Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/E3UCsDAlwbOGa76Xxdrh2129ABk.roa
File: E3UCsDAlwbOGa76Xxdrh2129ABk.roa (raw, json)
Hash identifier: xuEz5Hq73gOglrRMIfpd+6cdJer3hrp01z5fgkLmU3Q=
Subject key identifier: 13:75:02:B0:30:25:C1:B3:86:6B:BE:97:C5:DA:E1:DB:5D:BD:00:19
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0191C2B625F29B7439381819370A8D34128A
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/E3UCsDAlwbOGa76Xxdrh2129ABk.roa
Signing time: Thu 05 Sep 2024 15:03:22 +0000
ROA not before: Thu 05 Sep 2024 15:03:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63023
IP address blocks: 103.114.41.0/24 maxlen: 24
2a13:1480::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 24 Sep 2024 06:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c2:b6:25:f2:9b:74:39:38:18:19:37:0a:8d:34:12:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 5 15:03:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=137502b03025c1b3866bbe97c5dae1db5dbd0019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:54:de:7e:fe:d8:e3:f9:84:a3:39:28:e8:e0:
8e:41:8a:2f:a9:3a:02:a0:09:9b:f6:73:9f:a5:a7:
54:aa:6f:3f:2d:ef:44:25:2c:17:89:65:16:ec:64:
7b:5c:60:c9:b3:f1:83:ba:3f:62:bd:7f:ce:ef:65:
84:66:11:24:2a:36:1c:99:bb:77:62:ea:44:57:a6:
59:f8:e9:2a:f7:77:f0:fa:60:47:e3:7e:7e:bb:0f:
d6:76:f6:bc:61:f4:94:29:0e:24:08:56:46:af:76:
6f:b6:70:55:0b:34:77:8d:56:cb:65:05:9a:43:63:
07:ab:4b:22:88:2b:42:90:11:b3:eb:38:4b:2f:f7:
f9:d9:71:74:5b:1c:da:7a:e1:62:dc:51:51:3b:f9:
94:18:f3:69:1d:43:62:5f:6f:e5:f7:d5:a5:75:0e:
f0:d0:72:4a:e6:a6:84:79:16:6d:27:23:de:e3:4d:
8a:b9:5b:b3:12:a1:53:c7:66:c0:b5:ff:b5:d1:75:
c4:24:45:bb:4d:51:cf:0e:ee:ce:0c:81:a1:62:e5:
06:3a:a4:86:9b:d6:a6:d8:98:c3:fe:ba:3c:e4:a4:
b3:4f:a6:8c:85:c9:7b:5e:49:4c:9a:dd:a0:76:cb:
e9:f7:e7:32:99:51:c6:e4:0b:d4:dd:f2:2a:ca:ca:
32:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:75:02:B0:30:25:C1:B3:86:6B:BE:97:C5:DA:E1:DB:5D:BD:00:19
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/E3UCsDAlwbOGa76Xxdrh2129ABk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.114.41.0/24
IPv6:
2a13:1480::/29
Signature Algorithm: sha256WithRSAEncryption
15:9f:56:9f:8a:8b:c1:7c:34:e4:9b:5b:bc:c3:65:be:5e:ba:
76:32:6b:f1:c1:6e:28:18:b0:8a:76:43:94:d1:3b:f1:85:a4:
0c:ae:47:e0:0c:e1:98:cc:83:5b:8c:04:14:91:20:71:99:e0:
c3:30:67:08:04:85:94:f3:d2:6c:b4:48:d4:6a:f9:47:95:75:
a8:69:b1:29:57:6e:fb:85:0c:f8:66:cd:55:01:39:93:05:a1:
d9:09:7b:1e:f2:d1:30:30:82:36:d6:11:6b:2b:0b:2f:c1:54:
9e:35:6b:ec:36:92:78:68:34:a1:da:07:16:99:6c:9a:db:f9:
f7:97:ee:52:b6:09:0b:56:69:bb:31:61:80:b5:50:cb:aa:02:
4e:a1:67:b7:76:28:dd:bc:a5:b6:97:78:2a:3d:cc:9a:59:36:
ef:4d:8c:5c:57:1f:82:36:7c:6c:e1:72:0f:8b:47:d9:b8:5f:
ff:a3:76:4f:df:e3:47:43:fc:8a:ff:87:77:de:f3:2c:02:fc:
52:b2:cd:bb:68:59:5a:cd:05:bc:9a:cd:d4:33:d9:3a:31:83:
6c:bd:1a:63:bc:f1:38:84:b9:0e:20:7c:08:c8:f1:8f:5b:20:
b6:8e:47:d0:fa:4f:b9:83:64:42:c9:77:21:f0:a5:b1:6b:a9:
b9:f9:ee:c9
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZHCtiXym3Q5OBgZNwqNNBKKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwOTA1MTUwMzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzc1MDJiMDMwMjVjMWIzODY2YmJlOTdjNWRhZTFkYjVkYmQwMDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1FTefv7Y4/mEozko6OCOQYovqToC
oAmb9nOfpadUqm8/Le9EJSwXiWUW7GR7XGDJs/GDuj9ivX/O72WEZhEkKjYcmbt3
YupEV6ZZ+Okq93fw+mBH435+uw/Wdva8YfSUKQ4kCFZGr3ZvtnBVCzR3jVbLZQWa
Q2MHq0siiCtCkBGz6zhLL/f52XF0WxzaeuFi3FFRO/mUGPNpHUNiX2/l99WldQ7w
0HJK5qaEeRZtJyPe402KuVuzEqFTx2bAtf+10XXEJEW7TVHPDu7ODIGhYuUGOqSG
m9am2JjD/ro85KSzT6aMhcl7XklMmt2gdsvp9+cymVHG5AvU3fIqysoygwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBN1ArAwJcGzhmu+l8Xa4dtdvQAZMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvRTNVQ3NEQWx3Yk9HYTc2WHhkcmgyMTI5QUJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAZ3IpMA0E
AgACMAcDBQMqExSAMA0GCSqGSIb3DQEBCwUAA4IBAQAVn1afiovBfDTkm1u8w2W+
Xrp2MmvxwW4oGLCKdkOU0TvxhaQMrkfgDOGYzINbjAQUkSBxmeDDMGcIBIWU89Js
tEjUavlHlXWoabEpV277hQz4Zs1VATmTBaHZCXse8tEwMII21hFrKwsvwVSeNWvs
NpJ4aDSh2gcWmWya2/n3l+5StgkLVmm7MWGAtVDLqgJOoWe3dijdvKW2l3gqPcya
WTbvTYxcVx+CNnxs4XIPi0fZuF//o3ZP3+NHQ/yK/4d33vMsAvxSss27aFlazQW8
ms3UM9k6MYNsvRpjvPE4hLkOIHwIyPGPWyC2jkfQ+k+5g2RCyXch8KWxa6m5+e7J
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:49 2025 by rpki-client