Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/a8Hex-34wPXykmb73OTXCdQZHB4.roa
File: a8Hex-34wPXykmb73OTXCdQZHB4.roa (raw, json)
Hash identifier: VsFvuX7i9LTV6q9zvJVZZXDvH6gE/g2mpO7Rh9Q3REo=
Subject key identifier: 6B:C1:DE:C7:ED:F8:C0:F5:F2:92:66:FB:DC:E4:D7:09:D4:19:1C:1E
Certificate issuer: /CN=3ad734cf90c773428806b968209515b914831a9d
Certificate serial: 0190B5083CDD03F2AD602A891014D9FFA9A1
Authority key identifier: 3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/a8Hex-34wPXykmb73OTXCdQZHB4.roa
Signing time: Mon 15 Jul 2024 06:15:34 +0000
ROA not before: Mon 15 Jul 2024 06:15:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215567
IP address blocks: 103.69.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 06:59:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b5:08:3c:dd:03:f2:ad:60:2a:89:10:14:d9:ff:a9:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad734cf90c773428806b968209515b914831a9d
Validity
Not Before: Jul 15 06:15:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bc1dec7edf8c0f5f29266fbdce4d709d4191c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3a:80:4d:b2:38:a4:f9:04:cb:4f:ef:a6:03:
da:ee:70:e2:31:70:ed:06:11:18:76:b1:b4:17:c1:
e2:34:33:1a:a7:fc:a5:a1:42:f9:cf:6c:0b:9a:28:
75:72:f0:8a:1d:bd:48:cd:67:90:95:1b:63:4e:8a:
90:a9:55:eb:40:ca:7b:c9:5f:a6:f4:39:e0:fa:af:
df:ab:20:31:2a:46:07:a6:c7:b7:91:b1:b3:8f:6d:
98:30:3f:16:fd:ca:c2:11:d3:c1:a8:07:bf:9a:81:
00:ca:d3:68:f0:14:c7:d8:88:42:2c:e0:63:91:01:
3a:5f:7d:83:a4:cb:53:d7:d4:3b:1a:28:ee:d3:08:
62:6b:23:9c:06:f6:ce:6c:4e:73:1b:b6:54:61:ef:
fe:23:99:61:6b:71:91:7b:cc:0e:d1:b0:81:61:3f:
e6:70:e1:1b:ee:34:52:39:7f:c7:68:55:57:d3:da:
cd:50:23:d4:18:b9:1d:ef:d8:8e:79:65:7d:f3:90:
e0:52:45:58:ea:64:11:58:97:47:d0:6e:ee:7a:cc:
cd:6d:8b:69:70:24:5d:99:94:ee:59:69:a6:6b:1e:
7d:77:ea:98:2d:dd:f9:04:6c:ef:96:32:72:55:a3:
6f:8d:ec:20:94:54:19:80:f5:62:d2:4a:6c:d8:d4:
44:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C1:DE:C7:ED:F8:C0:F5:F2:92:66:FB:DC:E4:D7:09:D4:19:1C:1E
X509v3 Authority Key Identifier:
keyid:3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/a8Hex-34wPXykmb73OTXCdQZHB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.69.227.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:fb:bb:fc:7f:9d:ee:83:46:66:a4:72:b7:53:b8:5b:1c:6c:
df:5d:14:4f:10:2d:7a:93:bd:70:ee:27:e0:03:00:47:b7:15:
10:1f:c6:38:c8:f4:4f:20:ab:cc:20:5a:2d:5d:c9:78:48:cb:
46:62:b1:02:bb:e5:97:0c:6e:81:36:3a:41:48:55:77:57:22:
d7:c5:58:fe:93:b1:22:6f:26:88:3a:0a:b4:9b:77:4f:91:8b:
74:89:08:90:68:b2:81:46:71:ff:d9:6f:9e:a4:d8:9c:d4:97:
36:17:0b:0b:07:5a:45:7e:6c:18:ea:c5:19:2d:fe:ab:bf:e5:
6b:b5:91:5e:39:15:cd:9b:76:5f:c5:71:8d:7b:2e:05:cb:de:
d2:62:e8:d6:c7:18:fe:88:30:53:de:c9:98:83:41:35:59:cf:
94:aa:68:47:be:06:6a:bc:66:2b:e9:0e:29:ca:0b:9f:9a:43:
ac:67:c8:80:f2:ba:9a:36:0d:e2:1b:fc:e6:e2:3d:b5:76:4d:
46:45:16:44:60:39:6a:b9:90:c8:9a:f5:d5:12:09:10:51:30:
5c:c2:af:27:26:22:0f:19:50:0f:d9:e9:39:3f:b0:b6:19:26:
48:92:73:6b:5f:e0:4e:f2:c4:eb:9a:d7:e3:17:42:be:bc:fc:
69:b7:f1:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 09:26:23 2024 by rpki-client on console-ams.rpki-client.org