Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/tVHtARe_MHpLrToDarFp3PKaUZk.roa
File: tVHtARe_MHpLrToDarFp3PKaUZk.roa (raw, json)
Hash identifier: w0rFuEhpy6+OIxDAz3F2OpSQCsXeqocY1OzMfasj0II=
Subject key identifier: B5:51:ED:01:17:BF:30:7A:4B:AD:3A:03:6A:B1:69:DC:F2:9A:51:99
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018CCFFA2C0A893C73D885B4E7C881B097B7
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/tVHtARe_MHpLrToDarFp3PKaUZk.roa
Signing time: Wed 03 Jan 2024 15:38:48 +0000
ROA not before: Wed 03 Jan 2024 15:38:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 399471
IP address blocks: 160.214.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jan 2024 14:37:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:cf:fa:2c:0a:89:3c:73:d8:85:b4:e7:c8:81:b0:97:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Jan 3 15:38:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b551ed0117bf307a4bad3a036ab169dcf29a5199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f8:ec:53:8b:76:91:44:ca:98:45:4d:83:56:
a7:59:fd:48:2a:0e:52:f1:da:31:fb:5d:d0:a5:89:
de:a5:be:fd:7c:03:ed:87:db:2b:fe:3f:83:ab:50:
f1:64:f8:3d:1e:8a:c4:c0:9b:27:46:39:dc:a3:44:
21:3b:af:56:d2:ae:cf:ea:e2:5b:81:5e:f6:67:bf:
a2:1b:68:15:fd:c1:66:d9:a7:ac:9b:3d:e4:ae:f6:
f4:12:2c:2b:53:0f:6c:b8:1e:07:84:71:1c:c1:6a:
c0:15:8c:f3:26:5f:33:c0:ef:31:33:1c:7a:fd:0e:
f6:61:fb:c0:90:8c:ee:aa:15:2c:41:96:ad:6b:fb:
cf:5c:2f:f8:33:35:aa:3c:1c:dd:c2:b5:a4:47:bc:
c3:2d:ad:19:0d:f7:9c:59:59:b1:0a:9c:b2:cc:34:
98:2d:0d:48:b1:1f:4e:e8:70:8a:d6:a8:62:07:d2:
4e:2c:96:79:aa:90:8c:30:df:fb:40:7e:81:de:ef:
40:8b:11:b8:08:c9:f9:6a:1d:33:87:5b:e9:d2:62:
08:66:c7:41:ed:58:31:ae:d9:ca:a6:79:5e:46:b5:
ea:a9:bc:cb:f4:72:8a:74:ff:51:16:c2:3a:de:11:
58:4e:d5:35:ca:0d:8b:4b:37:35:fe:11:36:75:68:
3e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:51:ED:01:17:BF:30:7A:4B:AD:3A:03:6A:B1:69:DC:F2:9A:51:99
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/tVHtARe_MHpLrToDarFp3PKaUZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.106.0/24
Signature Algorithm: sha256WithRSAEncryption
94:c0:b8:57:fc:70:b6:c9:2d:7d:3c:e2:fc:13:f2:ce:7f:7f:
b1:4b:d4:7b:91:a1:5a:8e:cf:10:6b:ca:96:97:92:f2:79:5b:
c5:18:68:57:9e:1e:17:be:b1:d6:04:9e:04:12:de:e2:cc:89:
5c:c1:84:45:7f:a3:ea:98:d1:b6:7e:85:b5:62:81:84:c6:4c:
6b:ef:2a:43:06:7d:de:6a:41:3f:92:6b:57:10:72:90:18:ac:
e1:d3:1b:af:69:18:d7:90:fc:75:52:7b:47:34:e9:9c:1c:25:
6b:0a:2d:50:3d:75:db:95:d9:b6:cc:40:fe:bc:34:43:05:4f:
85:2e:44:7e:ea:b4:5d:57:16:b5:1e:9e:9c:3c:a1:fe:2c:35:
cd:fd:c7:66:98:49:73:ff:64:85:2e:f2:f2:86:63:f8:7d:96:
c7:0f:ee:5e:db:aa:9e:16:f0:e3:09:27:32:49:4b:eb:d5:38:
04:12:61:a3:b7:5a:92:5e:d0:ad:d7:66:96:03:25:a1:1b:44:
8b:1d:b1:f8:f2:32:86:79:86:66:9e:df:6c:fe:16:8c:ae:0d:
5b:ea:d0:2a:15:c7:4b:09:6b:bc:24:60:63:9e:37:35:ae:d1:
b1:af:1c:29:60:5c:b0:6b:52:e9:61:a2:81:1b:7c:84:0e:d0:
6d:23:5f:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzP+iwKiTxz2IW058iBsJe3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1MTc5MjY1ODAzYjc4MDRkMGZjY2Y1OTYyYThiMTYzNzQz
ZTBkMWUwHhcNMjQwMTAzMTUzODQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTUxZWQwMTE3YmYzMDdhNGJhZDNhMDM2YWIxNjlkY2YyOWE1MTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxvjsU4t2kUTKmEVNg1anWf1IKg5S
8dox+13QpYnepb79fAPth9sr/j+Dq1DxZPg9HorEwJsnRjnco0QhO69W0q7P6uJb
gV72Z7+iG2gV/cFm2aesmz3krvb0EiwrUw9suB4HhHEcwWrAFYzzJl8zwO8xMxx6
/Q72YfvAkIzuqhUsQZata/vPXC/4MzWqPBzdwrWkR7zDLa0ZDfecWVmxCpyyzDSY
LQ1IsR9O6HCK1qhiB9JOLJZ5qpCMMN/7QH6B3u9AixG4CMn5ah0zh1vp0mIIZsdB
7VgxrtnKpnleRrXqqbzL9HKKdP9RFsI63hFYTtU1yg2LSzc1/hE2dWg+MwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLVR7QEXvzB6S606A2qxadzymlGZMB8GA1UdIwQY
MBaAFGUXkmWAO3gE0PzPWWKosWN0Pg0eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWlJlU1pZQTdlQVRRX005WllxaXhZM1EtRFI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9kYmU4NjUtNmMwNi00ZDlhLThkYjEt
ZjdiYjZkOWEzYmU4LzEvdFZIdEFSZV9NSHBMclRvRGFyRnAzUEthVVprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi9kYmU4NjUtNmMwNi00ZDlhLThkYjEtZjdiYjZkOWEzYmU4
LzEvWlJlU1pZQTdlQVRRX005WllxaXhZM1EtRFI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoNZqMA0G
CSqGSIb3DQEBCwUAA4IBAQCUwLhX/HC2yS19POL8E/LOf3+xS9R7kaFajs8Qa8qW
l5LyeVvFGGhXnh4XvrHWBJ4EEt7izIlcwYRFf6PqmNG2foW1YoGExkxr7ypDBn3e
akE/kmtXEHKQGKzh0xuvaRjXkPx1UntHNOmcHCVrCi1QPXXbldm2zED+vDRDBU+F
LkR+6rRdVxa1Hp6cPKH+LDXN/cdmmElz/2SFLvLyhmP4fZbHD+5e26qeFvDjCScy
SUvr1TgEEmGjt1qSXtCt12aWAyWhG0SLHbH48jKGeYZmnt9s/haMrg1b6tAqFcdL
CWu8JGBjnjc1rtGxrxwpYFywa1LpYaKBG3yEDtBtI1/w
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:11 2024 by rpki-client on console-fra.rpki-client.org