Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/QXO4V1o8-B_1Gb4bgqTIex9eVyw.roa
File: QXO4V1o8-B_1Gb4bgqTIex9eVyw.roa (raw, json)
Hash identifier: OQn0x1t7kUZwL3jWH4tqKjNjkhrzLyv0cOIakbMfEuc=
Subject key identifier: 41:73:B8:57:5A:3C:F8:1F:F5:19:BE:1B:82:A4:C8:7B:1F:5E:57:2C
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018AFFA787B533AFFD7189C4925775B873D3
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/QXO4V1o8-B_1Gb4bgqTIex9eVyw.roa
Signing time: Thu 05 Oct 2023 11:44:43 +0000
ROA not before: Thu 05 Oct 2023 11:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 160.214.109.0/24 maxlen: 24
160.214.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Dec 2023 15:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ff:a7:87:b5:33:af:fd:71:89:c4:92:57:75:b8:73:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Oct 5 11:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4173b8575a3cf81ff519be1b82a4c87b1f5e572c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c1:9f:46:4e:d1:2d:91:9f:c9:e5:d4:18:5c:
c4:85:4a:7d:76:3f:07:17:8f:b8:f0:b9:20:ca:a9:
89:4f:d3:45:f1:dd:64:66:0d:d1:d3:de:20:51:5a:
0b:76:c1:a8:b8:f1:a1:9c:d9:50:92:02:82:b7:f7:
f3:73:bc:0f:8e:82:db:d9:db:18:5a:4b:7e:8e:50:
04:44:55:6b:63:3a:ef:a8:20:c7:d2:44:67:cd:68:
6e:f0:34:b3:7f:7e:3d:4a:97:15:1c:04:53:3f:48:
c3:ae:ae:54:77:3d:bb:50:9b:58:ae:ff:df:52:88:
f8:74:99:19:7d:20:13:36:e9:ff:cb:a5:f5:ae:99:
38:87:74:1c:98:93:f3:c3:59:11:07:b4:3e:e1:3a:
5d:b4:a5:9a:a8:64:bf:73:91:0a:34:e2:3e:27:83:
30:6f:a8:09:24:68:94:e1:f6:cd:44:4d:8f:e1:dc:
71:ba:ab:38:d8:db:64:a3:76:7c:36:a8:26:6a:5a:
aa:ad:b6:ab:4f:43:2a:bc:96:f0:cf:8f:c4:45:4a:
a5:70:3a:97:3a:0a:22:48:c6:6b:3b:c8:b4:85:3c:
73:97:1c:54:d1:ad:24:e9:67:5e:16:d5:b5:60:b7:
0f:13:27:1b:40:6a:bf:0b:8d:b8:6e:3e:e6:12:0c:
ce:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:73:B8:57:5A:3C:F8:1F:F5:19:BE:1B:82:A4:C8:7B:1F:5E:57:2C
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/QXO4V1o8-B_1Gb4bgqTIex9eVyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.108.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:c1:ee:fd:49:fa:d4:95:59:91:60:09:b2:c3:8e:6b:9d:ad:
63:87:32:ce:1b:1c:a8:ed:f0:f8:32:1a:c8:7f:36:75:25:e6:
85:28:ba:55:0d:27:4f:fe:e8:85:d9:cd:17:f0:0e:36:58:b7:
55:0a:17:04:e2:7d:fa:48:ee:a5:49:a1:a8:68:98:7f:9f:40:
0b:1f:3b:2d:64:22:b9:86:c9:11:24:4a:44:cc:c1:07:b5:90:
9e:ef:cc:37:a7:30:5b:92:0b:22:b3:26:c7:e9:a1:3e:e7:3e:
b1:de:d7:0f:61:a3:ea:84:09:ae:7e:13:07:d9:4a:68:23:a8:
3c:ad:28:f8:9a:28:66:ae:56:5d:34:6d:9c:28:ee:71:4d:37:
df:08:6c:2a:30:a7:3f:2a:6a:9a:6f:f6:88:b2:35:09:c7:4e:
d2:c7:e9:b8:6a:d4:ef:4e:3e:9c:e9:37:b4:44:7a:58:52:f2:
82:10:f2:cc:de:f1:a2:ad:fc:a8:a4:5c:82:6d:bb:09:24:de:
48:eb:3f:38:e9:cd:12:5a:28:e3:24:ac:bb:d4:24:8c:c7:5c:
59:36:86:8d:e9:fe:08:ed:c3:e6:c8:64:19:78:52:56:29:f8:
2b:21:30:79:fd:e0:8c:0b:a4:d0:1b:6a:d4:9f:b8:41:44:b9:
c0:5d:e4:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:33 2024 by rpki-client on console-ams.rpki-client.org