Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/_utC3Pcaiuods6YBmwb3fFIrgxA.roa
File: _utC3Pcaiuods6YBmwb3fFIrgxA.roa (raw, json)
Hash identifier: MBTfHdOImXadhWff2qVlrBKTlziXHDge/wDp4OsBmpU=
Subject key identifier: FE:EB:42:DC:F7:1A:8A:EA:1D:B3:A6:01:9B:06:F7:7C:52:2B:83:10
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 01856BDCA149A973160F15FC4CBC947A33CB
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/_utC3Pcaiuods6YBmwb3fFIrgxA.roa
Signing time: Sun 01 Jan 2023 05:44:59 +0000
ROA not before: Sun 01 Jan 2023 05:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 103.76.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Feb 2023 10:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:a1:49:a9:73:16:0f:15:fc:4c:bc:94:7a:33:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jan 1 05:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=feeb42dcf71a8aea1db3a6019b06f77c522b8310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e6:9e:b4:6a:fb:0c:8b:e4:2b:10:bd:97:ed:
6f:99:46:3c:16:23:0c:f2:a9:c1:1e:67:b5:80:74:
b8:82:30:3e:6c:03:76:d4:c5:2c:8f:47:f9:5e:07:
75:23:8b:ca:bf:27:7d:b6:27:3e:5f:30:0c:8d:9c:
ee:f3:96:47:fd:02:6d:ee:f9:e3:05:43:4a:89:c4:
a7:a5:63:e1:00:ab:30:09:3e:16:98:c7:95:93:2a:
7a:b9:7b:92:1d:71:02:d5:36:03:9d:ac:57:39:b9:
fa:30:1c:e5:50:c1:7c:82:cc:eb:21:ee:a2:53:f1:
6d:81:cf:a1:27:5c:b5:27:a2:7e:c2:bb:7d:ec:0a:
5a:04:e9:cb:cf:7a:16:85:58:7b:4b:93:94:12:83:
0b:34:b0:78:b6:50:0b:56:d1:81:66:fe:55:13:90:
9b:5a:6e:ad:29:76:46:35:10:a5:34:40:27:b9:69:
99:1d:ac:0c:a1:6d:78:51:6d:21:05:19:d1:8f:2a:
29:a5:b0:66:04:fd:5e:7f:38:64:ed:d8:d2:ce:96:
8e:0b:2f:32:ac:af:ee:ea:66:e7:e1:a5:ac:bb:4f:
d6:a0:1c:74:a1:4e:20:c6:87:95:75:24:cf:35:fc:
2c:94:ad:f6:59:6f:bf:bb:7c:dd:ea:14:6e:27:66:
9e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:EB:42:DC:F7:1A:8A:EA:1D:B3:A6:01:9B:06:F7:7C:52:2B:83:10
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/_utC3Pcaiuods6YBmwb3fFIrgxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.76.128.0/24
Signature Algorithm: sha256WithRSAEncryption
33:d7:98:94:2d:25:fc:cc:be:2d:f2:bb:7a:74:2f:ca:92:66:
1a:4c:04:4b:04:72:e6:9f:b1:81:c4:b0:b4:18:8a:09:7f:2b:
2a:88:44:d9:f1:ad:e3:ae:9e:27:52:ae:3a:32:b3:f4:98:91:
7a:81:43:68:f1:45:9e:88:88:55:7a:36:53:0f:6d:3b:3f:b1:
7d:c0:5a:23:f5:55:c7:28:f9:15:50:f2:ea:47:a8:40:83:02:
eb:9f:91:e1:74:c2:69:d9:0c:e1:9e:34:6c:56:a5:d9:43:1c:
7a:49:8a:73:41:5a:bb:f0:3d:e2:41:48:93:e9:db:73:43:0d:
6a:c0:f6:b8:35:a7:e0:ce:7c:d3:08:c3:89:9b:c0:ed:79:71:
d0:79:66:64:23:ba:8b:e4:45:dc:2a:3a:d3:03:92:78:3a:79:
a8:f1:0d:87:58:f3:56:9f:da:33:14:63:79:16:14:3f:a6:73:
5f:4e:05:6d:21:55:c5:f9:26:cb:f8:3b:55:dd:5a:3f:03:85:
e1:83:9c:a6:1b:04:b7:09:75:72:90:76:ce:b5:57:30:ba:4b:
5c:fe:dd:70:14:57:ba:bd:81:0f:6a:90:a2:ce:db:cf:e1:54:
7c:79:69:7b:9f:b1:b8:d6:43:59:2b:db:5a:82:ba:f6:55:fe:
08:22:cc:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:03 2024 by rpki-client on console-fra.rpki-client.org