Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/qwkMua_aPsbS2INsz46BKWFvsxs.roa
File: qwkMua_aPsbS2INsz46BKWFvsxs.roa (raw, json)
Hash identifier: teG3v91wqzBHJWN7Y95+JZN3Xya9ujBRxfDYp1YVjcI=
Subject key identifier: AB:09:0C:B9:AF:DA:3E:C6:D2:D8:83:6C:CF:8E:81:29:61:6F:B3:1B
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018BE1D2F8318A9DBD68B763E17CFF161BF4
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/qwkMua_aPsbS2INsz46BKWFvsxs.roa
Signing time: Sat 18 Nov 2023 09:46:21 +0000
ROA not before: Sat 18 Nov 2023 09:46:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 160.214.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 07:53:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e1:d2:f8:31:8a:9d:bd:68:b7:63:e1:7c:ff:16:1b:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Nov 18 09:46:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab090cb9afda3ec6d2d8836ccf8e8129616fb31b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:df:63:4a:39:d0:68:1a:be:24:fd:7e:66:ed:
ce:77:9a:e6:3b:f6:5d:06:e1:8a:4a:3a:36:d2:04:
5d:3e:ea:9f:30:8a:9a:23:50:54:85:5b:33:00:51:
b9:e7:97:61:e2:2f:15:3b:7c:21:52:23:22:12:9b:
f5:cd:62:56:2d:52:a7:e9:34:39:d1:ae:57:68:79:
3d:71:94:93:26:8f:10:4a:87:8e:b7:be:41:a9:6a:
31:25:4b:a1:84:e7:23:82:a2:07:50:73:7f:aa:f7:
4f:35:34:1d:96:7f:a7:72:81:5b:18:13:7c:b2:fc:
f5:5a:7a:75:85:d4:94:a4:b7:3a:3c:ee:13:6f:ac:
85:49:56:77:72:46:17:3d:f7:d4:ed:e5:18:5e:ae:
87:c4:8f:46:61:2d:ec:88:e2:e2:06:a2:fe:d6:5b:
1c:c6:ed:0f:fe:a4:e5:cc:09:4e:7d:b5:99:4d:27:
5a:38:d4:50:e1:53:89:34:59:51:a1:da:6c:38:f1:
24:08:df:e8:f8:f9:bd:41:7b:31:c7:68:17:34:bb:
86:2e:65:10:79:e3:21:64:a4:d2:24:f4:2d:56:e1:
33:85:d6:ee:98:c5:bc:29:77:e9:0a:9c:b5:79:1a:
f8:ab:e1:ef:8c:a4:fc:38:a0:6b:34:dc:e1:b7:be:
d0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:09:0C:B9:AF:DA:3E:C6:D2:D8:83:6C:CF:8E:81:29:61:6F:B3:1B
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/qwkMua_aPsbS2INsz46BKWFvsxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.96.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:e1:4c:cb:0d:9d:6a:85:e5:bd:d7:24:08:75:98:70:ec:ac:
3d:9b:32:af:16:87:57:78:41:2a:9e:41:5b:f1:4c:6b:d9:c9:
dd:2c:9a:38:24:51:16:32:b1:9b:31:87:e0:d2:16:41:66:99:
90:35:b6:7c:38:d4:6e:57:0f:39:f2:e6:f6:f7:45:a8:56:4a:
d2:15:61:d3:2b:fe:fd:a6:78:89:2b:0b:f4:b7:c7:cf:9b:36:
9f:b2:85:41:95:30:1f:99:ba:ac:4c:ff:51:b6:45:5c:f2:80:
3a:ee:a1:b0:01:bd:09:dd:7a:ec:83:ef:4c:c6:3b:ef:c6:ef:
89:4b:08:ed:46:23:dd:b7:5e:68:8c:de:b4:77:0e:23:a2:ae:
f3:8e:be:f2:0a:cf:cd:3e:db:1b:41:15:4e:b6:5a:1c:c4:73:
2e:87:83:b1:97:30:a3:f2:21:73:84:59:bf:a6:b9:d8:16:95:
31:84:71:d2:74:36:55:c7:e8:ed:bc:0f:ee:c3:5d:19:a0:16:
82:6b:0e:b4:c4:23:69:ea:75:a5:ce:96:90:11:1c:e4:e7:b7:
61:56:f1:d9:de:f4:7c:5f:80:76:f1:d9:18:1c:fc:84:09:37:
11:ba:9e:a0:90:70:87:f2:af:22:eb:4b:c1:71:b9:01:a0:9a:
a2:39:4c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:11 2024 by rpki-client on console-fra.rpki-client.org