Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/IDwAZYRz7Dqd8kx7vvKGnUwr0NQ.roa
File: IDwAZYRz7Dqd8kx7vvKGnUwr0NQ.roa (raw, json)
Hash identifier: ljj+tWJF7G+RiQYNtX4f6n6/6fpb6A8ALfXCzAJzrqA=
Subject key identifier: 20:3C:00:65:84:73:EC:3A:9D:F2:4C:7B:BE:F2:86:9D:4C:2B:D0:D4
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019289E4480657EBB34A05501D44A1BFBC72
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/IDwAZYRz7Dqd8kx7vvKGnUwr0NQ.roa
Signing time: Mon 14 Oct 2024 07:18:11 +0000
ROA not before: Mon 14 Oct 2024 07:18:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214128
IP address blocks: 103.245.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Nov 2024 04:25:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:89:e4:48:06:57:eb:b3:4a:05:50:1d:44:a1:bf:bc:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 14 07:18:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=203c00658473ec3a9df24c7bbef2869d4c2bd0d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9e:6b:e2:b9:eb:d1:9b:52:30:ba:c9:16:ec:
67:37:e8:af:55:29:94:98:11:0e:ee:5c:8a:7f:80:
b3:fe:ec:af:df:bd:45:01:e7:9e:c3:2d:e7:05:04:
a2:a6:d1:0b:44:0a:27:8c:4c:05:16:aa:48:ab:4a:
ca:c5:4d:bd:f3:63:5f:4b:26:ac:0a:69:dd:09:39:
2c:ce:54:35:24:88:53:a3:f5:14:b0:1e:63:f0:0e:
d7:b2:2c:74:ed:1d:e3:69:eb:64:98:b7:11:c7:18:
9e:e7:a8:06:73:ae:2c:6e:55:0c:e2:67:4f:19:1a:
8b:11:39:c2:38:8a:56:e9:4d:5f:a2:ab:36:1e:b3:
01:2d:18:cd:52:47:71:bc:7d:5a:13:40:25:17:25:
78:d9:b8:a3:7a:7c:42:d6:5f:8f:e1:d5:70:53:78:
44:02:c8:51:4f:e7:99:d9:ba:90:19:bc:74:89:5f:
76:23:94:cb:5c:f3:f7:ed:37:05:34:6a:ed:d6:70:
60:5e:43:b8:b0:cc:6b:08:77:9a:84:3f:19:9e:5a:
ee:46:0e:f3:93:e9:9f:52:3c:9e:24:26:ba:aa:49:
51:e5:97:cd:7b:a7:b0:1e:55:d3:16:9f:51:fd:c3:
3c:17:e0:fc:25:4e:46:84:92:89:05:f3:68:d9:87:
30:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3C:00:65:84:73:EC:3A:9D:F2:4C:7B:BE:F2:86:9D:4C:2B:D0:D4
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/IDwAZYRz7Dqd8kx7vvKGnUwr0NQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.245.230.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ca:08:8d:54:71:da:3e:a3:2d:80:a0:21:dd:38:03:ee:2c:
6b:28:bf:10:ba:5d:d3:c0:0c:dc:86:8d:98:a9:d8:7a:8e:11:
be:1b:b2:95:58:85:b4:66:24:a0:65:98:94:d3:d5:65:67:2d:
cf:a0:8b:2b:d2:96:0a:26:32:16:85:ce:23:76:74:7a:cc:1f:
64:94:d3:c2:55:d6:1d:d4:43:7e:60:be:71:b3:32:e9:d2:c4:
41:af:bc:fe:11:da:77:42:08:c0:00:46:55:a5:a6:42:a9:53:
dc:8b:15:04:be:bc:79:c0:cd:f5:ee:84:1f:6c:ed:27:e6:58:
df:42:27:03:50:9a:73:8b:3d:da:88:25:d7:4a:65:16:e5:74:
a0:5a:d7:90:41:62:5d:49:ca:a9:a5:52:84:cc:1c:c3:ba:10:
cd:a4:1f:d7:ac:73:72:56:8e:44:74:71:3b:61:40:e8:48:4b:
7b:00:bc:48:73:68:68:8e:b3:0d:82:08:3d:09:7a:5e:8f:69:
e6:3f:92:d9:f4:1b:4f:1f:08:70:36:41:37:df:fa:e4:46:26:
ee:7d:d6:71:f8:f0:74:8c:92:60:5b:bb:71:a0:13:c6:ef:91:
02:61:d1:df:68:16:67:d3:65:85:c7:95:63:ea:3c:59:04:a7:
f0:71:67:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 08:11:23 2024 by rpki-client on console-fra.rpki-client.org