Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/9qQQ1e2ktA_BFVQbTAZ2orfUbfY.roa
File: 9qQQ1e2ktA_BFVQbTAZ2orfUbfY.roa (raw, json)
Hash identifier: hm+1SCaLjM/4kUI4LJWs0dKsLTgghsp8IloV8zbFirI=
Subject key identifier: F6:A4:10:D5:ED:A4:B4:0F:C1:15:54:1B:4C:06:76:A2:B7:D4:6D:F6
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0186A8AAA37BD92265AF8E63E0459CCDF921
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/9qQQ1e2ktA_BFVQbTAZ2orfUbfY.roa
Signing time: Fri 03 Mar 2023 18:10:00 +0000
ROA not before: Fri 03 Mar 2023 18:10:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 103.47.58.0/24 maxlen: 24
103.47.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a8:aa:a3:7b:d9:22:65:af:8e:63:e0:45:9c:cd:f9:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Mar 3 18:10:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6a410d5eda4b40fc115541b4c0676a2b7d46df6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f8:78:c9:31:a5:aa:8d:5e:54:ab:84:8c:db:
49:a6:5a:c8:03:e7:8e:99:22:4a:0e:59:b5:3f:5d:
cf:52:34:56:32:24:79:a6:00:23:37:8b:20:a8:10:
0c:c7:d5:f2:0e:33:f6:71:61:0f:20:35:5a:a5:b3:
5d:44:a7:73:0d:e4:2f:aa:aa:24:78:9a:68:d3:8c:
9e:9b:0b:f6:6c:d4:66:52:90:1f:15:07:44:67:3b:
80:da:a4:f9:ae:03:39:94:ef:0a:77:c8:b7:7f:ae:
26:8d:04:73:6e:7a:a2:cd:d6:1b:00:bf:ff:0e:eb:
b1:99:76:11:b9:0d:e0:b3:a7:88:3a:f6:22:42:c0:
d8:25:7f:e6:4e:59:cf:c6:c2:20:f6:70:a0:91:3d:
f0:b3:76:f3:91:66:60:72:07:c8:65:4d:2d:76:95:
6c:39:63:75:ff:f0:a0:87:e8:68:41:8e:90:4f:09:
da:b1:76:63:9f:47:24:51:f4:20:d1:03:41:f8:f3:
a2:57:f9:4f:9b:00:27:5d:2d:18:06:20:10:0b:a6:
22:25:29:9a:e9:43:20:1b:7b:69:38:5d:b5:0e:9a:
62:7d:3d:e1:6c:4d:dd:3c:0b:65:d8:95:c4:4d:57:
4f:bc:a8:5d:a9:a6:e9:36:78:44:37:b0:8d:cf:78:
e1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A4:10:D5:ED:A4:B4:0F:C1:15:54:1B:4C:06:76:A2:B7:D4:6D:F6
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/9qQQ1e2ktA_BFVQbTAZ2orfUbfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.47.58.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:46:b3:c1:53:d4:84:e4:45:d5:3c:f3:d5:3f:d1:53:8b:6e:
01:b9:e7:16:2d:6f:a5:16:70:05:b5:0b:dc:d5:5c:bd:57:f5:
ee:db:6e:17:03:e7:7c:ff:23:90:03:a6:00:15:3b:c1:0c:08:
38:f8:35:0a:6e:ec:a5:67:e1:42:db:01:00:cc:52:8c:72:45:
9f:d2:81:62:9e:14:0b:40:28:bb:a0:e7:0a:79:ee:30:bd:99:
92:22:fe:24:93:76:d7:a8:0e:be:b7:61:ef:0c:81:6a:d6:e5:
56:b7:f3:29:79:a8:56:1d:12:00:b4:4e:ea:67:57:0c:70:8b:
aa:c6:06:1d:86:79:fa:af:a5:ff:03:ea:91:b8:b2:0b:fe:da:
a4:63:9d:25:5b:46:52:11:72:84:02:a8:f3:aa:b7:95:62:f7:
11:17:2f:e5:58:20:00:1e:96:9f:97:7a:cb:a2:b7:6b:05:32:
54:8c:ed:f5:c7:3f:38:02:ba:4d:ec:57:60:77:c2:0a:5d:29:
84:66:ab:c9:1b:a9:42:d3:de:ff:e1:01:98:e2:c6:35:74:52:
43:73:be:4a:c3:4a:22:51:77:21:f0:5a:37:b1:2b:d5:3c:35:
e7:9a:51:bf:1b:ec:27:1b:c1:50:54:3a:a4:52:de:59:ca:28:
64:11:f6:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:47 2023 by rpki-client on console.sobornost.net