Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/xJwzJzgeTBtHeYixagn8-LYL6_A.roa
File: xJwzJzgeTBtHeYixagn8-LYL6_A.roa (raw, json)
Hash identifier: azyqtCJLyi0xoo86AwnVB2hwh8fuacwRnaKcgvDqNTo=
Subject key identifier: C4:9C:33:27:38:1E:4C:1B:47:79:88:B1:6A:09:FC:F8:B6:0B:EB:F0
Certificate issuer: /CN=9522ab67922ce0275e8c61abfa82d2a754af6dc4
Certificate serial: 018E09DD4A2D15B63FC8D83BDB0903CA30A7
Authority key identifier: 95:22:AB:67:92:2C:E0:27:5E:8C:61:AB:FA:82:D2:A7:54:AF:6D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/xJwzJzgeTBtHeYixagn8-LYL6_A.roa
Signing time: Mon 04 Mar 2024 14:28:01 +0000
ROA not before: Mon 04 Mar 2024 14:28:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15731
IP address blocks: 103.102.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 15:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:09:dd:4a:2d:15:b6:3f:c8:d8:3b:db:09:03:ca:30:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9522ab67922ce0275e8c61abfa82d2a754af6dc4
Validity
Not Before: Mar 4 14:28:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c49c3327381e4c1b477988b16a09fcf8b60bebf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e3:db:10:9e:5f:bf:37:db:06:19:01:ac:d8:
c3:18:90:69:65:de:d0:de:e4:6d:49:ee:f6:4c:c1:
86:2f:a0:7b:93:9c:38:e7:09:ea:5b:c8:ea:7c:da:
0e:1f:a5:d6:ec:27:15:4e:74:c4:ee:bd:c0:1a:13:
08:37:a7:47:5e:58:ee:80:f6:43:54:16:b8:37:b3:
51:09:37:8d:c3:ff:dd:eb:32:d3:d8:28:0b:a3:9d:
00:bf:35:01:bf:da:3e:f6:7f:cd:db:e2:1e:ef:7d:
35:15:95:70:27:cf:77:49:46:94:c0:fc:6a:c1:b5:
7c:4e:42:a8:11:5a:53:41:c6:20:79:63:e3:be:50:
bf:f5:01:42:36:85:f0:ba:7e:23:43:61:03:7b:00:
98:84:ed:20:0e:99:ff:4b:39:41:09:60:b9:58:d5:
43:e1:ae:87:da:f4:43:f4:f4:59:16:20:48:08:e6:
75:d3:12:67:8a:9f:1c:24:80:a6:0f:91:91:cc:21:
44:a7:cc:dd:04:2d:ca:96:6d:3c:ae:7c:98:3c:be:
91:e7:92:bb:47:43:eb:ae:f3:ef:9f:41:09:4f:ec:
33:31:90:89:09:d9:60:94:31:70:86:bb:41:70:b4:
84:ac:91:87:57:38:4d:a0:8b:1a:fd:6a:d0:2e:28:
40:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9C:33:27:38:1E:4C:1B:47:79:88:B1:6A:09:FC:F8:B6:0B:EB:F0
X509v3 Authority Key Identifier:
keyid:95:22:AB:67:92:2C:E0:27:5E:8C:61:AB:FA:82:D2:A7:54:AF:6D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/xJwzJzgeTBtHeYixagn8-LYL6_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.102.230.0/24
Signature Algorithm: sha256WithRSAEncryption
88:ef:86:a0:38:a9:88:b3:27:bf:db:96:a0:e5:b9:51:d4:49:
1d:8c:90:0d:8e:77:3f:e9:3f:00:f6:29:05:e9:3e:cf:1f:48:
4e:bd:77:d0:a2:07:c5:99:4b:ca:3d:b6:41:74:e0:5b:04:81:
35:d4:99:26:27:fa:65:09:14:3f:87:5a:8a:24:0c:bd:e9:27:
10:39:aa:70:f9:d1:f4:0b:75:f9:31:68:5c:b7:99:98:43:1c:
3e:b3:c9:20:c4:ee:a0:6d:da:17:b6:1c:8d:ca:47:13:bf:fe:
72:29:40:1e:43:04:fd:e2:96:4b:52:f9:ad:97:de:09:55:f4:
7d:48:60:31:5d:7a:c0:ca:64:b2:45:7c:52:d5:04:86:a5:0a:
b5:24:a6:8d:02:f5:3b:e9:ba:a0:2c:52:6a:98:46:84:80:a8:
b9:d0:52:fd:3c:24:95:55:1b:9a:13:aa:d6:26:37:90:dd:fc:
f1:98:88:60:6e:36:94:ed:7d:7e:a7:e4:4c:cc:1c:68:c6:b1:
f5:24:df:3c:3a:38:e9:4d:3f:80:5e:cf:31:69:a8:90:a3:0a:
d1:d3:34:17:4b:8d:dd:3e:38:f5:0e:37:37:4f:9a:ba:b4:ea:
3f:31:1f:ee:ed:9f:17:94:e2:07:2d:c9:01:cd:55:3a:eb:5e:
a1:2d:ef:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 5 19:08:35 2024 by rpki-client on console.sobornost.net