Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/5yM6qxGy-fGlHNo70vhpzwbHsAo.roa
File: 5yM6qxGy-fGlHNo70vhpzwbHsAo.roa (raw, json)
Hash identifier: DoIXYUoESIYbP9SyAVtEIHorRCctBQlaC4d6+rX9Dx4=
Subject key identifier: E7:23:3A:AB:11:B2:F9:F1:A5:1C:DA:3B:D2:F8:69:CF:06:C7:B0:0A
Certificate issuer: /CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Certificate serial: 01931D483EEC64F3813D6899ED4198E41813
Authority key identifier: E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/5yM6qxGy-fGlHNo70vhpzwbHsAo.roa
Signing time: Mon 11 Nov 2024 22:11:34 +0000
ROA not before: Mon 11 Nov 2024 22:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201364
IP address blocks: 103.83.87.0/24 maxlen: 24
2a0b:9800::/32 maxlen: 32
2a0b:9801::/32 maxlen: 32
2a0b:9802::/32 maxlen: 32
2a0b:9803::/32 maxlen: 32
2a0b:9804::/32 maxlen: 32
2a0b:9805::/32 maxlen: 32
2a0b:9806::/32 maxlen: 32
2a0b:9807::/32 maxlen: 32
2a0f:3380::/32 maxlen: 32
2a0f:3381::/32 maxlen: 32
2a0f:3382::/32 maxlen: 32
2a0f:3383::/32 maxlen: 32
2a0f:3384::/32 maxlen: 32
2a0f:3385::/32 maxlen: 32
2a0f:3386::/32 maxlen: 32
2a0f:3387::/32 maxlen: 32
2a14:4080::/29 maxlen: 29
2a14:4080::/32 maxlen: 32
2a14:4081::/32 maxlen: 32
2a14:4082::/32 maxlen: 32
2a14:4083::/32 maxlen: 32
2a14:4084::/32 maxlen: 32
2a14:4085::/32 maxlen: 32
2a14:4086::/32 maxlen: 32
2a14:4087::/32 maxlen: 32
2a14:4380::/29 maxlen: 29
2a14:4380::/32 maxlen: 32
2a14:4381::/32 maxlen: 32
2a14:4382::/32 maxlen: 32
2a14:4383::/32 maxlen: 32
2a14:4384::/32 maxlen: 32
2a14:4385::/32 maxlen: 32
2a14:4386::/32 maxlen: 32
2a14:4387::/32 maxlen: 32
2a14:4480::/29 maxlen: 29
2a14:4480::/32 maxlen: 32
2a14:4481::/32 maxlen: 32
2a14:4482::/32 maxlen: 32
2a14:4483::/32 maxlen: 32
2a14:4484::/32 maxlen: 32
2a14:4485::/32 maxlen: 32
2a14:4486::/32 maxlen: 32
2a14:4487::/32 maxlen: 32
2a14:4980::/29 maxlen: 29
2a14:4980::/32 maxlen: 32
2a14:4981::/32 maxlen: 32
2a14:4982::/32 maxlen: 32
2a14:4983::/32 maxlen: 32
2a14:4984::/32 maxlen: 32
2a14:4985::/32 maxlen: 32
2a14:4986::/32 maxlen: 32
2a14:4987::/32 maxlen: 32
2a14:4a80::/29 maxlen: 29
2a14:4a80::/32 maxlen: 32
2a14:4a81::/32 maxlen: 32
2a14:4a82::/32 maxlen: 32
2a14:4a83::/32 maxlen: 32
2a14:4a84::/32 maxlen: 32
2a14:4a85::/32 maxlen: 32
2a14:4a86::/32 maxlen: 32
2a14:4a87::/32 maxlen: 32
2a14:4b80::/29 maxlen: 29
2a14:4b80::/32 maxlen: 32
2a14:4b81::/32 maxlen: 32
2a14:4b82::/32 maxlen: 32
2a14:4b83::/32 maxlen: 32
2a14:4b84::/32 maxlen: 32
2a14:4b85::/32 maxlen: 32
2a14:4b86::/32 maxlen: 32
