Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/A4ca-Xzxg0e6koR8Gn91kyWZjG0.roa
File: A4ca-Xzxg0e6koR8Gn91kyWZjG0.roa (raw, json)
Hash identifier: Gje6Yts3R3O11XEXivVfWsLHASFJLRHovYk47MfYY+c=
Subject key identifier: 03:87:1A:F9:7C:F1:83:47:BA:92:84:7C:1A:7F:75:93:25:99:8C:6D
Certificate issuer: /CN=6c03a2caf298019fbd668621516c8c6e1d10e83c
Certificate serial: 01863602F1E6E3DEE01105C63C2BBA3FC285
Authority key identifier: 6C:03:A2:CA:F2:98:01:9F:BD:66:86:21:51:6C:8C:6E:1D:10:E8:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAOiyvKYAZ-9ZoYhUWyMbh0Q6Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/A4ca-Xzxg0e6koR8Gn91kyWZjG0.roa
Signing time: Thu 09 Feb 2023 11:50:07 +0000
ROA not before: Thu 09 Feb 2023 11:50:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202914
IP address blocks: 103.37.180.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:36:02:f1:e6:e3:de:e0:11:05:c6:3c:2b:ba:3f:c2:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c03a2caf298019fbd668621516c8c6e1d10e83c
Validity
Not Before: Feb 9 11:50:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03871af97cf18347ba92847c1a7f759325998c6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:56:e4:d0:d1:18:63:83:f1:8b:3f:72:08:cc:
65:0f:f9:ab:4b:52:f4:19:e5:00:74:ad:1d:c8:90:
d2:d6:42:ec:96:be:72:bc:39:99:a0:30:51:d8:22:
a5:34:04:8a:43:3b:13:d7:17:d1:10:ce:18:fa:ba:
13:22:6c:e5:59:b7:0b:3d:9a:ad:b3:ac:f5:d7:b6:
82:b5:ab:b1:cf:4c:5b:f5:8b:aa:8d:20:f1:45:c9:
41:15:04:89:59:cb:6b:d6:eb:0e:f9:da:1c:4b:a3:
9d:8c:97:11:0c:4e:40:a2:73:99:f2:0f:8e:b0:59:
c1:40:d2:d7:d8:41:89:f7:0b:7e:7d:1d:49:d7:82:
58:54:07:9a:58:c2:83:47:77:89:e6:1b:58:56:72:
82:9c:95:26:ec:28:db:9f:50:3f:63:76:f5:1f:9d:
00:df:62:20:97:72:e5:b7:54:10:29:93:56:30:b0:
dd:6d:7d:1e:42:b5:7a:3b:5a:9b:d2:49:11:23:b8:
f7:4b:6c:b0:ba:39:89:80:ce:15:f5:f6:23:6c:64:
cd:30:ab:89:22:4c:44:14:ab:2e:6a:91:03:2e:c8:
c2:36:bf:65:0b:77:02:c3:42:a8:d9:c9:38:17:fb:
f9:78:1b:41:02:9b:81:43:a4:4e:fa:fe:c8:a6:40:
1f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:87:1A:F9:7C:F1:83:47:BA:92:84:7C:1A:7F:75:93:25:99:8C:6D
X509v3 Authority Key Identifier:
keyid:6C:03:A2:CA:F2:98:01:9F:BD:66:86:21:51:6C:8C:6E:1D:10:E8:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAOiyvKYAZ-9ZoYhUWyMbh0Q6Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/A4ca-Xzxg0e6koR8Gn91kyWZjG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/bAOiyvKYAZ-9ZoYhUWyMbh0Q6Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.37.180.0/22
Signature Algorithm: sha256WithRSAEncryption
