Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/oXYzbU08iySDQ1OZXbYGEHtZCZQ.roa
File: oXYzbU08iySDQ1OZXbYGEHtZCZQ.roa (raw, json)
Hash identifier: UxbNQEnmJ9GSPMA5Vl9xRLqusDpWZraDgpr3oaCpqRY=
Subject key identifier: A1:76:33:6D:4D:3C:8B:24:83:43:53:99:5D:B6:06:10:7B:59:09:94
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 01869EE4F18D2937EB4339F4B59036D70624
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/oXYzbU08iySDQ1OZXbYGEHtZCZQ.roa
Signing time: Wed 01 Mar 2023 20:37:29 +0000
ROA not before: Wed 01 Mar 2023 20:37:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212512
IP address blocks: 160.20.109.0/24 maxlen: 24
185.243.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Nov 2023 16:50:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9e:e4:f1:8d:29:37:eb:43:39:f4:b5:90:36:d7:06:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Mar 1 20:37:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a176336d4d3c8b24834353995db606107b590994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:db:06:e1:4a:b8:aa:79:4c:65:c3:d4:48:0a:
ba:a4:ab:72:ab:15:49:5c:b2:eb:c2:92:95:f8:09:
08:80:31:df:ca:af:8d:23:fa:ad:da:3e:01:15:e7:
73:bf:ab:0d:73:2e:52:07:b3:07:5f:aa:49:01:58:
8c:3d:1f:eb:4c:74:99:0c:00:d4:8f:15:62:51:b6:
4f:d6:44:ff:48:50:f8:ee:63:84:c6:32:34:4e:a1:
c0:ae:59:6c:e2:09:57:c1:05:48:e4:0d:09:4b:02:
f9:d3:1f:d6:06:d9:2c:d4:64:21:8d:01:52:59:4e:
34:ca:0e:12:6c:ef:a8:e4:6a:ba:1c:78:14:04:57:
62:b9:3c:45:b0:3a:8e:f3:c4:f6:8c:31:3c:ae:ee:
e3:86:5f:89:63:5e:25:75:bd:c1:e5:c9:a2:73:97:
55:db:87:73:2d:ae:1f:db:2b:3e:86:3c:ca:a6:7c:
53:d5:68:15:2d:1a:ca:9f:59:1b:5b:e2:f2:6b:33:
e8:d2:36:33:af:28:ca:25:55:c3:7b:0c:9b:5d:88:
1f:a1:5f:16:06:85:4a:8c:dd:d8:f0:40:1b:3b:1a:
de:3e:1e:06:e9:ce:ad:97:22:c1:53:8e:63:bb:85:
2c:6b:dc:81:7c:63:6d:db:3a:16:a5:2d:6e:0c:b6:
99:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:76:33:6D:4D:3C:8B:24:83:43:53:99:5D:B6:06:10:7B:59:09:94
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/oXYzbU08iySDQ1OZXbYGEHtZCZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.20.109.0/24
185.243.181.0/24
Signature Algorithm: sha256WithRSAEncryption
37:76:78:da:cc:84:49:1b:e0:88:55:3c:d5:f7:5a:45:c1:30:
39:e8:cc:2e:e5:33:52:9b:6c:d4:49:76:ac:cc:21:1c:85:63:
1b:79:c1:1a:d5:82:e3:4d:c3:50:8b:2a:6e:45:95:a1:70:6c:
c8:e9:f5:05:bf:69:69:16:e8:e3:9c:5e:15:20:e6:da:d1:e2:
8d:42:11:b4:8d:f1:85:3b:7f:48:ee:1c:bb:e0:f4:b7:ae:9c:
b3:7c:a2:42:f6:7c:20:72:54:22:cc:22:4c:6c:70:0c:35:0a:
e1:82:f3:2c:6d:4e:fb:a7:fe:2d:26:6f:c6:f5:1a:2f:ef:d2:
e8:b6:8a:a8:81:54:04:ab:21:7f:7a:92:25:09:a6:bf:84:86:
6e:af:09:4a:9f:8a:b4:2a:7d:87:e9:3f:80:e8:7f:f1:23:df:
33:de:64:77:cb:4c:8a:58:6d:7c:f6:78:bd:9c:f9:bc:f4:4f:
fd:5d:a3:60:e8:2f:f3:1a:0f:46:2a:e2:ec:3a:48:65:98:9c:
f7:51:6c:d2:4c:58:fa:09:c4:bd:e9:09:5f:b1:ef:b8:80:fe:
60:08:39:08:61:2a:00:3b:d4:84:95:87:6f:5b:8b:73:16:5d:
27:c4:ee:92:13:4f:d1:a3:12:64:98:6e:f2:64:1a:68:b8:41:
a2:54:1e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org