Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/ZSjh0GnYsqjeLQoYJyFdJBVDaiQ.roa
File: ZSjh0GnYsqjeLQoYJyFdJBVDaiQ.roa (raw, json)
Hash identifier: rTKiaWKeJGjscKcas3rbe4lFAfemiKpaUmTwiGUVBts=
Subject key identifier: 65:28:E1:D0:69:D8:B2:A8:DE:2D:0A:18:27:21:5D:24:15:43:6A:24
Certificate issuer: /CN=3ad734cf90c773428806b968209515b914831a9d
Certificate serial: 01900B06D14C47DE45EA15B556D070AB648E
Authority key identifier: 3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/ZSjh0GnYsqjeLQoYJyFdJBVDaiQ.roa
Signing time: Wed 12 Jun 2024 05:58:34 +0000
ROA not before: Wed 12 Jun 2024 05:58:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 103.69.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 10:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:0b:06:d1:4c:47:de:45:ea:15:b5:56:d0:70:ab:64:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad734cf90c773428806b968209515b914831a9d
Validity
Not Before: Jun 12 05:58:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6528e1d069d8b2a8de2d0a1827215d2415436a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:00:1d:f9:b8:c1:4f:59:21:98:5b:3b:b9:f3:
c5:4c:76:89:98:44:f3:d9:0c:38:77:1d:5d:dc:72:
ce:82:3f:ac:a7:0b:69:e0:d6:8d:2c:8e:39:6f:ca:
0f:19:9c:ef:6f:50:36:f8:2e:12:6e:02:01:bb:89:
1b:ee:89:a9:fe:96:af:57:26:7c:f2:b2:93:a9:e0:
f9:f6:23:04:2b:05:8b:92:c2:c8:0c:98:08:0e:c8:
8f:ae:cf:cf:65:9b:cd:6b:cf:20:98:a8:69:09:9f:
01:73:dd:cd:73:75:d3:a8:f7:48:08:e4:ae:ac:a6:
5e:2c:5e:f1:29:0a:28:10:82:09:b5:a7:a5:de:c6:
4d:80:d1:3d:41:bf:95:14:a3:43:3c:e7:df:5e:78:
61:ce:18:a4:a7:df:66:6d:ba:fc:6a:d1:ce:3f:9a:
3f:bf:26:09:57:e9:31:69:74:8d:2a:67:d1:4d:22:
07:8e:0f:47:12:a5:a3:dd:dd:9a:11:af:7c:55:64:
a8:51:5b:66:ee:df:69:3e:8c:cd:74:d8:d4:12:d4:
02:fe:87:79:9a:1f:bd:88:7e:33:5e:6d:da:0c:8b:
16:8e:5d:c2:bd:fb:43:2f:2d:d8:56:79:dd:e3:89:
5f:d2:20:71:a8:fb:e1:0e:fe:33:a7:0b:0c:40:1b:
8c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:28:E1:D0:69:D8:B2:A8:DE:2D:0A:18:27:21:5D:24:15:43:6A:24
X509v3 Authority Key Identifier:
keyid:3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/ZSjh0GnYsqjeLQoYJyFdJBVDaiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.69.227.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:04:03:7b:ec:b0:f1:cf:77:ca:c8:68:f0:66:c9:81:3b:96:
fb:c5:d3:5d:83:3c:f9:f4:19:63:e2:25:ac:a6:64:bd:22:ce:
f9:a0:86:35:46:41:93:f5:12:f1:51:98:c5:72:68:a7:1e:06:
