Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/YZqtP-4iIC1bm4YlW1RKFH4g0Is.roa
File: YZqtP-4iIC1bm4YlW1RKFH4g0Is.roa (raw, json)
Hash identifier: yCXM0j2bUwBhstdUiRaTl1xZEGVxkqmbiV3cT9EUtYM=
Subject key identifier: 61:9A:AD:3F:EE:22:20:2D:5B:9B:86:25:5B:54:4A:14:7E:20:D0:8B
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018C3A9A870FD53ABA997374A0F77C5A0C3A
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/YZqtP-4iIC1bm4YlW1RKFH4g0Is.roa
Signing time: Tue 05 Dec 2023 15:30:54 +0000
ROA not before: Tue 05 Dec 2023 15:30:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 160.214.108.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3a:9a:87:0f:d5:3a:ba:99:73:74:a0:f7:7c:5a:0c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Dec 5 15:30:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=619aad3fee22202d5b9b86255b544a147e20d08b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a9:52:32:70:76:8b:0a:73:35:a0:e0:74:3d:
33:04:34:cd:5d:f7:ed:63:0c:d5:d6:99:8f:18:01:
fa:7d:56:57:15:cc:29:b8:76:7d:29:b3:71:4d:18:
ee:ad:5a:6c:93:a3:d9:cf:28:a1:46:5c:97:c1:70:
99:fb:db:17:e7:ae:f6:ff:86:07:b1:66:34:94:19:
49:4e:20:32:9a:d8:88:d8:b7:c9:0e:92:60:cc:b0:
13:03:e5:1c:f3:41:98:9c:2d:67:03:08:40:b7:79:
8b:8b:b8:02:d5:9e:0c:e2:52:29:f6:19:0e:aa:70:
fe:08:78:28:1c:80:ab:28:33:3b:11:5e:48:06:69:
ab:cb:c8:b6:3e:43:b5:60:26:2f:c2:a2:5a:bc:ca:
96:8b:b9:79:90:d8:bd:fd:c7:9f:68:29:60:76:b2:
d5:1a:bb:80:2c:64:40:a8:cc:09:fd:94:c1:a0:d4:
82:b7:03:f2:cd:17:66:fc:90:f7:69:a1:48:4d:45:
e9:9d:40:dc:00:8a:2e:3c:0d:aa:2a:fb:c8:05:a1:
a8:c3:a6:05:7a:ec:16:a9:bb:15:29:2a:f2:4b:01:
46:ad:b7:31:52:1a:2f:82:18:44:f3:7f:51:19:98:
5c:15:08:3d:10:ac:ee:b5:fe:1f:72:53:63:05:42:
76:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:9A:AD:3F:EE:22:20:2D:5B:9B:86:25:5B:54:4A:14:7E:20:D0:8B
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/YZqtP-4iIC1bm4YlW1RKFH4g0Is.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.108.0/24
Signature Algorithm: sha256WithRSAEncryption
23:2d:52:1a:24:2a:53:10:22:30:b7:b7:f3:99:ec:97:fe:20:
60:99:86:df:fe:69:7e:72:ad:a6:1b:cf:90:64:11:3d:79:47:
bf:53:ad:0f:51:aa:69:f8:70:da:59:9b:ab:55:20:b6:c5:d7:
8c:a4:85:e2:26:59:6a:1e:3a:38:12:4b:a0:32:93:29:15:d6:
b1:f1:e1:ff:89:b3:1d:83:2f:05:cb:f1:80:c6:6a:1b:f0:bf:
92:9b:ed:39:7a:ea:97:06:71:c4:12:dd:74:9a:b5:4c:14:7b:
a6:a3:84:08:c0:17:55:a3:1a:d9:0f:79:ef:f3:c6:54:92:7a:
d5:a5:5a:a3:3b:07:fc:9d:ae:1b:3a:a7:d0:33:95:64:62:24:
7c:48:2b:90:ed:4e:aa:78:97:24:09:10:bb:59:32:d5:4e:1f:
40:75:96:bb:ba:bc:02:c4:1d:aa:b9:6d:62:6d:b0:d4:50:1e:
46:78:0e:81:52:b8:3d:dd:cc:2f:79:54:10:b1:e2:42:03:48:
ab:ba:63:ad:24:30:aa:5c:26:cd:3e:8a:07:0a:1a:c2:4d:a1:
f4:4a:e0:ce:97:09:f1:9e:8a:25:0c:f6:9b:e6:b7:75:8e:e6:
4c:12:2f:61:f3:46:72:51:1c:3e:3a:3c:16:9a:94:85:83:6d:
83:04:2e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 6 14:18:44 2023 by rpki-client on console-ams.rpki-client.org