2a14:4b87::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 19 Nov 2024 07:48:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1d:48:3e:ec:64:f3:81:3d:68:99:ed:41:98:e4:18:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Validity
Not Before: Nov 11 22:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7233aab11b2f9f1a51cda3bd2f869cf06c7b00a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9b:5c:3d:83:6a:f9:ed:2d:c0:5c:28:f2:c5:
f9:1c:d2:98:30:4a:47:b3:17:4b:e3:28:10:34:90:
38:73:21:83:74:e2:d2:b5:01:80:e2:a0:14:c7:f4:
d6:7e:9a:c1:e8:ed:b7:42:63:5a:bc:90:79:82:06:
a6:f5:a4:c2:42:5b:87:b8:1b:1d:4e:8b:63:ad:fc:
ea:77:e3:97:4d:47:d3:a5:38:a8:a1:75:79:6f:f0:
8b:46:41:34:67:89:16:3b:13:5e:9c:ba:b4:87:39:
bc:53:99:16:e2:d0:96:04:c1:a5:c9:87:0e:f3:6c:
3b:82:4d:4e:3a:07:56:79:2c:5e:bf:2a:8f:e1:32:
3b:6d:46:8a:1b:08:0d:89:5a:af:92:fe:fd:b4:30:
54:4d:f5:17:92:19:e4:d4:23:d0:e3:90:e2:c0:c2:
ed:c0:1e:5a:33:3d:b4:ce:c4:62:1d:93:43:e9:6d:
5c:ad:2d:b3:a3:5f:e5:8b:98:85:f8:c2:7d:c8:d8:
ae:6e:49:52:d6:00:5e:44:d8:ae:73:73:cf:fa:e9:
5b:e4:f8:cd:e7:d8:e0:5e:78:04:05:03:09:99:14:
e0:a1:5c:e3:2e:13:07:0c:d6:8a:a0:59:02:5f:77:
b7:db:fc:ad:4d:f4:32:6f:37:05:d1:9e:29:8c:00:
3c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:23:3A:AB:11:B2:F9:F1:A5:1C:DA:3B:D2:F8:69:CF:06:C7:B0:0A
X509v3 Authority Key Identifier:
keyid:E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/5yM6qxGy-fGlHNo70vhpzwbHsAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.83.87.0/24
IPv6:
2a0b:9800::/29
2a0f:3380::/29
2a14:4080::/29
2a14:4380::/29
2a14:4480::/29
2a14:4980::/29
2a14:4a80::/29
2a14:4b80::/29
Signature Algorithm: sha256WithRSAEncryption
35:8a:f5:e2:42:99:b4:42:e3:56:69:b0:27:04:32:55:2c:de:
88:be:d1:45:0a:a7:18:70:c7:5a:4d:53:5f:d4:a3:dc:4d:2b:
51:c3:03:f5:d9:3c:2d:0b:d9:e1:9f:2a:9f:4d:ae:6e:83:95:
cc:b1:2c:b5:da:04:9a:16:a9:8f:c3:c0:13:0a:5a:fb:ab:f2:
62:c1:12:69:06:95:a7:b5:c6:16:37:3b:80:b8:c7:4b:01:a6:
30:99:58:ff:ec:84:d6:f6:00:a0:7e:21:12:52:82:de:55:f3:
7b:17:e0:8b:49:df:7e:e3:d9:c0:97:ca:dc:10:2c:a2:dd:e4:
97:ee:41:f6:06:3d:1d:88:a7:7e:b0:1f:ac:42:46:fc:74:8f:
20:4b:77:02:27:b9:dd:98:9f:19:c4:12:39:af:28:9e:df:f3:
da:16:7e:75:ae:4f:20:a9:b3:bd:e3:01:fe:32:cb:c9:d0:64:
7a:4b:6f:99:88:80:9b:d2:d2:0f:c6:63:16:67:9e:ab:b0:f0:
d6:0c:f1:c2:fe:55:6a:d0:54:b5:7c:3d:f9:2e:70:ae:fd:95:
d7:f6:f7:9b:60:0b:b2:ba:fa:0d:a9:58:8a:be:7a:98:67:f5:
53:60:b8:d4:c8:75:e2:a0:2f:05:61:7e:ba:51:d4:d3:c9:83:
93:de:58:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 19 09:21:14 2024 by rpki-client on console-fra.rpki-client.org