Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/n4wVypUDY0V08Bk6IJgfmakH_Tc.roa
File: n4wVypUDY0V08Bk6IJgfmakH_Tc.roa (raw, json)
Hash identifier: OjcVWOHuIxli2sKZEZllZgXr5WWi2oZCUkuoe72e2N0=
Subject key identifier: 9F:8C:15:CA:95:03:63:45:74:F0:19:3A:20:98:1F:99:A9:07:FD:37
Certificate issuer: /CN=6c03a2caf298019fbd668621516c8c6e1d10e83c
Certificate serial: 0189253003F1CC3E16F66FC53B37C196D5AC
Authority key identifier: 6C:03:A2:CA:F2:98:01:9F:BD:66:86:21:51:6C:8C:6E:1D:10:E8:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAOiyvKYAZ-9ZoYhUWyMbh0Q6Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/n4wVypUDY0V08Bk6IJgfmakH_Tc.roa
Signing time: Wed 05 Jul 2023 08:34:10 +0000
ROA not before: Wed 05 Jul 2023 08:34:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134450
IP address blocks: 103.240.180.0/22 maxlen: 32
45.114.8.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:25:30:03:f1:cc:3e:16:f6:6f:c5:3b:37:c1:96:d5:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c03a2caf298019fbd668621516c8c6e1d10e83c
Validity
Not Before: Jul 5 08:34:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f8c15ca9503634574f0193a20981f99a907fd37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:79:8a:4c:11:1f:b4:91:55:67:ee:b6:7d:f6:
98:74:53:85:44:69:55:d0:ca:19:9d:71:f8:91:1c:
90:fe:73:79:5f:bb:8a:5b:b2:4d:1f:2a:b0:92:44:
c9:8f:21:e1:bb:90:2e:66:db:a2:0d:8b:f5:89:eb:
44:13:56:2c:f6:bc:f8:27:8c:f6:e4:9b:4a:a8:17:
51:92:94:b4:76:3b:e9:53:40:b1:63:a4:81:fa:d1:
a3:b4:33:ca:8d:52:10:21:7b:ed:f2:82:49:63:f2:
4a:41:99:fd:86:97:3f:cc:d4:57:a1:3c:91:77:6c:
f2:33:46:3c:9e:8b:d2:9b:ce:c4:0f:80:09:65:0b:
c0:33:04:19:e4:d3:f2:77:1e:e8:ef:55:bc:31:c3:
98:66:f9:18:77:5f:b4:67:32:b5:30:10:3f:a4:5b:
43:76:25:5d:c4:a2:7c:1c:53:a6:7e:90:11:83:4b:
66:1a:4a:45:af:ef:57:d9:3e:f2:6e:5c:7a:30:d2:
d6:82:b5:91:bb:dc:98:d8:72:d6:88:39:82:7c:68:
e3:78:4e:a4:18:34:a8:7c:c5:2b:03:12:56:53:68:
f9:2d:e2:73:08:de:86:3b:5c:38:1d:51:15:39:32:
40:d2:fa:be:ff:c1:9a:21:89:32:de:9a:11:0c:74:
49:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8C:15:CA:95:03:63:45:74:F0:19:3A:20:98:1F:99:A9:07:FD:37
X509v3 Authority Key Identifier:
keyid:6C:03:A2:CA:F2:98:01:9F:BD:66:86:21:51:6C:8C:6E:1D:10:E8:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAOiyvKYAZ-9ZoYhUWyMbh0Q6Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/n4wVypUDY0V08Bk6IJgfmakH_Tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/16b8e4-1253-4d9e-bd49-fc37fb0cd43b/1/bAOiyvKYAZ-9ZoYhUWyMbh0Q6Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.114.8.0/22
103.240.180.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:db:6c:7d:87:14:f4:65:5e:49:f1:11:91:b3:5d:43:37:e3:
02:7a:bc:aa:40:e7:5b:cb:56:c6:23:ac:1c:92:f2:af:73:cc:
2f:a2:9b:09:2f:68:9a:3c:95:e6:7a:3d:f5:01:87:87:52:85:
71:8c:16:f7:9c:75:41:32:33:22:8c:f5:d4:54:19:5a:a6:e7:
00:91:fd:2f:6a:db:42:bf:c2:17:ff:5f:72:d5:76:92:f1:be:
df:bc:be:a8:cd:cf:24:9a:ad:e7:fa:27:cb:9f:8f:ea:0f:5a:
12:02:33:ef:d2:3f:8c:a3:d6:35:94:46:42:04:9b:c6:03:61:
9d:94:e6:e8:3e:53:8b:22:06:68:5b:e8:26:f2:cf:30:e7:cf:
1a:66:27:0a:65:b4:60:68:6c:1d:f6:7f:24:fd:cf:07:2b:c6:
cf:0e:ae:d0:5d:9d:03:71:4c:26:dd:9b:f6:61:91:ee:41:53:
72:e2:9d:50:10:d0:49:84:5b:46:67:39:80:be:e5:94:71:0a:
7b:b3:40:61:82:21:6f:78:8d:a3:5b:49:38:ce:1d:9d:9a:f6:
33:2b:c7:a0:80:54:db:31:ac:74:81:9f:90:84:28:f3:2f:43:
c4:d8:e3:79:e1:53:e6:e7:f8:00:0a:2f:d3:18:a1:2c:5f:d2:
48:e2:da:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:49 2024 by rpki-client on console-ams.rpki-client.org