Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/kZ0X0L4njFoL9Ux3-y1Oo53VV28.roa
File: kZ0X0L4njFoL9Ux3-y1Oo53VV28.roa (raw, json)
Hash identifier: R0Bt8Mg/ch23W1VBXT88vyilm61uR4aOtiUTH+7Y9VU=
Subject key identifier: 91:9D:17:D0:BE:27:8C:5A:0B:F5:4C:77:FB:2D:4E:A3:9D:D5:57:6F
Certificate issuer: /CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Certificate serial: 01907880B30CADC5420D312A26325B6D9F8F
Authority key identifier: 42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/kZ0X0L4njFoL9Ux3-y1Oo53VV28.roa
Signing time: Wed 03 Jul 2024 12:10:18 +0000
ROA not before: Wed 03 Jul 2024 12:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49127
IP address blocks: 103.229.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jul 2024 13:38:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:78:80:b3:0c:ad:c5:42:0d:31:2a:26:32:5b:6d:9f:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Validity
Not Before: Jul 3 12:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=919d17d0be278c5a0bf54c77fb2d4ea39dd5576f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2a:1e:48:ea:a1:d5:f5:9a:7c:36:f6:e6:43:
8c:2c:d7:ae:0d:2f:7c:69:ed:83:ce:3a:d8:b6:0e:
24:d3:f8:e1:81:f7:62:9c:c6:52:53:7f:35:5c:dd:
eb:1d:ce:5a:4a:ab:05:ae:cb:98:be:08:78:c9:53:
95:b6:cd:11:9a:fb:6c:25:c2:ca:7a:4b:18:ce:5c:
0f:38:b4:55:ba:c8:06:56:7c:c6:94:69:93:30:6a:
06:a1:45:2e:74:ad:d5:4c:0a:bd:22:af:87:19:05:
5c:22:63:ff:3e:fa:33:63:d0:f0:d9:91:94:81:a2:
16:05:ef:4e:b1:b5:29:cd:61:31:07:28:1d:43:51:
8e:79:4b:ca:ac:29:01:72:ef:c6:6e:6d:5a:55:77:
ae:d1:21:5e:e6:77:e1:89:f2:fe:ef:ef:52:7e:30:
f6:2c:b0:3a:91:eb:e9:fc:0e:e2:fd:97:a6:29:46:
8b:16:31:13:aa:32:38:1e:99:44:02:55:0f:b4:c9:
44:0c:67:99:c1:88:58:01:21:86:c8:16:14:ee:e4:
1c:2b:1d:23:43:16:60:77:18:f1:78:61:8b:0a:44:
ec:ff:81:61:67:11:da:5e:f2:1e:0e:e7:89:3f:de:
0b:e8:9a:14:5b:db:41:ed:7d:78:30:56:b5:7f:c6:
0a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:9D:17:D0:BE:27:8C:5A:0B:F5:4C:77:FB:2D:4E:A3:9D:D5:57:6F
X509v3 Authority Key Identifier:
keyid:42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/kZ0X0L4njFoL9Ux3-y1Oo53VV28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/QpK12ktP_q9yBklRj7qqEMXLKBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.229.81.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:11:62:bc:d0:5f:7d:ac:65:52:d9:0f:fa:86:72:a5:57:ae:
7a:e9:18:5e:1b:ed:27:5b:4d:af:99:8a:1d:e4:4b:09:fb:35:
