Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/2Hg49r6U2po9HQmCWOKekbi7ZkE.roa
File: 2Hg49r6U2po9HQmCWOKekbi7ZkE.roa (raw, json)
Hash identifier: ZkpTVBmF3LeXDCcfH+x8nBx90GWyelwmYbm3QoQHZ3c=
Subject key identifier: D8:78:38:F6:BE:94:DA:9A:3D:1D:09:82:58:E2:9E:91:B8:BB:66:41
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018A6A8F5A66BF824D70A8F1A101AED67BE3
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/2Hg49r6U2po9HQmCWOKekbi7ZkE.roa
Signing time: Wed 06 Sep 2023 12:54:54 +0000
ROA not before: Wed 06 Sep 2023 12:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36113
IP address blocks: 160.214.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Oct 2023 05:36:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6a:8f:5a:66:bf:82:4d:70:a8:f1:a1:01:ae:d6:7b:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Sep 6 12:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d87838f6be94da9a3d1d098258e29e91b8bb6641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:97:60:6b:d9:fc:ae:70:5f:14:10:3a:46:16:
a8:81:4a:f8:7d:ee:80:db:5f:63:4f:f1:0e:5e:4e:
82:96:30:df:2b:b8:de:ae:8d:4a:ac:02:46:32:96:
0c:ef:c1:6d:0b:80:7e:ff:b5:9b:2d:a8:56:a8:76:
f1:be:ed:6e:4a:84:49:b6:10:97:dc:11:d8:30:8f:
01:a3:c0:fa:ad:a0:18:9a:94:eb:3f:d4:6f:84:1e:
b7:4c:04:14:7f:04:cf:f3:e5:a6:b9:a9:98:91:ad:
4b:d6:e4:6b:c5:70:16:88:a3:19:19:0c:93:e3:ef:
1c:b1:5b:0a:ca:3b:7c:54:49:21:fc:14:44:04:33:
c8:73:84:cd:c4:8a:d0:77:3e:73:c0:0f:78:cb:7a:
30:0a:10:74:a2:b5:bf:f4:b8:33:08:06:df:f0:a2:
f4:82:2c:f6:f8:af:08:5d:ef:ab:e3:1b:3e:5d:9e:
0c:d4:68:03:07:94:14:32:88:26:9a:e7:d9:61:a3:
24:8a:6b:41:88:6e:22:95:6f:f4:a5:2d:ce:ed:6d:
56:d8:3f:05:32:2b:93:30:f4:4e:8b:1e:7e:0a:a5:
4b:35:81:55:6b:04:26:03:f3:74:aa:0b:98:7b:02:
7f:d7:8a:00:7c:b5:53:c2:d2:6f:c9:fa:ad:d8:3b:
81:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:78:38:F6:BE:94:DA:9A:3D:1D:09:82:58:E2:9E:91:B8:BB:66:41
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/2Hg49r6U2po9HQmCWOKekbi7ZkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.113.0/24
Signature Algorithm: sha256WithRSAEncryption
74:9d:b6:04:7b:d3:ee:aa:38:08:68:03:f3:81:23:61:f3:19:
3b:af:0b:6a:5c:60:ee:eb:ca:4f:b5:00:28:fb:0f:3a:f1:8c:
96:37:e3:22:71:07:60:32:85:85:75:3b:94:9b:50:79:5d:71:
84:82:e4:42:d6:4e:04:e7:aa:13:cd:db:ad:67:cc:6a:45:13:
15:b2:9c:22:c3:17:13:de:4b:50:ad:48:46:4a:8d:60:be:65:
51:a9:9f:b3:d0:2e:9f:88:8a:c1:de:76:79:aa:a4:01:f8:9d:
3d:e4:cb:62:dd:f5:f8:02:50:28:2d:12:8a:53:f2:ef:14:41:
79:e0:35:14:0e:81:17:da:a9:da:af:06:ef:ed:9a:9c:c7:20:
b7:c9:9c:4e:f4:0c:4e:0b:69:84:d7:46:dd:79:02:f0:36:02:
1f:c1:ef:c7:97:39:44:42:c3:45:74:36:dc:0a:f1:e9:6c:4b:
ed:fd:a1:71:ab:88:80:61:3e:bd:a4:ce:f9:6a:ab:88:ac:bc:
32:5a:70:55:05:d5:fe:cd:f7:ca:30:f7:35:d9:15:16:70:19:
01:7b:cb:6b:45:4e:72:d9:6b:2c:42:76:36:ae:2b:92:23:78:
9a:77:11:97:71:b4:db:49:ff:39:16:12:96:2b:e3:b0:3a:db:
ba:43:cf:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:11 2024 by rpki-client on console-fra.rpki-client.org