Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/xDm4Zp7OfXVXwvwtJv1uaYy-igA.roa
File: xDm4Zp7OfXVXwvwtJv1uaYy-igA.roa (raw, json)
Hash identifier: n+7oEiKNV07NSM4Fh+ff7NjSsQtWdvGW1eh6+e+nY9k=
Subject key identifier: C4:39:B8:66:9E:CE:7D:75:57:C2:FC:2D:26:FD:6E:69:8C:BE:8A:00
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018AFF020927370D001E595A7CAF1FE9DC50
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/xDm4Zp7OfXVXwvwtJv1uaYy-igA.roa
Signing time: Thu 05 Oct 2023 08:43:58 +0000
ROA not before: Thu 05 Oct 2023 08:43:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 160.214.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 05 Dec 2023 11:05:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ff:02:09:27:37:0d:00:1e:59:5a:7c:af:1f:e9:dc:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Oct 5 08:43:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c439b8669ece7d7557c2fc2d26fd6e698cbe8a00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d1:ab:65:4b:87:7f:4b:c9:83:fc:a5:e2:b7:
bc:9b:56:ab:1b:34:09:6a:b1:a6:39:f0:66:87:7f:
1e:31:de:c8:78:b1:fd:1d:ab:49:86:16:f8:69:b0:
d9:3a:c3:0a:f2:18:e8:1c:01:2c:d7:6d:dd:fd:2e:
09:89:f2:06:43:e3:dc:f4:c5:1f:8a:6f:d8:6c:02:
ca:0f:ac:29:ac:94:3b:95:01:54:c3:75:f0:99:6c:
fa:fb:4e:18:74:f5:4f:f3:9a:04:ba:f7:57:e5:7e:
3f:5b:ff:0f:db:75:32:51:dd:6a:6e:6c:4c:69:28:
50:8d:ad:18:d4:bf:23:45:cb:2d:73:19:73:7b:f8:
93:43:f9:07:aa:52:5e:22:c6:51:40:34:79:6b:88:
94:2f:8d:fe:14:d1:58:c6:35:8a:3d:46:aa:a7:ba:
09:57:12:33:f7:c5:aa:6e:be:8d:9d:07:e0:ab:11:
2c:31:b3:f2:67:55:2d:07:df:b4:22:1b:2c:04:c0:
14:5e:31:0e:d5:ad:5d:26:03:8b:97:59:78:05:c0:
ea:00:ae:01:da:5f:a9:0b:7e:5b:f0:ea:0f:2d:31:
11:ea:05:4d:f4:14:c8:35:4a:24:e3:33:ca:cc:2b:
82:7a:9e:88:af:b6:aa:2d:92:46:a4:05:7f:2a:47:
bd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:39:B8:66:9E:CE:7D:75:57:C2:FC:2D:26:FD:6E:69:8C:BE:8A:00
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/xDm4Zp7OfXVXwvwtJv1uaYy-igA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.108.0/23
Signature Algorithm: sha256WithRSAEncryption
79:3b:50:ad:93:c1:18:5e:5c:46:2a:a4:a4:40:0b:74:d6:ca:
f4:84:86:50:ce:73:bf:e8:3b:87:ae:f0:68:7b:a4:44:52:df:
50:82:6e:d6:d3:89:ec:21:1b:2d:78:94:23:3c:92:d2:59:9d:
ee:6e:bd:93:9a:92:54:ba:52:b7:28:8a:d2:41:d9:3b:60:26:
d5:04:1d:34:fa:6c:45:2c:5a:98:63:ff:d7:d1:99:22:1f:2d:
f6:1c:9b:4b:12:2b:d8:bf:94:4a:c0:22:af:8b:74:d6:fc:5a:
9a:c9:e1:73:18:6b:57:cb:50:c5:ba:10:95:be:ad:f1:08:d2:
c7:5a:07:f7:56:71:28:01:3c:a1:b6:01:9a:75:11:d4:d8:8e:
41:f1:3c:29:b3:c9:6c:e1:d5:d6:f8:03:b7:4b:6a:75:35:92:
a2:26:74:3c:1a:49:8a:1f:bc:9d:cd:31:72:4d:69:83:d7:7a:
f2:dc:be:a6:7b:07:a0:6f:76:c0:05:99:dc:a1:4c:e3:79:dc:
0a:f0:bc:6f:f8:40:a0:3b:59:20:89:39:b8:33:72:e2:cd:89:
58:41:a0:29:27:d5:a5:e2:c7:e9:3a:df:01:0e:ae:30:f7:39:
72:55:b3:e9:12:a5:26:12:7d:91:57:3d:51:ac:de:d7:c3:04:
08:63:70:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:11 2024 by rpki-client on console-fra.rpki-client.org