Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/U6KpgvhRpUzUc21LgES0mvXakEM.roa
File: U6KpgvhRpUzUc21LgES0mvXakEM.roa (raw, json)
Hash identifier: Aa+3zM2LCVr5t/llWxxiuh8QAOR0Q3LPdE6X2rMnIUw=
Subject key identifier: 53:A2:A9:82:F8:51:A5:4C:D4:73:6D:4B:80:44:B4:9A:F5:DA:90:43
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 0186E998B91B66530E0CD3AA463952F6E6E7
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/U6KpgvhRpUzUc21LgES0mvXakEM.roa
Signing time: Thu 16 Mar 2023 08:45:45 +0000
ROA not before: Thu 16 Mar 2023 08:45:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 103.76.131.0/24 maxlen: 24
103.75.71.0/24 maxlen: 24
45.151.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Apr 2023 11:54:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e9:98:b9:1b:66:53:0e:0c:d3:aa:46:39:52:f6:e6:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Mar 16 08:45:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53a2a982f851a54cd4736d4b8044b49af5da9043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:1d:9d:74:a8:7e:1e:7b:85:de:1e:42:5c:bb:
26:b2:87:d7:5e:2b:ee:df:c1:00:60:8a:e6:12:37:
f5:98:db:fd:e5:5e:d7:34:d4:b6:06:32:f6:c2:66:
90:6a:61:cc:f9:e6:c0:32:2d:ac:56:2b:fc:2b:a0:
e8:71:98:58:a8:52:62:20:e6:8e:d8:7b:f5:a4:73:
13:9e:9b:9b:23:46:63:c8:d3:af:cd:52:ab:1a:74:
49:74:d5:47:dd:49:1f:6f:67:dd:aa:03:8b:e1:ad:
45:0d:10:55:ba:26:bf:72:79:9b:f9:fe:79:32:21:
26:0f:5c:69:11:40:0d:8e:dd:5c:97:32:81:71:e5:
b7:ed:fe:15:ba:cf:75:c8:af:51:5b:5d:75:56:dc:
55:55:91:8d:e6:71:83:c0:d3:cd:77:18:3a:16:b7:
f1:68:ae:78:1d:29:f5:f9:93:d3:22:df:50:7f:4b:
99:e1:f8:49:be:17:67:6d:e6:1b:8e:8f:ef:95:0f:
79:8a:a4:3a:2c:0b:28:f6:5a:8c:34:6b:c3:e9:bf:
84:e3:20:ae:55:11:eb:41:40:49:6d:0e:f7:c1:7a:
f9:cf:9f:29:26:83:bf:48:84:7f:c8:89:a0:ca:ce:
c0:ec:82:e1:95:2a:b5:13:a7:dc:61:41:2f:e1:8b:
54:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A2:A9:82:F8:51:A5:4C:D4:73:6D:4B:80:44:B4:9A:F5:DA:90:43
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/U6KpgvhRpUzUc21LgES0mvXakEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.70.0/24
103.75.71.0/24
103.76.131.0/24
Signature Algorithm: sha256WithRSAEncryption
51:02:39:89:1e:0c:43:02:b4:eb:b1:16:8e:b7:ba:44:1f:43:
ca:40:62:5e:a4:21:a7:d2:d8:10:a8:91:f2:d2:3c:b1:47:b7:
d7:37:63:c9:4a:92:37:5c:bc:c9:d7:87:e2:a1:f8:a1:ec:4f:
70:c4:2b:75:0d:70:0b:8c:9d:6e:a3:2a:13:b1:42:b5:19:00:
b9:02:9c:81:e1:a5:5a:1f:23:b8:f4:29:4e:eb:ee:a9:09:0c:
30:26:84:43:1c:34:d6:86:41:16:17:44:95:5c:dd:dc:87:29:
cb:db:d0:1f:01:e1:98:a2:08:1d:90:44:b0:ff:17:f4:fe:8d:
03:d4:aa:f5:41:ba:62:24:b7:51:2e:7a:c4:b2:d7:e4:71:49:
34:91:3f:ed:70:8b:48:21:b1:14:6f:67:e0:ae:8a:d8:9e:93:
3d:21:24:4f:60:01:09:a5:e9:bb:b7:06:b5:24:3d:1b:98:f7:
d3:d4:02:01:99:c2:c3:7d:fb:15:1b:b2:26:7d:7f:dd:6b:c5:
97:58:db:b2:fb:de:61:6b:04:e1:c6:5e:ad:4a:42:24:98:af:
86:d3:1d:62:1b:11:2c:ef:52:b5:8f:4d:da:54:e0:68:0a:e8:
94:4c:8d:37:9d:78:59:e2:2e:9d:14:ce:28:09:41:8a:35:58:
af:3c:9c:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:03 2024 by rpki-client on console-fra.rpki-client.org