Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/06fe14-d146-4e66-a841-2c64c291353e/1/vGn_7SruQ0hTsSmkkoSH4fEl6yI.roa
File: vGn_7SruQ0hTsSmkkoSH4fEl6yI.roa (raw, json)
Hash identifier: CnCxAnZAsgoiKIcte+Ngkhlyc3pr98elcot93QHsxI4=
Subject key identifier: BC:69:FF:ED:2A:EE:43:48:53:B1:29:A4:92:84:87:E1:F1:25:EB:22
Certificate issuer: /CN=27c007e5082b8e8d8289018718cfd527a7893e5e
Certificate serial: 018DCBFAD058271C3BA92DF30D6EE33D19A1
Authority key identifier: 27:C0:07:E5:08:2B:8E:8D:82:89:01:87:18:CF:D5:27:A7:89:3E:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8AH5Qgrjo2CiQGHGM_VJ6eJPl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/06fe14-d146-4e66-a841-2c64c291353e/1/vGn_7SruQ0hTsSmkkoSH4fEl6yI.roa
Signing time: Wed 21 Feb 2024 14:03:48 +0000
ROA not before: Wed 21 Feb 2024 14:03:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215606
IP address blocks: 103.241.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 08:49:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cb:fa:d0:58:27:1c:3b:a9:2d:f3:0d:6e:e3:3d:19:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c007e5082b8e8d8289018718cfd527a7893e5e
Validity
Not Before: Feb 21 14:03:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc69ffed2aee434853b129a4928487e1f125eb22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f0:a0:74:15:6f:ff:4c:c5:1c:c2:1a:2f:63:
19:16:56:1b:7b:4c:66:05:9b:05:eb:f0:48:81:6b:
49:5f:79:c2:c6:a9:1d:d2:6c:bd:19:27:96:66:d9:
fc:88:89:74:09:d2:e3:9e:f6:45:1f:af:e8:77:78:
3c:7d:2e:4d:52:51:47:5d:69:de:04:79:83:2e:5a:
aa:d4:5b:24:46:0b:32:4e:81:50:37:b3:a4:28:3e:
ae:2d:00:69:b0:ce:99:85:19:a8:da:48:47:a4:c4:
bf:e8:1f:45:70:01:c6:2f:9d:03:a7:3a:cd:5a:94:
86:3a:2f:63:46:17:e0:5c:54:49:de:07:0d:bb:84:
64:fa:d7:41:48:46:2e:bb:51:70:fc:82:39:bf:4d:
9c:95:8b:c4:24:66:f5:eb:91:ce:8b:2c:83:9c:0c:
37:de:85:b0:eb:b8:c5:65:41:d0:7b:8c:42:10:9d:
3f:71:fc:49:49:cc:18:53:f0:46:87:cf:09:ed:c1:
a1:0f:3e:b1:e8:38:39:e7:fc:45:46:da:e9:8a:ef:
db:2b:be:b1:7c:b6:97:a0:d8:bc:aa:60:d8:33:01:
79:0b:7d:dc:ba:bf:47:5c:74:5f:a0:c7:28:b2:b6:
1a:65:2b:1e:a2:ab:4a:d6:32:25:a1:40:2b:aa:96:
94:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:69:FF:ED:2A:EE:43:48:53:B1:29:A4:92:84:87:E1:F1:25:EB:22
X509v3 Authority Key Identifier:
keyid:27:C0:07:E5:08:2B:8E:8D:82:89:01:87:18:CF:D5:27:A7:89:3E:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8AH5Qgrjo2CiQGHGM_VJ6eJPl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/06fe14-d146-4e66-a841-2c64c291353e/1/vGn_7SruQ0hTsSmkkoSH4fEl6yI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/06fe14-d146-4e66-a841-2c64c291353e/1/J8AH5Qgrjo2CiQGHGM_VJ6eJPl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.241.49.0/24