c0:c6:d6:71:25:98:35:08:0d:4c:a6:26:a2:0b:24:de:82:14:
02:39:27:65:4b:65:4a:ee:77:26:44:af:c2:f3:eb:76:3a:ae:
75:c9:b4:95:4a:01:d9:15:1c:98:bc:ed:ec:55:3b:6f:e5:78:
ec:63:95:f8:f2:c2:89:9f:36:06:2b:76:8a:e6:d7:6f:b4:db:
3d:79:fc:54:c5:80:2d:3a:e8:d3:4d:8d:a9:ad:cd:85:cb:e0:
ce:46:e9:bf:b3:3d:90:04:de:ff:71:ff:22:dd:f1:58:2d:f3:
e0:e3:72:e1:44:a7:00:2c:02:58:4a:df:d7:ac:df:91:a4:06:
e2:e9:49:37:19:97:40:d8:fd:cf:56:6e:82:7d:0a:96:13:fa:
50:9a:3a:7e:95:3b:67:f3:d4:74:5f:75:34:52:11:9e:82:ea:
18:1e:bb:80:e4:1a:87:99:7c:aa:c3:40:1c:13:f7:ff:0f:ae:
c0:47:6e:50:27:b3:33:cd:d6:d3:73:c3:24:e2:99:e9:a0:ce:
a8:61:df:26:86:84:94:09:c5:da:a7:88:07:65:58:3f:12:4f:
cb:88:f9:81
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZB4gLMMrcVCDTEqJjJbbZ+PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyOTJiNWRhNGI0ZmZlYWY3MjA2NDk1MThmYmFhYTEwYzVj
YjI4MTEwHhcNMjQwNzAzMTIxMDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTlkMTdkMGJlMjc4YzVhMGJmNTRjNzdmYjJkNGVhMzlkZDU1NzZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzioeSOqh1fWafDb25kOMLNeuDS98
ae2DzjrYtg4k0/jhgfdinMZSU381XN3rHc5aSqsFrsuYvgh4yVOVts0RmvtsJcLK
eksYzlwPOLRVusgGVnzGlGmTMGoGoUUudK3VTAq9Iq+HGQVcImP/PvozY9Dw2ZGU
gaIWBe9OsbUpzWExBygdQ1GOeUvKrCkBcu/Gbm1aVXeu0SFe5nfhifL+7+9SfjD2
LLA6kevp/A7i/ZemKUaLFjETqjI4HplEAlUPtMlEDGeZwYhYASGGyBYU7uQcKx0j
QxZgdxjxeGGLCkTs/4FhZxHaXvIeDueJP94L6JoUW9tB7X14MFa1f8YKmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJGdF9C+J4xaC/VMd/stTqOd1VdvMB8GA1UdIwQY
MBaAFEKStdpLT/6vcgZJUY+6qhDFyygRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXBLMTJrdFBfcTl5QmtsUmo3cXFFTVhMS0JFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS80NTIyZmItYzFkYS00Y2NjLWE3Yzct
YTA0M2UxYjY3Yjk0LzEva1owWDBMNG5qRm9MOVV4My15MU9vNTNWVjI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS80NTIyZmItYzFkYS00Y2NjLWE3YzctYTA0M2UxYjY3Yjk0
LzEvUXBLMTJrdFBfcTl5QmtsUmo3cXFFTVhMS0JFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+VRMA0G
CSqGSIb3DQEBCwUAA4IBAQCjEWK80F99rGVS2Q/6hnKlV6566RheG+0nW02vmYod
5EsJ+zXAxtZxJZg1CA1MpiaiCyTeghQCOSdlS2VK7ncmRK/C8+t2Oq51ybSVSgHZ
FRyYvO3sVTtv5XjsY5X48sKJnzYGK3aK5tdvtNs9efxUxYAtOujTTY2prc2Fy+DO
Rum/sz2QBN7/cf8i3fFYLfPg43LhRKcALAJYSt/XrN+RpAbi6Uk3GZdA2P3PVm6C
fQqWE/pQmjp+lTtn89R0X3U0UhGeguoYHruA5BqHmXyqw0AcE/f/D67AR25QJ7Mz
zdbTc8Mk4pnpoM6oYd8mhoSUCcXap4gHZVg/Ek/LiPmB
-----END CERTIFICATE-----
Generated at Sun Jul 7 15:14:27 2024 by rpki-client on console-ams.rpki-client.org