Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/qt5yJdxcBeNqcQ8Eb_8AlN9_X-s.roa
File: qt5yJdxcBeNqcQ8Eb_8AlN9_X-s.roa (raw, json)
Hash identifier: UiXzWe+TUNgrZzXG/YW2nr2mV3KzIUseEJGS5z4norE=
Subject key identifier: AA:DE:72:25:DC:5C:05:E3:6A:71:0F:04:6F:FF:00:94:DF:7F:5F:EB
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 018691D8E0667511F5CEEA394A08FD4832D8
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/qt5yJdxcBeNqcQ8Eb_8AlN9_X-s.roa
Signing time: Mon 27 Feb 2023 07:49:14 +0000
ROA not before: Mon 27 Feb 2023 07:49:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211804
IP address blocks: 103.76.128.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:91:d8:e0:66:75:11:f5:ce:ea:39:4a:08:fd:48:32:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Feb 27 07:49:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aade7225dc5c05e36a710f046fff0094df7f5feb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d7:35:11:d7:f3:16:cd:02:ce:dd:48:47:60:
46:03:a2:9b:8c:ad:b8:6c:26:99:78:37:66:2d:b4:
28:5f:33:ca:e2:05:a9:a8:fa:17:4f:ed:f2:9b:6c:
27:e0:c5:82:e3:bb:94:00:7e:24:11:27:28:5c:c7:
2b:83:64:52:25:88:31:98:07:20:3a:1e:fa:86:3a:
00:7f:b6:41:f7:4d:6a:90:a6:99:03:32:5a:0b:cf:
bf:b2:b8:cf:a7:fe:6b:5d:0f:2f:66:70:2a:82:d7:
56:09:03:c5:86:bc:3e:93:62:41:37:cf:19:6c:db:
4a:20:24:85:58:2f:d2:a1:ed:c9:9d:39:2a:f9:3d:
4f:28:32:95:55:dc:9e:51:d0:7f:1d:93:47:bb:2e:
8d:14:cc:ed:8c:10:e2:d2:58:8b:92:3e:77:d5:ab:
a8:0b:c5:fa:9b:5f:a6:72:c8:c1:bb:63:97:dc:38:
79:2f:6b:1f:bf:a2:d7:f4:5d:7a:8b:d2:11:c3:75:
59:fa:b7:24:95:97:0e:01:a6:4b:3d:e4:94:7d:bf:
ef:5f:fc:49:85:d1:29:39:01:3c:b4:c4:db:de:f9:
6a:5c:10:94:ed:f9:3c:05:0b:79:72:8c:e9:53:f5:
af:c9:9c:9c:79:56:93:35:e5:80:78:ea:2b:e6:07:
a1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DE:72:25:DC:5C:05:E3:6A:71:0F:04:6F:FF:00:94:DF:7F:5F:EB
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/qt5yJdxcBeNqcQ8Eb_8AlN9_X-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.76.128.0/24
Signature Algorithm: sha256WithRSAEncryption
24:0e:03:fc:a9:e2:0b:84:c5:8d:de:c2:6e:44:c0:63:40:fb:
ce:0f:f9:06:42:ad:91:b5:55:ee:ca:a6:a2:65:5e:4b:66:9d:
e4:82:0d:eb:e0:6b:a7:f6:2a:44:76:16:c7:44:89:07:fa:34:
58:72:60:1a:46:2f:17:ae:57:72:b8:29:06:14:61:21:4a:31:
4e:b1:87:49:4d:46:5a:83:0f:0b:dc:98:70:e3:b3:d2:c3:67:
0b:1d:10:58:36:ac:ec:08:46:88:0b:23:64:3a:ae:ec:ba:8c:
fd:3b:9a:12:a5:73:f2:68:b0:ea:93:58:73:67:fa:c5:26:39:
1a:eb:bc:48:42:e6:33:93:05:a0:49:db:28:26:f2:d4:26:37:
00:98:cd:e6:f5:96:81:45:19:62:84:25:48:01:20:3d:68:04:
bb:8a:76:31:f6:95:7a:b1:71:83:f4:8f:57:78:52:37:b6:56:
cc:ac:3a:74:51:22:80:fa:dd:32:9f:e8:ef:d0:2c:88:2f:45:
6f:94:83:c5:a4:24:f8:59:35:14:68:7b:eb:19:62:d2:68:18:
6a:af:73:04:c7:3e:a8:33:91:65:df:d6:f2:23:04:3c:ab:db:
8f:2c:59:05:56:7e:43:0f:76:00:6b:7f:5f:45:37:46:89:0b:
ee:be:82:c2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYaR2OBmdRH1zuo5Sgj9SDLYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjODkyYWVkMzgzM2U2MTAwZjVlMGNmMTIyNzFmZDgwYjc1
NWMzNjEwHhcNMjMwMjI3MDc0OTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWRlNzIyNWRjNWMwNWUzNmE3MTBmMDQ2ZmZmMDA5NGRmN2Y1ZmViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAidc1EdfzFs0Czt1IR2BGA6KbjK24
bCaZeDdmLbQoXzPK4gWpqPoXT+3ym2wn4MWC47uUAH4kEScoXMcrg2RSJYgxmAcg
Oh76hjoAf7ZB901qkKaZAzJaC8+/srjPp/5rXQ8vZnAqgtdWCQPFhrw+k2JBN88Z
bNtKICSFWC/Soe3JnTkq+T1PKDKVVdyeUdB/HZNHuy6NFMztjBDi0liLkj531auo
C8X6m1+mcsjBu2OX3Dh5L2sfv6LX9F16i9IRw3VZ+rcklZcOAaZLPeSUfb/vX/xJ
hdEpOQE8tMTb3vlqXBCU7fk8BQt5cozpU/WvyZyceVaTNeWAeOor5gehOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKreciXcXAXjanEPBG//AJTff1/rMB8GA1UdIwQY
MBaAFFyJKu04M+YQD14M8SJx/YC3VcNhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2Ut
M2FhN2RhYTlkM2VjLzEvcXQ1eUpkeGNCZU5xY1E4RWJfOEFsTjlfWC1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2UtM2FhN2RhYTlkM2Vj
LzEvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0yAMA0G
CSqGSIb3DQEBCwUAA4IBAQAkDgP8qeILhMWN3sJuRMBjQPvOD/kGQq2RtVXuyqai
ZV5LZp3kgg3r4Gun9ipEdhbHRIkH+jRYcmAaRi8XrldyuCkGFGEhSjFOsYdJTUZa
gw8L3Jhw47PSw2cLHRBYNqzsCEaICyNkOq7suoz9O5oSpXPyaLDqk1hzZ/rFJjka
67xIQuYzkwWgSdsoJvLUJjcAmM3m9ZaBRRlihCVIASA9aAS7inYx9pV6sXGD9I9X
eFI3tlbMrDp0USKA+t0yn+jv0CyIL0VvlIPFpCT4WTUUaHvrGWLSaBhqr3MExz6o
M5Fl39byIwQ8q9uPLFkFVn5DD3YAa39fRTdGiQvuvoLC
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:56 2024 by rpki-client on console-fra.rpki-client.org