Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/PYbklWnLmhk0MIhpwoEhpc2Ffgs.roa
File: PYbklWnLmhk0MIhpwoEhpc2Ffgs.roa (raw, json)
Hash identifier: CBBUbPzgNiKAieLHglCtPL3LYxJQw3XGa6UKA7s8190=
Subject key identifier: 3D:86:E4:95:69:CB:9A:19:34:30:88:69:C2:81:21:A5:CD:85:7E:0B
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0186E12D4A8D9483C93181D1FCDAA8C43FB4
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/PYbklWnLmhk0MIhpwoEhpc2Ffgs.roa
Signing time: Tue 14 Mar 2023 17:31:27 +0000
ROA not before: Tue 14 Mar 2023 17:31:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212219
IP address blocks: 103.47.56.0/24 maxlen: 24
103.47.57.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e1:2d:4a:8d:94:83:c9:31:81:d1:fc:da:a8:c4:3f:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Mar 14 17:31:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d86e49569cb9a1934308869c28121a5cd857e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a2:f2:ad:95:f5:39:d4:d8:87:f8:49:69:d2:
18:bb:fd:12:d4:5d:8f:61:8c:cd:13:e5:cc:80:00:
e0:84:0e:fa:40:0c:a7:99:fa:ed:01:9e:95:4d:30:
9a:59:88:dd:98:56:89:83:6d:94:3f:3c:43:ec:58:
29:7c:2e:0c:80:7b:b8:51:7a:a2:3f:e1:af:9d:96:
f5:ae:08:70:5c:3b:25:62:d8:aa:d1:e2:c7:22:e5:
36:55:f0:57:90:a1:b9:38:89:17:43:09:b9:9a:4c:
e6:1e:81:de:35:b9:dd:48:69:58:f6:23:a2:01:10:
f2:61:a8:38:00:4e:aa:7d:80:c2:50:87:50:85:5b:
a4:c7:48:47:c3:9e:6c:8a:dd:34:3d:bd:21:1f:25:
59:84:7c:6f:60:ac:31:0a:6c:64:d6:8e:b6:39:4c:
ed:b5:f3:3f:b8:6f:1c:73:ac:3f:e9:80:91:9b:9b:
d2:35:a3:d3:62:b0:ae:ff:bb:c4:98:0f:b1:f4:20:
52:9f:af:b9:2e:bb:cc:e8:d3:6d:82:f8:22:f8:b0:
17:49:1f:61:91:02:0d:ab:94:5c:f4:75:47:d7:16:
b6:42:56:d6:32:20:fd:36:fa:0a:a2:25:47:43:a8:
5f:dc:e5:35:27:1e:e6:3d:b4:9e:4b:a0:25:f1:f5:
c9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:86:E4:95:69:CB:9A:19:34:30:88:69:C2:81:21:A5:CD:85:7E:0B
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/PYbklWnLmhk0MIhpwoEhpc2Ffgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.47.56.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:4e:46:8c:83:88:fd:0f:f8:4e:10:69:15:d9:e6:e3:91:fa:
14:b3:93:60:e8:87:e3:fe:9a:dc:77:ae:00:7f:e8:7c:fe:e4:
17:64:6a:f3:ca:e6:4e:48:36:96:ee:2c:4d:28:70:a0:d0:1b:
bc:da:b8:7a:9d:9f:31:36:ba:c3:3c:be:3f:8f:80:bf:05:c7:
6d:50:8b:53:83:49:e2:18:67:96:fe:46:08:3c:a5:60:f3:e5:
0b:57:ea:15:2b:94:bf:20:42:dc:b8:ed:c7:fb:a0:f4:0e:ff:
34:c5:7a:8e:d4:46:2c:d9:61:ec:ed:ae:09:d3:73:b8:1e:f4:
19:d6:93:6e:cc:69:99:2e:82:e8:00:a4:a7:cc:be:85:d7:5a:
76:ca:8e:d4:b2:32:da:2a:14:a7:e6:a3:9f:e5:07:22:89:17:
be:e5:4a:d7:49:38:b4:76:95:40:fa:7a:33:0d:0b:ff:76:4b:
b9:3a:ff:b6:13:3d:fc:1d:fa:8a:b2:04:57:55:91:0f:b2:95:
42:46:da:89:8b:e2:a0:95:3c:e8:18:80:22:5d:df:c0:21:c2:
fa:b8:ee:8a:59:be:ba:56:c0:b7:48:98:a9:ca:7d:f4:6f:a3:
82:5a:96:cf:f5:30:14:ae:85:27:99:51:cc:7c:81:68:34:50:
bb:26:4e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:54 2023 by rpki-client on console-fra.rpki-client.org