Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/jdmoaKTrESnbpC44FTJ8pVT8CPM.roa
File: jdmoaKTrESnbpC44FTJ8pVT8CPM.roa (raw, json)
Hash identifier: DRioykfFxXNqXcv7fBWgRZh4KxCtgmhIecTkCR2s2ms=
Subject key identifier: 8D:D9:A8:68:A4:EB:11:29:DB:A4:2E:38:15:32:7C:A5:54:FC:08:F3
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018CC4253544F68688735401E87C6B27A8C8
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/jdmoaKTrESnbpC44FTJ8pVT8CPM.roa
Signing time: Mon 01 Jan 2024 08:30:21 +0000
ROA not before: Mon 01 Jan 2024 08:30:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43578
IP address blocks: 160.214.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 May 2024 09:55:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:35:44:f6:86:88:73:54:01:e8:7c:6b:27:a8:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Jan 1 08:30:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8dd9a868a4eb1129dba42e3815327ca554fc08f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d8:fe:92:74:7c:b0:0e:6f:12:d1:e6:99:4c:
c3:31:2b:e7:70:bc:5b:eb:09:49:22:71:7c:39:59:
f3:50:53:d4:2b:0d:d1:87:37:2b:11:e0:41:8c:8d:
95:af:30:ad:e6:50:e8:bb:16:5c:34:bd:35:b1:16:
2e:35:1b:d1:58:f0:57:98:4b:92:09:57:ba:8c:fe:
02:33:0b:ce:b0:3e:61:d8:c5:f6:5d:b8:d1:d7:2d:
ed:72:64:60:7c:20:04:57:08:fd:c7:47:63:67:68:
22:d9:14:27:e1:fa:87:e7:ae:b7:4b:3f:c0:bf:30:
60:8f:c5:0d:68:4a:f3:3e:53:96:27:a5:64:c8:1f:
32:2e:65:5f:02:91:8a:ce:82:6c:c1:86:97:06:27:
db:2d:06:cf:f3:8c:44:0f:aa:58:e0:62:50:81:5b:
ea:da:74:b9:e6:d6:b0:b1:c0:56:a6:38:05:d7:f2:
b3:c5:88:08:25:b8:d6:e1:37:9c:69:1c:4e:e8:e1:
b9:fc:61:6c:0f:ae:c0:69:dc:2a:c1:2b:79:de:32:
3a:31:39:d4:7f:37:14:73:78:26:2a:3c:b7:d3:dc:
6e:2f:79:dc:18:a7:3e:83:b3:82:80:e0:a2:c8:01:
10:03:a2:be:38:88:97:85:1a:a3:dd:55:8a:40:9a:
c9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D9:A8:68:A4:EB:11:29:DB:A4:2E:38:15:32:7C:A5:54:FC:08:F3
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/jdmoaKTrESnbpC44FTJ8pVT8CPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.127.0/24
Signature Algorithm: sha256WithRSAEncryption
56:8e:94:82:f2:06:1b:4a:e5:75:85:d8:14:a9:e6:59:b4:0a:
c9:de:e6:56:f2:98:b4:2c:77:b2:67:b2:dd:77:a0:ba:4d:03:
24:f0:8d:2e:f5:68:ec:12:82:bb:3d:87:58:61:17:c2:ca:a6:
e8:75:b6:32:97:8d:09:3d:40:b9:d7:b4:2e:a3:ae:40:3b:24:
f9:96:e3:e1:af:de:86:5f:dc:28:1a:1c:40:92:5f:a1:3d:7d:
67:98:77:c2:2b:75:4d:41:50:cb:0e:13:b6:d1:f6:00:6c:8c:
ad:5f:34:96:4f:c3:5c:2a:5d:8a:98:7a:23:3a:26:9b:3d:ad:
e1:9a:5a:1f:66:88:84:76:2b:98:d2:54:32:cb:52:9c:b8:ea:
d9:58:60:3d:6b:c3:ee:b3:e3:d4:3a:6a:e8:cf:fa:c0:a3:1d:
57:53:7f:13:d7:48:36:49:45:37:b0:d3:4e:2c:a1:e4:61:bf:
e1:53:5d:89:cf:c4:2f:53:84:e4:3f:60:6f:72:32:ac:89:1b:
75:2b:aa:95:89:45:d2:48:fd:30:6c:9c:bb:5c:df:0c:78:24:
2a:bf:26:77:40:1a:a4:23:99:6d:af:ac:10:4c:ee:64:6d:c1:
d2:c3:d6:5a:9c:e7:3a:d5:13:81:63:e2:7a:1a:a2:f6:cc:30:
e1:62:de:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 30 14:07:53 2024 by rpki-client on console-ams.rpki-client.org