Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/1-2w1YwU4KwtW90wJfcOxA09ywdE.roa
File: 1-2w1YwU4KwtW90wJfcOxA09ywdE.roa (raw, json)
Hash identifier: p1X+SCV6LnzHPQjk+kjWLpoVujFSuJ/3Xr0IAVcsoK8=
Subject key identifier: FB:6C:35:63:05:38:2B:0B:56:F7:4C:09:7D:C3:B1:03:4F:72:C1:D1
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 018F863F93F6588327E6AC2DE7A7DFDDB2FB
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/1-2w1YwU4KwtW90wJfcOxA09ywdE.roa
Signing time: Fri 17 May 2024 11:11:04 +0000
ROA not before: Fri 17 May 2024 11:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216183
IP address blocks: 103.17.98.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 25 Sep 2024 14:08:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:3f:93:f6:58:83:27:e6:ac:2d:e7:a7:df:dd:b2:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: May 17 11:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb6c356305382b0b56f74c097dc3b1034f72c1d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6f:bc:15:7a:79:49:8c:df:65:5e:ed:c5:29:
10:a9:41:92:9a:e4:bb:c1:7e:77:f6:d3:b3:15:46:
98:70:66:5c:52:a5:70:27:3b:d4:da:64:0f:e4:e5:
dc:ca:e6:6f:c2:79:aa:b1:b0:e3:f4:57:ef:d6:0c:
f7:44:3a:40:96:30:a5:f4:09:9c:18:42:fd:b7:85:
2c:34:8c:77:e0:3d:53:b9:6f:94:1e:02:61:85:3a:
60:a3:a3:fb:33:81:bf:58:06:6d:a7:84:1e:99:24:
2b:ee:fe:9b:b5:a7:33:4c:42:c7:4d:ca:a2:7b:07:
25:f1:c8:9a:c9:44:82:63:94:9e:57:3c:78:90:d5:
f2:3e:4f:4d:d5:ef:b2:67:e7:bb:2a:40:cf:74:b3:
bd:e9:d0:8d:7f:74:e9:61:ed:cd:31:da:c3:1a:ba:
c8:1c:25:8e:23:74:92:c5:f7:f6:b2:d4:fe:df:1e:
bd:26:bd:55:f4:e6:e2:34:9d:ac:94:2a:99:94:b5:
05:82:dc:3f:35:72:29:ee:7f:0d:a4:1e:fd:57:8e:
0e:a9:18:4b:18:43:13:9c:f0:4e:24:0c:47:0e:99:
ca:30:3a:23:fe:0d:ff:aa:a4:59:4e:db:00:b4:a7:
e0:0e:ad:67:40:a2:f1:6e:6c:d5:58:c1:59:8a:fc:
4b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:6C:35:63:05:38:2B:0B:56:F7:4C:09:7D:C3:B1:03:4F:72:C1:D1
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/1-2w1YwU4KwtW90wJfcOxA09ywdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.17.98.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:06:c2:2f:fd:aa:61:cb:b5:ba:5a:1a:58:16:ea:02:6a:e6:
db:f9:c4:aa:48:dd:b3:0f:7d:2e:0c:5f:01:0b:6f:ce:f8:14:
5c:3a:3b:fc:71:8c:51:17:a7:ff:11:09:58:eb:4e:cb:87:c2:
9f:26:f4:0a:c0:77:34:c5:67:82:db:52:74:70:be:d1:be:74:
4f:e8:39:6f:4f:b0:a4:ab:11:4f:74:38:d4:50:22:fe:f2:57:
c7:90:37:37:62:81:3a:e9:67:f8:57:b5:e4:59:1c:0a:c3:31:
50:64:fd:76:36:94:5c:f4:05:f3:c0:08:41:c6:7c:d6:62:db:
fd:31:c2:ef:9e:36:99:16:40:13:de:4d:40:23:9f:88:1b:ef:
1d:a6:0b:6e:c4:f3:40:1e:d4:ad:45:6c:06:6d:ad:69:42:59:
ae:76:f7:30:c9:da:e3:bf:cd:2e:f9:38:8c:a0:e9:46:8b:47:
35:72:58:3d:a3:57:b8:e1:8c:3e:6a:b7:59:0e:c2:50:99:67:
83:cf:bd:a5:f5:50:10:e8:46:32:04:5a:6d:35:e9:43:1f:91:
d4:35:95:5e:e5:6c:e1:28:85:fa:0e:cd:b3:19:6f:97:98:c9:
ab:94:30:40:bc:27:6e:eb:12:0d:d4:0d:a2:f8:ca:c5:4f:25:
26:22:a2:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:07 2025 by rpki-client