Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/0AuCEro2COiMHqtE-3hCtwbcSlw.roa
File: 0AuCEro2COiMHqtE-3hCtwbcSlw.roa (raw, json)
Hash identifier: s/GkjhHUCvyzQUqlRDoK1VS+F8+oQtB1yN+b871odAk=
Subject key identifier: D0:0B:82:12:BA:36:08:E8:8C:1E:AB:44:FB:78:42:B7:06:DC:4A:5C
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018AF49442BD1C38CD06F4587B40B6C75448
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/0AuCEro2COiMHqtE-3hCtwbcSlw.roa
Signing time: Tue 03 Oct 2023 08:07:51 +0000
ROA not before: Tue 03 Oct 2023 08:07:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399471
IP address blocks: 160.214.105.0/24 maxlen: 24
160.214.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Oct 2023 12:27:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f4:94:42:bd:1c:38:cd:06:f4:58:7b:40:b6:c7:54:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Oct 3 08:07:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d00b8212ba3608e88c1eab44fb7842b706dc4a5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:35:ea:3f:2f:61:50:7e:87:b5:8d:e1:e9:8e:
e1:d5:33:9e:09:9d:dd:c4:69:c4:fa:6d:32:f9:6f:
3c:45:5f:d8:97:cf:d7:37:40:d6:82:bc:0d:8e:b0:
ef:55:43:ef:11:8c:82:1c:1e:a2:f8:64:35:45:4e:
6b:69:8e:24:4e:13:74:e1:f3:d9:13:a7:01:6a:09:
cf:a1:c4:3a:a4:53:63:af:eb:43:bb:2e:a4:f7:fa:
3e:d9:68:54:a7:6c:d9:9d:b3:b9:1b:c6:3a:e9:20:
68:b2:7e:71:2b:18:0a:61:db:69:45:fa:2a:f9:f7:
70:f6:13:a1:bd:2b:8a:11:33:93:66:a1:a7:34:95:
c8:85:2b:50:b4:fb:96:28:90:fa:04:66:80:2b:1e:
76:fc:d1:5d:2e:d6:7c:6b:83:ff:96:de:45:9c:6b:
82:6a:51:bc:2e:b9:c3:b2:d1:dc:59:a6:4a:a1:41:
04:62:11:33:51:33:51:d6:d3:86:83:9e:66:d6:56:
39:46:d0:35:d4:35:25:d9:f3:a0:71:68:75:5b:21:
25:61:3e:dd:0c:26:98:54:67:7d:be:c8:05:ac:00:
a5:3b:b3:f5:6c:7b:7c:00:07:9a:7e:1a:ce:ae:03:
56:68:f2:d5:7e:01:88:32:69:8e:01:17:63:dc:f9:
c8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0B:82:12:BA:36:08:E8:8C:1E:AB:44:FB:78:42:B7:06:DC:4A:5C
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/0AuCEro2COiMHqtE-3hCtwbcSlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.104.0/23
Signature Algorithm: sha256WithRSAEncryption
68:f2:ec:8f:ae:7f:c2:1b:49:e6:04:8a:69:6c:53:91:6e:83:
9a:c0:52:f6:76:ad:d2:09:a2:fd:d6:32:c2:c0:96:10:2d:a5:
34:11:34:10:5a:db:4f:c5:95:99:f0:c8:4b:e3:3d:09:06:fb:
fc:b7:9c:7d:bb:c6:ae:5c:69:ed:05:cb:ba:bd:0d:24:64:a6:
69:36:7c:03:ef:46:fe:bc:6c:34:59:7e:f4:7a:7e:7f:45:e9:
56:5d:b0:b8:59:05:22:89:cf:0b:25:0a:36:c5:0e:c1:50:f6:
c1:0e:be:09:02:91:53:ea:26:42:1e:c8:20:ef:fa:ee:49:1a:
9c:95:23:fe:e3:15:40:33:58:62:f5:47:a3:d1:3e:91:85:27:
12:97:31:0b:73:3d:d6:b9:e3:12:4d:a1:05:05:bb:ae:1d:97:
f4:c9:9b:a4:8d:9c:10:de:52:f4:a7:4e:40:26:d5:57:ec:bd:
70:5d:a3:aa:00:d5:4b:44:f4:f4:8d:87:68:cc:cf:66:40:18:
9c:29:8d:04:d9:f5:47:82:a7:50:72:f5:bc:bd:06:70:55:f4:
1e:44:6d:4b:41:dc:5d:81:d1:5d:ae:35:f0:b6:13:c8:5b:81:
c8:9e:02:8b:bb:c8:cb:70:23:4a:54:77:5a:52:e9:e1:d2:9d:
14:f8:19:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:33 2024 by rpki-client on console-ams.rpki-client.org