aa:59:f5:a5:6d:f4:5a:a0:be:3d:7d:fe:8f:49:7d:85:c8:69:
8f:f2:fe:d5:84:4b:13:61:c5:68:a6:5c:35:7e:66:1d:1a:64:
dd:d6:9c:5c:72:b7:bd:2f:24:a4:ea:c2:ff:80:96:7d:7f:fc:
38:94:e9:56:ac:60:ae:c9:ec:3a:31:cd:bd:3c:52:06:d2:af:
6e:42:01:59:1f:02:a9:f6:e7:e0:a5:50:f6:e3:7e:77:92:88:
23:ae:bf:a3:db:20:cd:35:67:c0:1e:92:9b:78:ac:a0:eb:35:
c9:e2:f4:2f:9d:09:73:51:b3:e0:d2:18:54:3a:aa:91:fb:a0:
b6:f9:fb:ab:c8:67:fe:bc:c9:7d:39:de:4b:8f:d9:8c:86:4c:
26:37:88:01:37:58:c2:ae:fb:bb:13:bc:06:b9:83:95:64:8a:
25:eb:1a:45:c7:1d:ee:b6:2e:64:76:2f:9e:ef:c5:69:38:16:
9c:06:18:77:7a:97:f3:70:2c:5e:57:37:1a:78:d9:d5:79:e0:
ce:ba:b5:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZALBtFMR95F6hW1VtBwq2SOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZDczNGNmOTBjNzczNDI4ODA2Yjk2ODIwOTUxNWI5MTQ4
MzFhOWQwHhcNMjQwNjEyMDU1ODM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTI4ZTFkMDY5ZDhiMmE4ZGUyZDBhMTgyNzIxNWQyNDE1NDM2YTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyAAd+bjBT1khmFs7ufPFTHaJmETz
2Qw4dx1d3HLOgj+spwtp4NaNLI45b8oPGZzvb1A2+C4SbgIBu4kb7omp/pavVyZ8
8rKTqeD59iMEKwWLksLIDJgIDsiPrs/PZZvNa88gmKhpCZ8Bc93Nc3XTqPdICOSu
rKZeLF7xKQooEIIJtael3sZNgNE9Qb+VFKNDPOffXnhhzhikp99mbbr8atHOP5o/
vyYJV+kxaXSNKmfRTSIHjg9HEqWj3d2aEa98VWSoUVtm7t9pPozNdNjUEtQC/od5
mh+9iH4zXm3aDIsWjl3CvftDLy3YVnnd44lf0iBxqPvhDv4zpwsMQBuMmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGUo4dBp2LKo3i0KGCchXSQVQ2okMB8GA1UdIwQY
MBaAFDrXNM+Qx3NCiAa5aCCVFbkUgxqdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3RjMHo1REhjMEtJQnJsb0lKVVZ1UlNER3AwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9lYmYzODEtMDBjOC00ODBkLWE2NmMt
NzZhMWQ0ZDgzMTk3LzEvWlNqaDBHbllzcWplTFFvWUp5RmRKQlZEYWlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS9lYmYzODEtMDBjOC00ODBkLWE2NmMtNzZhMWQ0ZDgzMTk3
LzEvT3RjMHo1REhjMEtJQnJsb0lKVVZ1UlNER3AwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0XjMA0G
CSqGSIb3DQEBCwUAA4IBAQANBAN77LDxz3fKyGjwZsmBO5b7xdNdgzz59Blj4iWs
pmS9Is75oIY1RkGT9RLxUZjFcminHgaqWfWlbfRaoL49ff6PSX2FyGmP8v7VhEsT
YcVoplw1fmYdGmTd1pxccre9LySk6sL/gJZ9f/w4lOlWrGCuyew6Mc29PFIG0q9u
QgFZHwKp9ufgpVD24353kogjrr+j2yDNNWfAHpKbeKyg6zXJ4vQvnQlzUbPg0hhU
OqqR+6C2+furyGf+vMl9Od5Lj9mMhkwmN4gBN1jCrvu7E7wGuYOVZIol6xpFxx3u
ti5kdi+e78VpOBacBhh3epfzcCxeVzcaeNnVeeDOurWf
-----END CERTIFICATE-----
Generated at Fri Jul 12 12:56:43 2024 by rpki-client on console-ams.rpki-client.org