Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/p09EjOhWLtzl4Q9B6S18yUFE3CI.roa
File: p09EjOhWLtzl4Q9B6S18yUFE3CI.roa (raw, json)
Hash identifier: vL0UEP+STLBTY8U+lWbddDJOb2Oliz6eM8niPZRyL2E=
Subject key identifier: A7:4F:44:8C:E8:56:2E:DC:E5:E1:0F:41:E9:2D:7C:C9:41:44:DC:22
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018D829497F28DBD63921C321F138D125D1B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/p09EjOhWLtzl4Q9B6S18yUFE3CI.roa
Signing time: Wed 07 Feb 2024 07:59:52 +0000
ROA not before: Wed 07 Feb 2024 07:59:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60068
IP address blocks: 103.114.40.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 25 Apr 2024 08:10:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:82:94:97:f2:8d:bd:63:92:1c:32:1f:13:8d:12:5d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 7 07:59:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a74f448ce8562edce5e10f41e92d7cc94144dc22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9d:b9:46:14:a7:2f:c6:df:85:3b:b7:1d:88:
56:2f:03:bc:ea:50:30:6f:8b:ae:fb:ef:de:83:dc:
5d:15:fb:28:9a:c0:6a:43:a8:eb:58:f2:56:eb:a0:
5b:75:fa:ca:8f:62:0f:41:9b:11:ed:ac:03:5b:86:
a9:78:45:b5:57:62:e4:eb:b8:b9:cd:87:8e:dd:f3:
2b:15:c9:22:1b:77:15:35:6f:1f:79:8b:b5:ba:d5:
dd:07:2d:b9:5a:47:8a:41:aa:e7:bb:62:25:16:ca:
43:86:42:df:05:64:34:86:2f:85:3c:23:c1:be:48:
6d:04:20:dc:02:8c:41:9b:6b:ac:ed:be:89:e5:82:
74:41:e9:73:07:a3:0f:99:04:5c:32:a8:da:96:7f:
e6:ce:43:7d:55:48:8b:1a:2e:2c:76:9c:f3:4b:aa:
d6:0a:45:36:d3:86:9d:57:ab:b0:33:9c:30:c9:63:
a2:83:45:31:00:ef:b4:2d:67:cf:3e:22:ae:fc:60:
44:91:95:8f:08:e9:cc:e7:95:6b:96:86:2c:9e:61:
14:32:9a:03:a3:2c:3d:29:47:88:7a:c6:99:14:d1:
e4:36:2b:90:13:47:df:01:f7:dd:2c:b5:f7:9b:43:
8c:75:dc:ee:02:21:f8:9e:75:4c:d6:07:c8:28:79:
fa:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4F:44:8C:E8:56:2E:DC:E5:E1:0F:41:E9:2D:7C:C9:41:44:DC:22
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/p09EjOhWLtzl4Q9B6S18yUFE3CI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.114.40.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:23:9e:a9:f2:43:53:6a:98:46:28:a2:04:10:f4:16:20:dd:
75:ff:97:b5:98:34:df:d3:a2:f0:16:95:f5:b8:e0:f0:dd:0c:
f4:c2:59:0f:3a:41:8d:ad:e0:0c:f9:26:cc:d2:df:05:6b:ef:
3f:81:f7:7c:9c:88:1d:00:a3:e3:52:5e:3e:18:33:14:0d:f2:
82:d1:03:1c:77:26:28:52:e6:90:e7:6b:4a:0f:67:44:d1:70:
a9:19:d6:e6:f6:2f:4f:3d:4b:9a:2e:a2:b2:58:82:ec:7e:d9:
08:69:b5:78:9c:20:a3:ac:60:83:b2:7b:e9:4c:ec:58:8c:8f:
8b:8d:11:4b:93:8f:29:56:e5:49:bb:09:14:94:62:e8:cd:53:
d7:86:d3:20:40:af:fb:16:31:41:0a:c6:77:18:1d:eb:ae:ca:
77:a3:67:d9:3c:28:3b:ee:49:5d:c0:01:92:48:3d:ff:c7:a6:
ec:b8:ad:2c:60:2b:28:7f:0a:20:83:9d:27:d3:83:69:48:17:
39:78:12:1b:50:cb:b0:12:8c:68:91:ed:04:5c:34:54:83:a0:
2e:eb:fe:04:c7:6b:96:9d:ae:62:12:4d:8b:22:48:4a:d9:6a:
18:17:f1:2f:9d:5c:4a:4b:61:57:76:15:b2:ad:6b:91:ba:fd:
4b:eb:ea:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 11:54:28 2024 by rpki-client on console-fra.rpki-client.org