Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/badQMi2QBbxYKZlJce39Fz7XbNI.roa
File: badQMi2QBbxYKZlJce39Fz7XbNI.roa (raw, json)
Hash identifier: n4TnsM+n5vEntGveDZWzyt3RjtvGSECMbT9UAxFnYSM=
Subject key identifier: 6D:A7:50:32:2D:90:05:BC:58:29:99:49:71:ED:FD:17:3E:D7:6C:D2
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 018A889FE4507017957A6ACD943DE30C5200
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/badQMi2QBbxYKZlJce39Fz7XbNI.roa
Signing time: Tue 12 Sep 2023 09:01:34 +0000
ROA not before: Tue 12 Sep 2023 09:01:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399073
IP address blocks: 103.75.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 10:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:88:9f:e4:50:70:17:95:7a:6a:cd:94:3d:e3:0c:52:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Sep 12 09:01:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6da750322d9005bc5829994971edfd173ed76cd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4a:0b:c8:a0:bc:01:70:b5:cb:41:4f:66:88:
55:34:33:60:d8:ca:b6:ea:34:9e:a0:61:d4:9e:03:
c4:48:13:eb:8e:81:88:48:d2:a6:05:a9:38:bf:a6:
11:3c:ff:03:78:72:64:65:98:7b:eb:ab:c5:64:16:
a8:3b:68:71:ac:03:59:db:e1:87:bb:04:12:c9:bf:
d7:fb:d4:84:9b:6c:9d:49:7e:16:bb:88:64:51:9d:
4e:eb:89:f9:79:ba:e8:65:21:6c:62:98:68:80:5e:
07:cf:cd:c6:b1:79:8e:56:b5:53:c2:c2:a7:0b:2c:
e3:f8:bf:12:df:b4:ab:1d:88:c1:e2:62:a4:44:a0:
e9:9f:89:15:8d:33:26:1d:16:d5:10:68:6f:b1:79:
84:e4:54:d5:51:69:d4:40:b6:b7:26:07:1d:87:32:
70:c7:99:7a:b1:9c:7e:12:ad:e9:90:bc:3f:5b:8f:
cd:c2:2e:3d:c0:cf:f4:10:71:63:ad:54:5f:02:5e:
47:cf:14:59:37:e9:ea:dd:d6:ad:ad:b5:6e:bb:7e:
bb:b3:4c:47:8e:23:e5:d4:fe:93:96:c6:5f:e1:d1:
62:60:e6:01:68:58:71:f8:7c:c8:15:31:a8:c1:9c:
85:74:fe:83:0d:d8:1b:db:72:58:b8:76:f6:bb:54:
6f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A7:50:32:2D:90:05:BC:58:29:99:49:71:ED:FD:17:3E:D7:6C:D2
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/badQMi2QBbxYKZlJce39Fz7XbNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.75.69.0/24
Signature Algorithm: sha256WithRSAEncryption
88:b8:eb:97:be:80:1b:6c:39:96:e1:a3:3c:3d:e3:97:7d:16:
6a:55:ea:d9:a5:8f:5c:5b:29:ed:77:85:20:8d:7b:53:62:28:
b2:04:c9:b4:8f:71:ce:96:a2:77:64:63:a2:3d:fe:c6:a4:41:
44:0f:5d:ef:c0:5d:88:8e:a9:87:61:b7:14:62:8b:eb:cd:5f:
ee:66:a7:4c:fe:7a:f6:cb:f4:a2:8d:3d:fc:3a:c4:6c:3c:59:
db:ba:ed:dc:7a:9c:1d:a5:16:93:69:46:b7:01:4f:cc:da:e2:
be:cd:a3:ce:44:32:64:00:a8:46:3c:76:a5:12:1a:b7:63:c0:
24:b1:fe:52:b5:9a:2f:fb:4e:90:bc:46:d8:fd:3a:1a:8a:2d:
39:8e:33:5c:f4:d0:c9:fc:e6:55:8e:f2:23:14:61:c9:a1:b3:
ce:7f:bd:f9:46:9b:bb:2e:fa:f9:2e:8b:28:6d:4d:bd:1a:5d:
25:c4:ec:fd:3f:7b:40:c8:37:ee:13:1a:80:cf:52:13:9b:50:
c7:ab:38:8b:43:1c:f7:82:b3:bf:3d:20:20:9b:23:fa:27:9b:
33:ac:ed:d5:3b:16:32:ad:4a:12:3e:27:84:a0:e4:08:2f:a5:
31:1d:fd:d8:58:60:cb:b6:15:f4:e2:ee:94:65:94:42:67:54:
e4:36:c4:29
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqIn+RQcBeVemrNlD3jDFIAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjODkyYWVkMzgzM2U2MTAwZjVlMGNmMTIyNzFmZDgwYjc1
NWMzNjEwHhcNMjMwOTEyMDkwMTM0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZGE3NTAzMjJkOTAwNWJjNTgyOTk5NDk3MWVkZmQxNzNlZDc2Y2QyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskoLyKC8AXC1y0FPZohVNDNg2Mq2
6jSeoGHUngPESBPrjoGISNKmBak4v6YRPP8DeHJkZZh766vFZBaoO2hxrANZ2+GH
uwQSyb/X+9SEm2ydSX4Wu4hkUZ1O64n5ebroZSFsYphogF4Hz83GsXmOVrVTwsKn
Cyzj+L8S37SrHYjB4mKkRKDpn4kVjTMmHRbVEGhvsXmE5FTVUWnUQLa3JgcdhzJw
x5l6sZx+Eq3pkLw/W4/Nwi49wM/0EHFjrVRfAl5HzxRZN+nq3datrbVuu367s0xH
jiPl1P6TlsZf4dFiYOYBaFhx+HzIFTGowZyFdP6DDdgb23JYuHb2u1RvzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG2nUDItkAW8WCmZSXHt/Rc+12zSMB8GA1UdIwQY
MBaAFFyJKu04M+YQD14M8SJx/YC3VcNhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2Ut
M2FhN2RhYTlkM2VjLzEvYmFkUU1pMlFCYnhZS1psSmNlMzlGejdYYk5JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2UtM2FhN2RhYTlkM2Vj
LzEvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0tFMA0G
CSqGSIb3DQEBCwUAA4IBAQCIuOuXvoAbbDmW4aM8PeOXfRZqVerZpY9cWyntd4Ug
jXtTYiiyBMm0j3HOlqJ3ZGOiPf7GpEFED13vwF2IjqmHYbcUYovrzV/uZqdM/nr2
y/SijT38OsRsPFnbuu3cepwdpRaTaUa3AU/M2uK+zaPORDJkAKhGPHalEhq3Y8Ak
sf5StZov+06QvEbY/Toaii05jjNc9NDJ/OZVjvIjFGHJobPOf735Rpu7Lvr5Loso
bU29Gl0lxOz9P3tAyDfuExqAz1ITm1DHqziLQxz3grO/PSAgmyP6J5szrO3VOxYy
rUoSPieEoOQIL6UxHf3YWGDLthX04u6UZZRCZ1TkNsQp
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:37 2024 by rpki-client on console-ams.rpki-client.org