Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/o_wUoBrvdQ2wsVg1cjKCkvH1bZ0.roa
File: o_wUoBrvdQ2wsVg1cjKCkvH1bZ0.roa (raw, json)
Hash identifier: 3GXQwIVurS71uBty/gbnphWX8ig22mdejXGpb6rgZzc=
Subject key identifier: A3:FC:14:A0:1A:EF:75:0D:B0:B1:58:35:72:32:82:92:F1:F5:6D:9D
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018BF0DE98ABDED03627151EEE307884AA1A
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/o_wUoBrvdQ2wsVg1cjKCkvH1bZ0.roa
Signing time: Tue 21 Nov 2023 07:53:21 +0000
ROA not before: Tue 21 Nov 2023 07:53:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 160.214.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f0:de:98:ab:de:d0:36:27:15:1e:ee:30:78:84:aa:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Nov 21 07:53:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3fc14a01aef750db0b1583572328292f1f56d9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:42:15:74:4a:ab:0a:14:6c:a7:23:15:57:fc:
92:7a:67:37:f5:20:0c:9b:21:d1:77:24:38:d2:18:
59:4d:8a:29:a6:9e:e4:29:9b:f2:34:49:76:f2:30:
17:3c:8a:ae:27:d3:0d:41:37:7c:7a:73:da:e3:5c:
ee:fd:ba:31:96:e4:3b:94:1f:1f:c6:1a:66:19:e4:
7c:e0:35:c9:57:c4:4c:13:96:d9:b7:23:be:54:28:
d0:a4:7e:ce:e6:8f:e1:b4:0d:3b:95:ff:5c:2d:52:
e7:d5:a2:7f:1b:11:7d:9e:3c:25:d1:73:64:0a:ad:
3b:66:51:dd:b3:19:29:37:5b:70:79:25:c1:54:34:
4f:8c:6c:37:b4:6a:9e:5d:46:fe:9a:7a:e5:92:5b:
d5:87:d7:2c:a5:0c:08:c9:37:47:6d:ed:b0:9a:4a:
59:df:36:a2:d2:e8:97:cc:6a:2a:da:b4:d2:11:df:
65:37:7a:11:7a:f7:72:8c:d8:99:87:83:fb:96:79:
04:6f:1c:3c:e7:a8:ff:97:ea:a4:12:d9:ad:10:d9:
69:24:76:be:c0:1a:5e:91:b0:2c:ae:dd:41:d4:ac:
b4:31:07:fe:d8:0e:33:44:3e:ce:e8:cc:e7:61:2a:
12:f4:fa:db:89:db:00:9a:12:65:e9:fc:ca:2c:e3:
e3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:FC:14:A0:1A:EF:75:0D:B0:B1:58:35:72:32:82:92:F1:F5:6D:9D
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/o_wUoBrvdQ2wsVg1cjKCkvH1bZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.112.0/24
Signature Algorithm: sha256WithRSAEncryption
29:3f:6f:3b:b6:0b:59:74:70:cb:fd:b2:59:a1:29:f4:d4:7a:
98:14:78:f9:74:c6:5d:78:ac:6a:79:8e:73:bf:dc:55:2a:f2:
5a:2b:bb:9e:78:55:c5:73:74:7a:ac:ba:41:df:22:f3:75:bd:
3a:43:5b:a4:2f:46:0c:42:47:60:ad:ec:23:66:25:96:2e:e0:
91:85:1e:77:df:93:13:c0:78:1b:61:d7:e9:2e:f9:e5:f8:58:
c2:cb:6f:91:58:bd:86:53:b2:68:40:e2:fe:2d:ba:ac:41:80:
69:3e:98:53:f4:75:e1:ba:6c:f4:03:f6:41:f4:22:6d:9f:58:
ca:11:0a:94:2e:21:ee:3a:27:8c:c5:48:0d:0d:4f:8a:ea:18:
32:83:67:a4:91:40:dd:c6:de:ff:f0:5d:93:69:0e:5f:e1:5c:
23:f5:1c:30:7d:65:48:ff:33:6c:1c:69:a1:1b:23:21:86:42:
1d:9b:fa:4b:ca:24:fe:4d:0c:34:2a:9d:7b:65:a4:25:e3:0c:
2d:af:77:3e:18:e4:65:51:a1:5d:6e:ec:66:78:77:94:25:5f:
ed:13:3f:eb:38:e3:50:0c:5f:be:7a:ac:b0:f4:8f:55:8c:98:
10:82:fd:c1:f0:67:ec:c4:1c:2a:01:70:c7:f9:d1:82:d7:f9:
ef:77:b6:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:33 2024 by rpki-client on console-ams.rpki-client.org