Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ddSWUegaI-ep4SDw1ZlD0sb-08E.roa
File: ddSWUegaI-ep4SDw1ZlD0sb-08E.roa (raw, json)
Hash identifier: HaJEyFyK+PeYBY5U0USlaq8TLz1CNYryjFIdkQ+a4t8=
Subject key identifier: 75:D4:96:51:E8:1A:23:E7:A9:E1:20:F0:D5:99:43:D2:C6:FE:D3:C1
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0194839CEB5AABC9A651961594B42DF728ED
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ddSWUegaI-ep4SDw1ZlD0sb-08E.roa
Signing time: Mon 20 Jan 2025 12:08:06 +0000
ROA not before: Mon 20 Jan 2025 12:08:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 103.114.40.0/24 maxlen: 24
2a06:a600::/29 maxlen: 29
2a06:b5c0::/29 maxlen: 29
2a06:bf40::/29 maxlen: 29
2a0e:1a84::/32 maxlen: 32
2a0e:f600:5f::/48 maxlen: 48
2a0f:1e80:100::/48 maxlen: 48
2a0f:1e80:1986::/48 maxlen: 48
2a0f:1e84:20::/48 maxlen: 48
2a0f:3d80:bac::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a0f:e6c6:5532::/48 maxlen: 48
2a13:2b40::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 21 Jan 2025 09:06:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:83:9c:eb:5a:ab:c9:a6:51:96:15:94:b4:2d:f7:28:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 20 12:08:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=75d49651e81a23e7a9e120f0d59943d2c6fed3c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5e:55:f4:d7:1d:89:05:61:79:3f:0d:22:b5:
27:f1:f6:01:37:c7:64:a3:87:8c:66:4b:04:b6:d9:
ec:10:43:e8:78:7f:03:de:90:58:af:78:a0:62:0b:
de:42:9c:3c:09:16:63:ac:41:ae:a1:c0:4a:1a:ce:
84:fe:a4:4a:2c:d6:b3:8b:0b:b4:32:d6:99:14:0f:
63:85:2c:11:a8:10:e7:e7:2f:ec:97:b4:2b:39:c3:
50:69:16:5a:22:72:ff:60:0a:f6:90:d7:90:0e:5e:
dc:42:a8:b7:54:0b:7f:1d:bd:7e:3d:83:b7:77:ae:
d4:58:f4:f4:68:fc:d7:67:3a:6a:a8:6a:9d:c4:94:
d5:0d:29:5d:f0:f1:7f:c8:29:1c:dc:13:35:c7:28:
9e:c9:4f:e3:ff:83:f9:dd:0b:54:9e:d9:b9:12:e5:
02:cf:ae:42:59:ae:7a:08:fe:5b:22:0c:f8:8c:bb:
2a:89:86:ae:cb:0f:52:0d:c8:dd:92:6f:6b:98:18:
07:e7:e2:67:9a:dd:41:c8:2e:7c:e7:90:4d:83:58:
81:13:a4:fe:35:85:8f:85:e7:22:01:85:4d:54:98:
82:0c:8f:c9:bd:20:e2:cb:3e:0c:b1:0c:c8:b9:fc:
71:9a:94:64:a8:0a:d6:46:61:45:ca:14:c0:cc:3b:
89:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D4:96:51:E8:1A:23:E7:A9:E1:20:F0:D5:99:43:D2:C6:FE:D3:C1
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ddSWUegaI-ep4SDw1ZlD0sb-08E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.114.40.0/24
IPv6:
2a06:a600::/29
2a06:b5c0::/29
2a06:bf40::/29
2a0e:1a84::/32
2a0e:f600:5f::/48
2a0f:1e80:100::/48
2a0f:1e80:1986::/48
2a0f:1e84:20::/48
2a0f:3d80:bac::/48
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a0f:e6c6:5532::/48
2a13:2b40::/29
Signature Algorithm: sha256WithRSAEncryption
96:0f:7a:ad:db:2f:52:4c:f6:fe:81:49:d6:20:86:07:b6:85:
57:e9:7b:23:4c:b0:86:48:0b:56:4f:e7:6c:dc:53:42:4f:4e:
69:1e:01:f6:83:75:1a:2a:8d:d0:89:84:a3:0e:c3:80:c9:6d:
86:01:a7:75:f6:b1:2a:f1:a7:e3:ad:38:10:3c:73:a5:a5:0d:
6c:dd:ee:34:15:65:bf:3a:4a:85:2f:ae:45:04:e0:9c:af:6f:
b2:26:0f:75:ef:c4:16:d2:8e:f1:3b:b3:9b:28:2c:58:c5:e1:
09:60:bc:e7:74:a8:82:f2:73:36:5a:1c:9f:a0:4e:9f:a9:f4:
ae:51:0e:b6:4b:1e:f0:fb:ec:f7:df:25:89:f7:e1:52:16:6a:
d0:c9:ac:e2:27:0d:bb:c1:62:b6:16:07:b3:7f:a6:b6:41:75:
ac:a2:5a:cd:46:24:24:dc:63:cf:84:67:31:9c:70:41:5c:ad:
91:58:7f:71:11:fc:10:2d:7f:6a:0d:f1:0b:6f:89:5c:d8:7b:
db:8e:65:9e:c5:e8:39:74:46:7c:08:d4:24:79:c4:86:fb:b5:
55:26:31:d4:1d:aa:90:94:68:72:e1:46:72:de:2f:7a:28:43:
de:71:d7:58:36:a0:48:bc:0b:06:b6:65:f7:59:e2:02:c3:3e:
cb:18:86:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:23:43 2025 by rpki-client