Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ndM4tAFo1O7ahizUkDmoc1B9kcc.roa
File: ndM4tAFo1O7ahizUkDmoc1B9kcc.roa (raw, json)
Hash identifier: VsW68EpnIH4MIcw6UQnSG3Tqo61iFKhTSAWfO4k1LaE=
Subject key identifier: 9D:D3:38:B4:01:68:D4:EE:DA:86:2C:D4:90:39:A8:73:50:7D:91:C7
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018F70AA426339569DEA7B5AEB34AC3818B8
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ndM4tAFo1O7ahizUkDmoc1B9kcc.roa
Signing time: Mon 13 May 2024 06:35:57 +0000
ROA not before: Mon 13 May 2024 06:35:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151734
IP address blocks: 103.212.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Oct 2024 07:12:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:70:aa:42:63:39:56:9d:ea:7b:5a:eb:34:ac:38:18:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: May 13 06:35:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9dd338b40168d4eeda862cd49039a873507d91c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:30:80:e6:da:21:0f:e2:4a:1e:ae:58:6b:5f:
36:69:24:04:6c:35:5e:ff:31:1f:d2:6d:9b:49:d0:
66:cb:9d:31:6a:b1:34:52:4c:51:9a:13:6a:e3:64:
13:28:04:7e:84:05:88:ad:ce:7b:9e:24:1c:3f:74:
24:60:3c:7b:af:40:45:04:b5:0a:17:c3:ae:9c:55:
4f:30:08:d9:9e:41:c9:00:b5:fe:bb:bb:6f:e1:6c:
6a:ed:90:26:da:30:23:3f:29:8f:40:82:18:39:81:
17:ef:46:d1:b1:20:cf:89:5a:ad:52:37:5b:59:a9:
2d:53:56:a9:d9:d2:6c:90:81:23:e0:ea:30:d8:51:
c2:01:cf:ab:93:5a:6e:6a:5a:df:e7:2c:4a:fe:ad:
ff:b2:4e:9c:7d:2a:c5:20:22:94:d2:d1:28:2c:1e:
d1:d8:6d:8b:61:54:c0:c1:61:a1:36:58:b3:62:c9:
d1:5f:0c:4c:58:eb:44:a8:dd:18:f4:0a:6b:65:cd:
d7:fe:d7:2f:38:9b:01:87:c9:37:6c:65:e3:a1:1a:
56:ca:b3:ad:83:67:43:ab:1d:da:9c:ed:e5:f3:54:
b8:40:f5:d8:ee:96:86:5e:50:8a:86:50:e7:73:ee:
fb:50:90:e4:75:cb:ac:d3:ad:2a:82:5f:d6:e6:95:
e1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D3:38:B4:01:68:D4:EE:DA:86:2C:D4:90:39:A8:73:50:7D:91:C7
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ndM4tAFo1O7ahizUkDmoc1B9kcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.212.81.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:ef:a1:a8:c8:91:15:3c:9d:3f:8d:04:55:e6:c2:dd:1d:a8:
09:03:3b:63:65:96:a1:07:12:22:24:a4:fb:19:5b:61:f6:e9:
36:55:fa:08:a1:02:80:d7:4d:1a:12:21:ec:24:dc:b2:e5:ca:
f5:64:de:0c:13:98:f6:fa:b6:6d:05:d6:34:8a:74:a2:e8:04:
59:b0:59:12:59:77:b2:9f:42:bf:00:22:66:0a:22:17:be:d9:
8c:5c:63:8a:5e:95:64:60:97:5a:8a:47:f2:62:4c:9b:74:1d:
4b:e8:f6:6e:27:75:19:96:53:fe:58:9b:16:66:54:0e:e9:b2:
6a:f1:3c:86:55:b5:14:8a:b2:48:81:34:2f:28:73:4c:9f:e1:
24:67:85:ec:33:af:58:0b:a9:fe:dd:56:90:69:24:2d:4f:59:
71:cd:b3:56:82:d8:b1:d6:11:74:30:b3:bf:69:67:bc:79:c0:
21:94:a6:ac:eb:b0:12:07:99:72:81:8f:0e:55:a3:77:e1:82:
86:ce:86:82:4c:4a:9c:6b:88:4a:1b:88:f6:3a:94:0b:a8:33:
e5:e3:7e:54:b7:d3:29:93:d0:99:b9:cf:3e:69:2f:8f:41:53:
45:f1:4c:b7:37:b5:23:42:24:74:55:26:b6:3c:06:49:16:51:
e3:91:c8:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 20 08:59:03 2024 by rpki-client on console-ams.rpki-client.org