Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/SoNjmo92Jzz9_8ysXUHtnqvtv9g.roa
File: SoNjmo92Jzz9_8ysXUHtnqvtv9g.roa (raw, json)
Hash identifier: f8M4FcbX30HBaOTGCmqEHc4hQl9c8oecADnDL0H7ZOk=
Subject key identifier: 4A:83:63:9A:8F:76:27:3C:FD:FF:CC:AC:5D:41:ED:9E:AB:ED:BF:D8
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01946E45F7B96CA9A6C0BEA7A3495D18296B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/SoNjmo92Jzz9_8ysXUHtnqvtv9g.roa
Signing time: Thu 16 Jan 2025 08:41:06 +0000
ROA not before: Thu 16 Jan 2025 08:41:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 103.114.40.0/24 maxlen: 24
2a06:a600::/29 maxlen: 29
2a06:b5c0::/29 maxlen: 29
2a06:bf40::/29 maxlen: 29
2a0e:1a84::/32 maxlen: 32
2a0e:f600:5f::/48 maxlen: 48
2a0f:1e80:100::/48 maxlen: 48
2a0f:1e80:1986::/48 maxlen: 48
2a0f:1e84:20::/48 maxlen: 48
2a0f:3d80:bac::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a0f:e6c6:5532::/48 maxlen: 48
2a13:2b40::/29 maxlen: 32
2a13:e102:10::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 20 Jan 2025 12:08:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6e:45:f7:b9:6c:a9:a6:c0:be:a7:a3:49:5d:18:29:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 16 08:41:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a83639a8f76273cfdffccac5d41ed9eabedbfd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ed:22:f8:ed:39:73:56:92:95:df:d6:a0:77:
93:da:6f:17:eb:16:0c:6e:e0:24:0d:50:ee:37:73:
a9:c8:93:7f:0e:4e:3e:74:b0:e5:8f:78:8e:7f:b5:
5f:2e:e7:1c:83:04:62:b9:17:35:88:81:17:fe:d0:
e0:32:db:ea:29:e3:84:77:54:fe:af:15:36:d5:1e:
48:81:e2:87:7d:76:42:aa:af:ec:29:bb:88:6d:a3:
ce:0c:af:1f:62:50:56:b9:81:d0:c3:38:bc:82:b7:
48:22:56:e3:50:37:d2:0a:97:2b:76:73:f2:90:48:
fc:4a:f2:3c:a3:ea:71:cc:73:71:10:1e:ae:18:8a:
d3:3f:09:96:b8:34:13:50:09:c2:2d:94:39:3e:e5:
a0:b1:3e:59:f9:e7:fb:40:7c:57:b1:b1:3a:ab:f8:
70:8a:1b:34:6c:91:41:f3:07:39:d6:4b:c8:8d:d9:
50:c8:0d:77:ea:fc:62:8c:2a:15:ab:cb:83:b0:41:
32:1d:1a:53:45:bd:d9:59:b8:a3:54:26:90:c7:e9:
5e:ac:f5:3a:74:54:af:5e:b0:74:3f:69:b9:b6:fe:
97:83:66:75:3d:1f:39:d6:a9:1a:b8:5f:59:72:17:
0b:39:39:10:9b:ba:b6:d8:f1:fb:05:0b:01:8f:11:
04:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:83:63:9A:8F:76:27:3C:FD:FF:CC:AC:5D:41:ED:9E:AB:ED:BF:D8
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/SoNjmo92Jzz9_8ysXUHtnqvtv9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.114.40.0/24
IPv6:
2a06:a600::/29
2a06:b5c0::/29
2a06:bf40::/29
2a0e:1a84::/32
2a0e:f600:5f::/48
2a0f:1e80:100::/48
2a0f:1e80:1986::/48
2a0f:1e84:20::/48
2a0f:3d80:bac::/48
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a0f:e6c6:5532::/48
2a13:2b40::/29
2a13:e102:10::/48
Signature Algorithm: sha256WithRSAEncryption
3d:57:c1:91:c8:60:06:f5:da:37:63:ab:9e:6e:8e:f4:30:de:
81:bf:54:9e:e2:fc:f1:64:71:cb:40:b5:29:51:36:d7:9b:ea:
c0:51:7d:ab:6b:c2:17:53:fc:70:32:34:27:f5:eb:20:fa:93:
06:33:69:41:51:67:e9:ea:b1:76:d5:b1:0e:72:f3:72:9f:37:
d9:7a:23:19:e6:a6:43:a7:ff:3d:4f:97:1e:28:5b:0b:62:2b:
5f:4b:4c:b4:7b:b5:48:6e:6e:35:e3:18:4e:92:a4:37:fd:fb:
81:e1:70:c9:e3:1e:2e:e1:7e:5c:a5:a2:81:a2:3f:aa:8e:7f:
b6:a5:3e:aa:01:8d:b7:de:f7:18:67:c2:17:c1:39:ec:d5:95:
a6:4d:d6:3e:21:84:8f:f3:44:20:f1:cd:09:d0:1f:a3:66:1d:
6e:b1:e2:d7:9d:ab:85:a4:25:e0:12:14:91:9c:2b:d6:8a:53:
26:a2:a0:3f:47:1a:3c:c3:58:46:d2:73:07:cb:7b:06:dd:6a:
24:c3:12:c9:c8:72:d7:48:27:56:21:ee:96:ea:48:10:ac:9f:
e9:eb:ed:e5:6b:16:4d:df:aa:5f:a1:48:cc:8b:c2:d8:09:d0:
a0:5b:f7:2a:e4:96:3e:66:4f:3c:11:92:96:7b:29:24:e0:c8:
2b:79:dc:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:11:37 2025 by rpki-client