Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/E-81Gv5QWHcLlykecR-XwrYPghE.roa
File: E-81Gv5QWHcLlykecR-XwrYPghE.roa (raw, json)
Hash identifier: KBQ2KIU/Qc1X1I0cvZwPexu4U19skOAeVWoVMl40Z+s=
Subject key identifier: 13:EF:35:1A:FE:50:58:77:0B:97:29:1E:71:1F:97:C2:B6:0F:82:11
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019428277A577D220285CCD015E4885A5EF2
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/E-81Gv5QWHcLlykecR-XwrYPghE.roa
Signing time: Thu 02 Jan 2025 17:54:23 +0000
ROA not before: Thu 02 Jan 2025 17:54:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 399646
IP address blocks: 103.245.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 Jan 2025 21:52:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:7a:57:7d:22:02:85:cc:d0:15:e4:88:5a:5e:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 2 17:54:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=13ef351afe5058770b97291e711f97c2b60f8211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cd:22:a7:5e:a1:58:43:4a:23:44:e9:e1:ff:
35:34:68:f2:76:80:46:a1:24:e7:b8:ec:d1:66:5d:
00:15:0f:e0:4c:6e:74:bd:2f:2a:21:ea:94:6b:0c:
d1:a4:94:5d:72:2c:bb:d9:28:2b:6e:ef:66:79:2b:
33:d6:95:4a:01:9e:1e:b8:7e:de:ce:a0:c0:0b:36:
10:e7:a7:13:27:e9:65:ef:14:82:66:d7:04:21:e4:
d0:d4:6f:fe:0a:a6:63:e1:b0:6e:66:b0:7c:d7:00:
a2:ed:dc:61:c3:98:a0:38:66:2a:87:f6:13:9b:07:
54:13:c5:12:5e:9a:3b:cf:f0:f3:58:e7:fc:ad:07:
fd:02:98:4c:1e:57:f4:4a:fa:8b:0a:af:63:5b:65:
b8:e7:39:11:60:f1:92:63:22:91:7b:78:ee:18:78:
8b:eb:fc:28:f6:92:6b:82:5a:d7:c7:5f:e7:10:b4:
9c:3d:92:3a:d0:65:54:bb:87:5a:11:bd:f3:d2:4e:
e3:5a:d5:c9:95:3d:4b:37:bb:a9:3b:79:da:bb:0f:
61:64:86:b5:1d:71:3c:cf:79:bd:b2:4e:9f:52:89:
b4:09:a7:f0:3c:45:f5:d0:79:52:c0:66:94:30:fb:
d1:50:4e:16:2f:fd:e5:e3:d1:72:68:12:12:1c:55:
24:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:EF:35:1A:FE:50:58:77:0B:97:29:1E:71:1F:97:C2:B6:0F:82:11
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/E-81Gv5QWHcLlykecR-XwrYPghE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.245.228.0/24
Signature Algorithm: sha256WithRSAEncryption
63:e6:f9:31:19:65:0a:f6:04:56:66:1e:1c:f5:e8:5a:fa:e5:
60:88:f6:0e:b8:fd:95:5e:90:c8:cd:f6:30:37:3d:60:c7:ce:
71:e1:e4:34:44:37:83:bb:9f:35:7b:60:bf:35:ca:17:1a:64:
e3:1b:47:1b:d8:49:6c:eb:be:2f:52:88:a6:d2:94:47:8f:6a:
9c:9e:70:c7:f5:f5:90:fc:a3:a8:12:01:65:82:03:90:d1:49:
0f:0f:f7:04:15:9d:b3:12:a1:a1:39:d7:b6:58:42:51:f0:28:
3f:fe:0d:b8:7d:6a:24:13:00:2e:f4:34:c3:1c:c6:f9:cd:07:
be:74:c4:cd:1e:65:48:2a:4c:0c:81:80:d4:e7:cf:d5:e8:e9:
1a:f0:e0:14:b4:0f:b0:b1:86:68:4e:1d:9e:4e:c8:ec:33:3a:
6a:86:64:71:e0:e7:21:78:05:0b:f4:54:69:20:d1:e2:7f:51:
02:dd:cd:e3:81:3f:43:e7:19:cc:e6:98:0c:dc:54:88:c6:42:
2b:8d:bd:ea:cf:46:34:6b:71:1b:24:67:da:60:49:12:c3:9a:
4f:00:32:91:7f:98:c9:ae:b6:88:27:d9:79:09:7d:87:8d:4f:
cd:37:b1:2c:3a:2f:84:0f:bb:4b:61:ff:8a:69:3d:e9:a9:1f:
fa:79:26:76
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoJ3pXfSIChczQFeSIWl7yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjUwMTAyMTc1NDIzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxM2VmMzUxYWZlNTA1ODc3MGI5NzI5MWU3MTFmOTdjMmI2MGY4MjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuM0ip16hWENKI0Tp4f81NGjydoBG
oSTnuOzRZl0AFQ/gTG50vS8qIeqUawzRpJRdciy72Sgrbu9meSsz1pVKAZ4euH7e
zqDACzYQ56cTJ+ll7xSCZtcEIeTQ1G/+CqZj4bBuZrB81wCi7dxhw5igOGYqh/YT
mwdUE8USXpo7z/DzWOf8rQf9AphMHlf0SvqLCq9jW2W45zkRYPGSYyKRe3juGHiL
6/wo9pJrglrXx1/nELScPZI60GVUu4daEb3z0k7jWtXJlT1LN7upO3nauw9hZIa1
HXE8z3m9sk6fUom0CafwPEX10HlSwGaUMPvRUE4WL/3l49FyaBISHFUkwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBPvNRr+UFh3C5cpHnEfl8K2D4IRMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvRS04MUd2NVFXSGNMbHlrZWNSLVh3cllQZ2hFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/XkMA0G
CSqGSIb3DQEBCwUAA4IBAQBj5vkxGWUK9gRWZh4c9eha+uVgiPYOuP2VXpDIzfYw
Nz1gx85x4eQ0RDeDu581e2C/NcoXGmTjG0cb2Els674vUoim0pRHj2qcnnDH9fWQ
/KOoEgFlggOQ0UkPD/cEFZ2zEqGhOde2WEJR8Cg//g24fWokEwAu9DTDHMb5zQe+
dMTNHmVIKkwMgYDU58/V6Oka8OAUtA+wsYZoTh2eTsjsMzpqhmRx4OcheAUL9FRp
INHif1EC3c3jgT9D5xnM5pgM3FSIxkIrjb3qz0Y0a3EbJGfaYEkSw5pPADKRf5jJ
rraIJ9l5CX2HjU/NN7EsOi+ED7tLYf+KaT3pqR/6eSZ2
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:42:43 2025 by rpki-client