Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/ShPI--hGEuKY78erTMhmkiSIbPM.roa
File: ShPI--hGEuKY78erTMhmkiSIbPM.roa (raw, json)
Hash identifier: 4m4o3lWZmFEOFUbNLcF8kxFEwRCKP7l+0fBlZsVT7qo=
Subject key identifier: 4A:13:C8:FB:E8:46:12:E2:98:EF:C7:AB:4C:C8:66:92:24:88:6C:F3
Certificate issuer: /CN=9522ab67922ce0275e8c61abfa82d2a754af6dc4
Certificate serial: 018CE9886AD4A63C6DBD61A7608D029197FF
Authority key identifier: 95:22:AB:67:92:2C:E0:27:5E:8C:61:AB:FA:82:D2:A7:54:AF:6D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/ShPI--hGEuKY78erTMhmkiSIbPM.roa
Signing time: Mon 08 Jan 2024 14:44:40 +0000
ROA not before: Mon 08 Jan 2024 14:44:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213382
IP address blocks: 103.102.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 23:27:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e9:88:6a:d4:a6:3c:6d:bd:61:a7:60:8d:02:91:97:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9522ab67922ce0275e8c61abfa82d2a754af6dc4
Validity
Not Before: Jan 8 14:44:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a13c8fbe84612e298efc7ab4cc8669224886cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d5:61:fb:9b:50:2b:eb:ee:e2:7a:63:48:fc:
69:3c:5c:c1:88:9c:34:92:27:f5:08:03:56:07:cc:
81:4e:74:b0:10:69:91:a8:b7:31:9c:7a:dc:da:1d:
ad:d0:4c:85:ee:00:94:1f:f3:d3:7f:83:37:75:d6:
b5:1e:6f:b0:1f:bd:5c:e8:38:01:c7:f8:05:02:9b:
ca:8c:5c:67:32:1d:bc:12:6b:b9:e8:e0:ee:4b:48:
d1:6f:1d:63:f6:39:62:ee:e0:4e:c0:9a:aa:1e:74:
d7:77:95:f4:d6:27:02:2f:75:42:77:30:26:48:6f:
2b:8a:56:da:ba:4b:a7:ab:b1:23:4a:d4:be:23:ea:
23:65:2a:ef:8c:5f:a6:ca:fa:20:19:da:1d:a5:1a:
4d:6b:46:98:8f:c5:d5:5f:f1:63:52:7d:f2:9e:95:
08:ef:e7:93:ed:01:60:af:55:8a:ff:28:b7:cd:2d:
55:fb:fa:75:55:3d:90:e4:68:b4:1a:39:3f:08:00:
f0:94:6e:8e:00:68:be:10:43:8b:e1:86:08:b9:ae:
88:37:59:a9:18:52:4d:4d:c7:d6:47:a4:32:cf:a6:
65:b0:09:cd:dd:65:82:33:5d:f1:9c:06:29:e4:51:
a0:77:b2:81:e7:ab:6d:a4:5c:1c:7a:bf:b7:32:f0:
f1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:13:C8:FB:E8:46:12:E2:98:EF:C7:AB:4C:C8:66:92:24:88:6C:F3
X509v3 Authority Key Identifier:
keyid:95:22:AB:67:92:2C:E0:27:5E:8C:61:AB:FA:82:D2:A7:54:AF:6D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/ShPI--hGEuKY78erTMhmkiSIbPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.102.230.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:be:19:b7:d6:6b:39:e5:45:a5:4b:3e:e6:70:7d:c6:11:fe:
41:ad:e1:d1:88:70:ff:bb:6d:ad:da:d7:20:67:ca:de:fc:2a:
43:10:cc:00:ed:88:bd:81:60:19:eb:3d:4e:f4:df:09:f9:96:
23:9b:75:ba:ae:91:ee:04:85:95:6a:9f:f4:71:de:aa:2a:b0:
08:aa:96:34:a4:e5:1b:54:4c:b4:99:f9:3f:d2:d5:36:f3:68:
87:7d:9a:a6:2f:9c:78:73:36:4e:5d:e3:31:1c:67:ea:c5:38:
4e:18:41:a8:fb:65:a8:60:1b:c0:7a:0e:22:af:9c:bb:50:41:
73:d1:35:c6:30:54:cd:86:06:c0:b8:d1:fa:97:79:23:94:77:
a9:6b:97:b3:05:d5:f8:83:e1:51:27:15:5e:ad:5d:2a:8d:bb:
ba:7a:23:33:5d:ad:36:c4:4a:cd:bc:6c:e1:e9:4a:60:c7:a3:
d8:ec:97:32:5b:06:df:1c:14:f8:08:6d:ef:fd:10:c1:f0:50:
03:33:15:41:30:05:60:3e:32:1a:09:88:e9:c3:1b:30:bc:5e:
29:50:1c:8f:40:89:c1:86:26:61:ed:9b:e8:c0:1c:8a:6b:a1:
c2:aa:a1:3e:78:42:d6:a4:6f:fb:c1:29:26:93:7f:52:cb:da:
a2:01:bd:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 01:01:29 2024 by rpki-client on console.sobornost.net