Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/t8Wx8-AvE_sqx8-p6YOfxE6lYCs.roa
File: t8Wx8-AvE_sqx8-p6YOfxE6lYCs.roa (raw, json)
Hash identifier: RxROcuDZHd94BCj53SWmnRZ6u/wyE1aXtadq6zJpR+w=
Subject key identifier: B7:C5:B1:F3:E0:2F:13:FB:2A:C7:CF:A9:E9:83:9F:C4:4E:A5:60:2B
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018C3EFA3794A45490FDDCB37FCBCC566317
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/t8Wx8-AvE_sqx8-p6YOfxE6lYCs.roa
Signing time: Wed 06 Dec 2023 11:53:54 +0000
ROA not before: Wed 06 Dec 2023 11:53:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 160.214.98.0/24 maxlen: 25
160.214.97.0/24 maxlen: 24
160.214.96.0/24 maxlen: 24
160.214.102.0/24 maxlen: 24
160.214.101.0/24 maxlen: 24
160.214.99.0/24 maxlen: 24
160.214.103.0/24 maxlen: 24
160.214.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Dec 2023 11:13:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:fa:37:94:a4:54:90:fd:dc:b3:7f:cb:cc:56:63:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Dec 6 11:53:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7c5b1f3e02f13fb2ac7cfa9e9839fc44ea5602b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6d:03:32:b1:dd:0d:54:53:13:23:ca:dd:37:
48:0d:6f:71:ae:cc:6f:36:35:39:08:01:4e:1a:bc:
a2:db:1e:9d:11:e2:f1:e0:d8:4c:38:30:c0:bb:a9:
ea:ce:02:b8:5e:f0:87:c6:52:3e:8e:a4:33:e2:97:
1e:f1:58:32:7f:24:8e:5c:a3:50:f2:1f:cb:7d:ed:
41:28:aa:9a:52:47:6e:d5:b2:72:7e:af:df:19:07:
e1:32:75:07:e9:bb:1d:3c:f6:50:e3:ef:ca:4c:20:
3e:70:5a:e8:67:4e:c0:ad:f7:2a:4d:44:df:dc:e9:
43:f4:bd:78:80:05:e0:66:ed:ac:4c:e3:b8:8e:74:
23:32:f8:12:80:65:2d:72:5b:7a:50:e3:a5:5d:c9:
1c:b3:09:45:f3:69:98:68:8e:37:64:70:9a:a7:63:
cc:21:51:41:a3:dc:e6:7b:d8:9a:f7:c2:00:01:af:
b9:6b:e9:68:09:99:d6:a2:3b:a0:a9:41:01:29:2f:
0a:87:45:59:7e:d1:be:03:08:51:6d:be:10:9b:43:
90:dc:b5:dd:fc:69:aa:b9:71:eb:9d:48:c8:d3:93:
d5:7a:56:0c:16:a2:64:a0:91:b7:d8:f8:fc:9e:97:
6e:69:9c:de:24:30:80:ce:1f:54:78:c5:cc:4f:a1:
d1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C5:B1:F3:E0:2F:13:FB:2A:C7:CF:A9:E9:83:9F:C4:4E:A5:60:2B
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/t8Wx8-AvE_sqx8-p6YOfxE6lYCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.96.0/22
160.214.101.0-160.214.103.255
160.214.108.0/24
Signature Algorithm: sha256WithRSAEncryption
02:84:89:27:1d:6e:1d:02:c3:d8:51:61:50:8c:3d:f6:89:94:
ac:fd:b5:83:2b:a5:6f:60:e5:f6:af:35:48:07:a6:e0:d9:75:
b8:88:4c:de:e6:9a:da:be:ba:12:27:be:51:54:1f:4e:75:dc:
8b:a0:31:6c:3f:70:27:16:47:84:2f:22:26:2b:11:67:53:51:
ef:d3:8b:f6:84:b2:0f:a7:a3:81:62:e4:83:1d:a4:7f:13:19:
70:5a:a8:c6:ed:84:82:e2:d5:5a:e3:25:27:c9:ba:8b:73:27:
99:4b:08:08:4e:f8:a3:fd:d6:58:d5:04:77:7d:08:92:ca:26:
05:58:05:01:b3:6b:2a:06:23:fc:19:26:40:ae:9e:15:08:92:
cf:a9:5b:7e:54:6f:f6:63:33:58:34:15:04:1d:52:b7:e9:fd:
a9:c5:5b:a1:0f:7c:a0:ee:bd:28:a0:bd:89:29:7a:99:49:c4:
3c:38:46:7e:ed:1e:ad:b0:c4:ae:e6:55:bd:91:81:1d:17:86:
4c:6a:a1:e5:c8:b5:38:b9:2b:61:9c:c5:e8:eb:46:c2:bd:91:
82:98:4f:d4:6c:ec:3b:cd:b3:32:49:b3:33:64:12:7b:49:12:
e6:ea:36:41:75:c7:cc:89:4b:63:d4:ec:53:d7:22:11:ff:34:
ea:b5:16:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:33 2024 by rpki-client on console-ams.rpki-client.org