14:bb:a4:d4:98:ed:37:f8:6b:99:03:92:8a:f9:9f:bd:53:32:
6d:ea:70:86:41:b5:3e:e6:66:55:51:ce:10:e8:08:bf:46:b8:
23:d7:f0:59:75:21:6a:d0:68:c4:ba:6b:38:5b:99:a4:32:ae:
7d:27:83:81:c3:29:a7:b2:d0:dc:31:99:d5:d3:92:e0:fe:40:
2e:dc:a5:ea:e2:eb:fb:7f:86:7e:49:53:f3:ea:0b:0f:87:f4:
ba:c2:9a:b4:1e:f1:91:30:07:c5:32:db:b7:13:93:d6:7c:de:
22:20:09:a0:11:c7:ca:27:13:df:10:99:82:bd:e3:e7:60:6f:
09:18:f3:e1:9f:31:9a:de:4d:7f:18:18:e2:cd:92:e4:d1:aa:
fa:19:9f:7f:75:69:13:57:11:6c:85:17:93:f1:24:cb:59:ca:
10:a9:ff:0a:9f:ec:5a:c0:8b:c0:2d:00:d9:bd:0f:ac:10:ef:
4d:52:f8:04:83:af:39:29:f6:75:39:c8:a0:44:35:b0:e6:e8:
41:10:3b:45:c3:04:47:ab:0b:09:c8:6c:9c:b9:c8:89:4e:f3:
b1:d6:6a:0f:f5:fa:11:42:b9:56:76:08:2b:22:c9:e3:d8:a2:
67:5b:04:c0:ce:ba:e8:c9:7d:40:09:fc:69:2c:9d:e7:75:46:
72:91:b1:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYY2AvHm497gEQXGPCu6P8KFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjMDNhMmNhZjI5ODAxOWZiZDY2ODYyMTUxNmM4YzZlMWQx
MGU4M2MwHhcNMjMwMjA5MTE1MDA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzg3MWFmOTdjZjE4MzQ3YmE5Mjg0N2MxYTdmNzU5MzI1OTk4YzZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm1bk0NEYY4Pxiz9yCMxlD/mrS1L0
GeUAdK0dyJDS1kLslr5yvDmZoDBR2CKlNASKQzsT1xfREM4Y+roTImzlWbcLPZqt
s6z117aCtauxz0xb9YuqjSDxRclBFQSJWctr1usO+docS6OdjJcRDE5AonOZ8g+O
sFnBQNLX2EGJ9wt+fR1J14JYVAeaWMKDR3eJ5htYVnKCnJUm7Cjbn1A/Y3b1H50A
32Igl3Llt1QQKZNWMLDdbX0eQrV6O1qb0kkRI7j3S2ywujmJgM4V9fYjbGTNMKuJ
IkxEFKsuapEDLsjCNr9lC3cCw0Ko2ck4F/v5eBtBApuBQ6RO+v7IpkAfTwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAOHGvl88YNHupKEfBp/dZMlmYxtMB8GA1UdIwQY
MBaAFGwDosrymAGfvWaGIVFsjG4dEOg8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkFPaXl2S1lBWi05Wm9ZaFVXeU1iaDBRNkR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8xNmI4ZTQtMTI1My00ZDllLWJkNDkt
ZmMzN2ZiMGNkNDNiLzEvQTRjYS1YenhnMGU2a29SOEduOTFreVdaakcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny8xNmI4ZTQtMTI1My00ZDllLWJkNDktZmMzN2ZiMGNkNDNi
LzEvYkFPaXl2S1lBWi05Wm9ZaFVXeU1iaDBRNkR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZyW0MA0G
CSqGSIb3DQEBCwUAA4IBAQAUu6TUmO03+GuZA5KK+Z+9UzJt6nCGQbU+5mZVUc4Q
6Ai/Rrgj1/BZdSFq0GjEums4W5mkMq59J4OBwymnstDcMZnV05Lg/kAu3KXq4uv7
f4Z+SVPz6gsPh/S6wpq0HvGRMAfFMtu3E5PWfN4iIAmgEcfKJxPfEJmCvePnYG8J
GPPhnzGa3k1/GBjizZLk0ar6GZ9/dWkTVxFshReT8STLWcoQqf8Kn+xawIvALQDZ
vQ+sEO9NUvgEg685KfZ1OcigRDWw5uhBEDtFwwRHqwsJyGycuciJTvOx1moP9foR
QrlWdggrIsnj2KJnWwTAzrroyX1ACfxpLJ3ndUZykbHh
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:49 2024 by rpki-client on console-ams.rpki-client.org