Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/dgdvhjUzX--gE0sTy5p0lYGceIk.roa
File: dgdvhjUzX--gE0sTy5p0lYGceIk.roa (raw, json)
Hash identifier: 5aBCxyCgQyYD2ewMvpHITXzYfhULizkYstm9wIByPHo=
Subject key identifier: 76:07:6F:86:35:33:5F:EF:A0:13:4B:13:CB:9A:74:95:81:9C:78:89
Certificate issuer: /CN=3ad734cf90c773428806b968209515b914831a9d
Certificate serial: 018F487E21BB49451CA0F32F4017251D9E81
Authority key identifier: 3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/dgdvhjUzX--gE0sTy5p0lYGceIk.roa
Signing time: Sun 05 May 2024 11:22:56 +0000
ROA not before: Sun 05 May 2024 11:22:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 103.69.224.0/24 maxlen: 24
103.69.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 07:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:48:7e:21:bb:49:45:1c:a0:f3:2f:40:17:25:1d:9e:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad734cf90c773428806b968209515b914831a9d
Validity
Not Before: May 5 11:22:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76076f8635335fefa0134b13cb9a7495819c7889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6c:76:55:06:39:18:78:40:37:a6:bf:9f:b4:
88:23:90:ab:96:cc:57:02:5b:e6:9c:80:86:aa:16:
71:37:82:17:f0:f7:6f:eb:f0:3d:09:71:34:76:77:
10:55:06:88:76:07:ca:d4:ef:18:6f:a3:76:fe:38:
84:cf:ea:87:ce:22:1e:14:ef:be:dd:2d:fe:a4:22:
a9:e1:64:1a:7c:73:c2:6c:be:06:b6:db:fb:de:62:
43:e1:3f:65:4f:04:3d:88:c7:42:f9:d9:76:20:4f:
fd:b9:b5:52:ec:42:d8:4e:08:1e:08:c9:5c:92:90:
d0:e7:c1:21:98:11:c3:23:0e:f7:6a:d6:4f:7d:c7:
86:51:92:7e:78:d2:2b:50:ad:93:0f:28:71:c0:3b:
68:dc:f5:40:ba:00:0f:0e:ad:55:21:ef:87:1d:e3:
ee:92:75:75:42:3f:5a:b4:8b:05:93:89:a5:3c:df:
40:5f:a0:1f:3d:a6:04:81:3c:58:58:db:d5:4d:09:
45:f7:af:c3:b2:45:4a:b7:14:c3:00:d0:ae:32:44:
30:76:3c:5e:3f:14:16:89:f9:0e:b1:7d:78:56:01:
e3:f3:f0:5c:e6:c7:8c:90:07:79:f9:66:a6:26:66:
21:0e:eb:ea:ba:bf:29:57:6e:c6:86:1d:06:00:fb:
a9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:07:6F:86:35:33:5F:EF:A0:13:4B:13:CB:9A:74:95:81:9C:78:89
X509v3 Authority Key Identifier:
keyid:3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/dgdvhjUzX--gE0sTy5p0lYGceIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.69.224.0/24
103.69.227.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:d3:4e:c4:ea:9f:a1:17:ca:56:3b:6d:40:3f:d4:f4:38:2b:
a6:aa:17:97:4e:b9:dd:6d:95:24:5f:2f:94:56:82:f6:09:d5:
22:f0:1f:9f:32:ae:69:e2:3e:69:cb:9d:9c:72:2a:c7:69:ac:
8d:3d:4a:4d:3e:11:59:a0:e6:36:2d:b9:35:ff:20:0d:4c:74:
f5:ca:09:a1:c0:28:5a:25:c4:fb:f0:f4:c1:c1:b7:1a:07:9d:
89:00:61:cd:d1:9d:9b:e8:8d:fe:2b:fd:8b:3f:6b:f5:b7:a0:
8a:5a:d3:c9:c3:01:fd:39:13:d3:37:83:19:8a:ef:de:f2:16:
f4:7f:8e:67:7e:71:f2:6f:42:9c:06:fb:fc:93:bf:c6:85:6a:
56:2b:e6:87:63:9c:d8:74:c3:0b:f2:14:e0:72:c1:1f:a7:5e:
ff:9f:11:bd:54:7e:e0:8c:fc:d1:c9:17:dc:b2:34:e1:fe:62:
0f:2d:c6:a3:cf:ed:01:1e:cb:67:22:0c:2a:70:d0:30:f4:ac:
71:ce:de:9c:45:c3:1a:d9:2d:e7:df:c8:37:01:72:1d:c3:7f:
49:26:94:bf:74:4d:68:e8:05:ec:e7:55:9d:e5:42:a9:30:2a:
e6:30:b9:1a:c9:b6:4b:a2:ed:94:c4:0d:5e:e7:1e:33:86:2c:
dc:59:7c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:00 2024 by rpki-client on console-fra.rpki-client.org