Signature Algorithm: sha256WithRSAEncryption
31:48:c5:d9:3d:55:18:c9:34:14:46:c8:10:be:d3:22:48:58:
d0:59:e1:d1:94:d6:3f:18:92:04:92:89:82:c4:c1:25:b9:03:
de:f5:09:78:e5:97:f5:90:af:54:f0:ff:06:07:5d:37:64:c6:
15:a5:93:a0:58:47:3d:5e:a1:d5:64:0c:db:71:4f:1b:c1:6f:
ab:d5:b2:9a:18:40:51:9b:1f:3e:87:74:6b:09:e0:a1:6b:be:
11:b5:18:e0:1f:bd:74:5a:24:22:38:ee:f5:db:7c:14:32:8b:
64:f7:09:ca:f1:78:d9:41:d7:ba:ba:6e:59:27:fe:1b:24:bd:
67:9c:0d:95:48:34:82:cb:09:1f:ba:b4:a2:f4:4b:56:be:47:
26:03:66:e7:96:c7:81:e1:3b:13:47:99:79:dd:a5:3a:74:0a:
c0:be:ef:aa:26:ae:b0:b1:50:4a:2d:be:3b:83:97:f6:04:e5:
56:64:cc:b3:dc:39:1e:c9:e7:2c:40:8f:d7:1e:41:97:6a:64:
36:13:5b:0d:85:cc:70:4e:25:7a:92:e3:27:01:70:91:e8:92:
2d:ab:ef:a4:b7:1f:ef:c1:9e:d8:1e:2e:38:d9:5b:84:6d:ae:
c9:1a:29:f6:eb:8c:d5:df:79:c8:66:4e:8b:c4:00:d6:a6:97:
50:81:0f:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY3L+tBYJxw7qS3zDW7jPRmhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3YzAwN2U1MDgyYjhlOGQ4Mjg5MDE4NzE4Y2ZkNTI3YTc4
OTNlNWUwHhcNMjQwMjIxMTQwMzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzY5ZmZlZDJhZWU0MzQ4NTNiMTI5YTQ5Mjg0ODdlMWYxMjVlYjIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/CgdBVv/0zFHMIaL2MZFlYbe0xm
BZsF6/BIgWtJX3nCxqkd0my9GSeWZtn8iIl0CdLjnvZFH6/od3g8fS5NUlFHXWne
BHmDLlqq1FskRgsyToFQN7OkKD6uLQBpsM6ZhRmo2khHpMS/6B9FcAHGL50DpzrN
WpSGOi9jRhfgXFRJ3gcNu4Rk+tdBSEYuu1Fw/II5v02clYvEJGb165HOiyyDnAw3
3oWw67jFZUHQe4xCEJ0/cfxJScwYU/BGh88J7cGhDz6x6Dg55/xFRtrpiu/bK76x
fLaXoNi8qmDYMwF5C33cur9HXHRfoMcosrYaZSseoqtK1jIloUArqpaU/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLxp/+0q7kNIU7EppJKEh+HxJesiMB8GA1UdIwQY
MBaAFCfAB+UIK46NgokBhxjP1SeniT5eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjhBSDVRZ3JqbzJDaVFHSEdNX1ZKNmVKUGw0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8wNmZlMTQtZDE0Ni00ZTY2LWE4NDEt
MmM2NGMyOTEzNTNlLzEvdkduXzdTcnVRMGhUc1Nta2tvU0g0ZkVsNnlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi8wNmZlMTQtZDE0Ni00ZTY2LWE4NDEtMmM2NGMyOTEzNTNl
LzEvSjhBSDVRZ3JqbzJDaVFHSEdNX1ZKNmVKUGw0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/ExMA0G
CSqGSIb3DQEBCwUAA4IBAQAxSMXZPVUYyTQURsgQvtMiSFjQWeHRlNY/GJIEkomC
xMEluQPe9Ql45Zf1kK9U8P8GB103ZMYVpZOgWEc9XqHVZAzbcU8bwW+r1bKaGEBR
mx8+h3RrCeCha74RtRjgH710WiQiOO7123wUMotk9wnK8XjZQde6um5ZJ/4bJL1n
nA2VSDSCywkfurSi9EtWvkcmA2bnlseB4TsTR5l53aU6dArAvu+qJq6wsVBKLb47
g5f2BOVWZMyz3DkeyecsQI/XHkGXamQ2E1sNhcxwTiV6kuMnAXCR6JItq++ktx/v
wZ7YHi442VuEba7JGin264zV33nIZk6LxADWppdQgQ9I
-----END CERTIFICATE-----
Generated at Fri Feb 23 13:40:50 2024 by rpki-client on console-fra.rpki-client.org