Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/4M5jslEMSVP1HQmpP4UtqnH4Rkc.roa
File: 4M5jslEMSVP1HQmpP4UtqnH4Rkc.roa (raw, json)
Hash identifier: NFivQx6gk30Th45tdrVDWncf0+vfmUr5G86QGxAFO14=
Subject key identifier: E0:CE:63:B2:51:0C:49:53:F5:1D:09:A9:3F:85:2D:AA:71:F8:46:47
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018B12EF24112216D10C0AA0B3B9167C871A
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/4M5jslEMSVP1HQmpP4UtqnH4Rkc.roa
Signing time: Mon 09 Oct 2023 05:35:44 +0000
ROA not before: Mon 09 Oct 2023 05:35:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 160.214.112.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:12:ef:24:11:22:16:d1:0c:0a:a0:b3:b9:16:7c:87:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Oct 9 05:35:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0ce63b2510c4953f51d09a93f852daa71f84647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0b:a4:d9:a5:a5:8b:c6:06:e7:38:dc:68:47:
0f:4f:49:41:43:6c:37:4b:5d:af:9d:0f:58:a8:11:
47:9e:31:a3:44:29:07:72:bf:a1:03:48:6b:12:92:
4b:9c:c0:4f:61:83:19:04:68:6f:0f:44:ae:5e:9b:
99:f6:9e:cb:c5:d4:17:d3:02:54:26:f7:cd:91:93:
0e:45:e1:68:9f:c0:d3:f9:85:35:4b:e9:32:12:ea:
78:bf:f0:1e:c5:0c:34:61:6f:63:07:db:85:ee:ac:
63:9d:7d:f7:b0:51:91:9d:8c:f2:96:cf:fd:5c:82:
a8:81:26:b2:77:14:54:4d:9e:f4:5a:af:de:17:9d:
3e:75:a0:7e:28:c9:97:40:c6:6c:b5:c2:f0:7d:46:
74:5a:63:db:eb:5c:b5:87:5c:cf:d4:21:58:15:6b:
85:9f:63:a5:32:a1:ff:7d:da:6d:59:85:0c:29:75:
6b:39:20:9c:6e:f6:00:23:75:80:83:b0:49:b1:b3:
8f:d4:70:74:f8:ab:ac:40:dc:ef:52:99:66:f0:9e:
18:17:bb:38:3d:45:55:2f:b9:81:85:f0:b7:a2:eb:
58:29:66:5b:77:d9:79:af:75:be:36:db:bf:5b:86:
68:de:d0:ee:0f:e9:46:dc:20:6d:03:53:7f:28:56:
25:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:CE:63:B2:51:0C:49:53:F5:1D:09:A9:3F:85:2D:AA:71:F8:46:47
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/4M5jslEMSVP1HQmpP4UtqnH4Rkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.112.0/24
Signature Algorithm: sha256WithRSAEncryption
19:90:eb:78:c8:34:e0:ea:44:6a:49:ee:ff:d4:f3:a4:68:56:
c2:8c:0a:b2:8e:eb:5f:cd:36:27:67:1d:ba:f5:70:28:df:08:
90:84:35:5e:85:44:c4:b3:52:36:3b:51:e2:2b:ed:8a:32:34:
04:df:5f:0c:a1:35:28:06:04:b3:bd:08:4a:36:6a:83:6c:ff:
1b:3e:59:27:65:63:32:ae:af:22:23:9a:b6:75:b0:cc:0d:f9:
2b:4b:67:e4:15:36:b2:65:d8:df:08:6b:e9:b3:69:4c:f7:5d:
bd:b0:f3:0c:7c:23:33:3a:c7:3e:ff:ae:d3:17:9d:58:ab:4a:
9c:55:44:9e:14:92:d5:30:9d:11:c5:17:7e:f9:5f:9d:f3:53:
2b:e0:90:24:b8:f3:ac:2c:52:12:69:82:90:31:7a:26:cf:5c:
ad:09:c3:6c:bc:b1:73:33:61:00:97:e6:af:f5:9f:57:9c:ed:
c0:d5:fe:a6:2e:a7:6f:da:c5:29:76:ca:f2:41:fc:0f:cb:db:
b2:f3:f4:8b:6e:c4:da:a6:32:8e:2f:96:16:6b:ab:f7:3e:2f:
d0:ab:0a:16:17:b3:8d:78:3d:cf:45:23:80:a5:b1:7f:02:66:
d0:a8:12:74:df:5f:1c:51:da:c7:66:a1:e4:42:3d:be:d3:27:
8c:53:c8:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 8 10:35:00 2023 by rpki-client on console-ams.rpki-client.org