f6:ef:61:90:1a:
cc:e6:a6:b8:69:54:71:e3:43:55:ee:04:0c:80:07:04:7f:45:
73:e1:3b:e4:7d:76:a1:e0:fc:66:39:df:5c:ea:d1:8d:bf:f1:
e1:a6:85:d1:a6:c8:70:77:81:f3:ce:f2:4c:8a:f4:91:6e:bd:
fd:8e:55:c3:42:12:fc:54:3b:b2:0a:aa:0c:34:2d:a1:b8:95:
a7:fd:a7:1f:84:7d:43:fd:33:fd:91:52:a0:47:b3:b1:d3:ff:
d9:31:f4:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 8 22:29:11 2024 by rpki-client on console-ams.rpki-client.org