Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_ZAgd4AteBEMMNHG1GnJUTIWJEk.roa
File: _ZAgd4AteBEMMNHG1GnJUTIWJEk.roa (raw, json)
Hash identifier: xhJuF/LhHyfs+iS60K3oBKHdZzWHrNO77xWCwFxT8eg=
Subject key identifier: FD:90:20:77:80:2D:78:11:0C:30:D1:C6:D4:69:C9:51:32:16:24:49
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019106F2DBB64798B070C654883D69513C11
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_ZAgd4AteBEMMNHG1GnJUTIWJEk.roa
Signing time: Wed 31 Jul 2024 04:01:04 +0000
ROA not before: Wed 31 Jul 2024 04:01:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215155
IP address blocks: 103.245.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 21:13:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:06:f2:db:b6:47:98:b0:70:c6:54:88:3d:69:51:3c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 31 04:01:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd902077802d78110c30d1c6d469c95132162449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b8:68:dc:1d:9d:dd:b7:9d:22:d4:dd:03:ea:
ad:12:fc:f6:24:b9:58:e2:fb:87:63:db:c3:49:5b:
e4:dc:f7:05:33:b7:74:c3:16:17:ff:d8:75:fb:97:
e6:6c:66:d1:be:c4:9f:5d:91:12:5d:82:58:dc:98:
48:81:38:4c:62:22:6c:7b:dd:69:0e:e3:ff:fb:25:
63:cc:86:32:ed:92:54:3b:ed:f8:87:6d:3a:ab:ff:
14:7a:d8:c3:ce:6a:d3:64:06:1b:18:0e:96:6c:e7:
1e:20:da:bd:81:c1:27:bb:a6:ed:fa:ef:54:3a:b8:
7c:3d:ac:b1:4e:e8:5c:50:0b:7c:66:37:cd:c5:25:
66:c9:67:69:7a:b2:66:58:fe:ea:df:96:4f:5d:d9:
e3:dd:51:4a:78:aa:ce:51:45:05:2e:4f:15:6a:89:
ac:4b:95:68:13:24:a0:82:3c:74:75:cf:36:dc:da:
b7:06:44:6b:60:2b:94:72:74:e5:0e:14:8d:b7:f1:
05:b0:77:69:33:fe:7e:44:b1:3a:c4:ef:ab:24:05:
d2:bc:da:79:e7:af:f6:b0:4b:c5:76:a4:ca:df:fd:
dd:cb:f4:d4:91:ab:ee:ac:0b:e9:76:09:90:10:f3:
8d:fb:3f:00:94:00:12:57:f1:2d:80:54:a4:ac:f7:
25:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:90:20:77:80:2D:78:11:0C:30:D1:C6:D4:69:C9:51:32:16:24:49
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_ZAgd4AteBEMMNHG1GnJUTIWJEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.245.228.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:6a:23:3f:ae:09:ba:a3:80:ab:6a:a2:ca:55:a2:35:83:86:
9e:65:bc:97:d9:27:33:a0:c3:52:61:50:64:5e:17:6c:45:1c:
12:8e:bf:4b:dc:63:41:5b:22:35:7b:8c:cf:84:8a:cc:3a:5b:
a6:eb:5f:c9:c2:09:f9:2e:0c:34:86:7f:db:13:54:c3:9a:a9:
d3:e4:76:5e:17:17:c5:c5:14:de:80:04:22:a5:c3:74:44:a7:
f4:f1:43:43:11:b1:eb:c4:ce:f7:6c:56:e0:62:93:d4:75:31:
f8:39:02:05:e9:53:9c:ca:81:89:d5:6b:17:3c:96:9d:06:02:
85:c8:ea:36:fa:a8:58:4b:0d:24:05:1a:32:7e:a1:fc:13:de:
b5:68:70:59:b8:70:16:4b:a8:16:f3:3a:4c:ae:c9:10:42:28:
9c:9e:da:29:5b:79:b2:85:d2:10:1d:ee:76:cf:8e:ba:d0:82:
6a:14:7c:6e:72:1c:79:ec:33:44:6c:7e:34:b2:53:10:1e:9a:
66:0a:03:d0:6c:76:61:10:9d:17:72:0a:fd:0b:fd:73:87:c3:
64:e6:53:40:dd:ec:24:c9:f2:9a:61:d0:b2:b8:26:0f:5c:a9:
fd:89:ff:c2:70:82:cb:31:ea:f1:1b:e4:3a:42:bf:a9:95:dc:
f1:7b:d0:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZEG8tu2R5iwcMZUiD1pUTwRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwNzMxMDQwMTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDkwMjA3NzgwMmQ3ODExMGMzMGQxYzZkNDY5Yzk1MTMyMTYyNDQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLho3B2d3bedItTdA+qtEvz2JLlY
4vuHY9vDSVvk3PcFM7d0wxYX/9h1+5fmbGbRvsSfXZESXYJY3JhIgThMYiJse91p
DuP/+yVjzIYy7ZJUO+34h206q/8UetjDzmrTZAYbGA6WbOceINq9gcEnu6bt+u9U
Orh8PayxTuhcUAt8ZjfNxSVmyWdperJmWP7q35ZPXdnj3VFKeKrOUUUFLk8Vaoms
S5VoEySggjx0dc823Nq3BkRrYCuUcnTlDhSNt/EFsHdpM/5+RLE6xO+rJAXSvNp5
56/2sEvFdqTK3/3dy/TUkavurAvpdgmQEPON+z8AlAASV/EtgFSkrPcliwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP2QIHeALXgRDDDRxtRpyVEyFiRJMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvX1pBZ2Q0QXRlQkVNTU5IRzFHbkpVVElXSkVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/XkMA0G
CSqGSIb3DQEBCwUAA4IBAQB+aiM/rgm6o4CraqLKVaI1g4aeZbyX2SczoMNSYVBk
XhdsRRwSjr9L3GNBWyI1e4zPhIrMOlum61/Jwgn5Lgw0hn/bE1TDmqnT5HZeFxfF
xRTegAQipcN0RKf08UNDEbHrxM73bFbgYpPUdTH4OQIF6VOcyoGJ1WsXPJadBgKF
yOo2+qhYSw0kBRoyfqH8E961aHBZuHAWS6gW8zpMrskQQiicntopW3myhdIQHe52
z4660IJqFHxuchx57DNEbH40slMQHppmCgPQbHZhEJ0Xcgr9C/1zh8Nk5lNA3ewk
yfKaYdCyuCYPXKn9if/CcILLMerxG+Q6Qr+pldzxe9Di
-----END CERTIFICATE-----
Generated at Thu Oct 31 00:18:33 2024 by rpki-client on console-ams.rpki-client.org