Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/4f8DZVzxespCDp9ZG1zsVf-cal4.roa
File: 4f8DZVzxespCDp9ZG1zsVf-cal4.roa (raw, json)
Hash identifier: UeQmVVWs6OYmWQaCsjU9C+QpDxQSMa1pp9jFHPqzgyo=
Subject key identifier: E1:FF:03:65:5C:F1:7A:CA:42:0E:9F:59:1B:5C:EC:55:FF:9C:6A:5E
Certificate issuer: /CN=aba10057bcd00762eef43823c030e7e32d572241
Certificate serial: 01856F5DB13CC3766A83BB402706DFDF98C5
Authority key identifier: AB:A1:00:57:BC:D0:07:62:EE:F4:38:23:C0:30:E7:E3:2D:57:22:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6EAV7zQB2Lu9DgjwDDn4y1XIkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/4f8DZVzxespCDp9ZG1zsVf-cal4.roa
Signing time: Sun 01 Jan 2023 22:04:49 +0000
ROA not before: Sun 01 Jan 2023 22:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 160.202.20.0/24 maxlen: 24
160.202.22.0/24 maxlen: 24
160.202.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:b1:3c:c3:76:6a:83:bb:40:27:06:df:df:98:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aba10057bcd00762eef43823c030e7e32d572241
Validity
Not Before: Jan 1 22:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1ff03655cf17aca420e9f591b5cec55ff9c6a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:95:23:87:08:38:cb:97:be:8c:84:4e:5e:a1:
15:92:f4:29:1b:b8:fe:6e:e9:2c:1d:1c:ee:38:a2:
38:ac:49:59:81:9e:16:de:39:ea:b9:66:ab:93:18:
16:fd:49:e0:bd:d5:91:57:ee:0e:77:c9:c7:b4:57:
0b:a6:66:99:3c:dd:8e:f7:09:33:7e:08:20:b4:b0:
b8:fa:db:bb:e9:d9:1b:a9:4f:b2:5e:e4:c6:0f:39:
8f:6c:19:29:2d:b8:6d:f6:39:c5:9f:20:d3:cc:75:
28:b7:a7:2d:72:ac:c7:5b:e0:49:99:61:08:db:b7:
80:4b:a3:fd:7c:11:68:d2:fc:e5:a7:99:e5:e4:35:
7e:07:40:4f:f6:35:f7:44:a2:39:fc:63:eb:1e:e5:
34:99:03:23:c9:9e:5a:ad:b6:6d:a8:22:3d:b5:77:
24:1f:0e:34:5f:c7:bb:a5:d6:a3:94:40:8d:6d:28:
d7:61:2c:c1:e9:03:6f:17:4e:90:70:4e:16:c2:9a:
fb:34:2b:38:76:24:91:ea:f1:f7:b4:a2:d6:6a:29:
1e:63:e1:67:cd:25:39:b2:c2:4d:81:cc:8d:4a:d4:
90:67:0d:31:4b:68:1a:0c:6b:8a:d0:ef:19:ee:02:
c5:ba:d0:ca:3a:18:e3:e9:ef:40:3b:bc:2b:00:b2:
54:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:FF:03:65:5C:F1:7A:CA:42:0E:9F:59:1B:5C:EC:55:FF:9C:6A:5E
X509v3 Authority Key Identifier:
keyid:AB:A1:00:57:BC:D0:07:62:EE:F4:38:23:C0:30:E7:E3:2D:57:22:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6EAV7zQB2Lu9DgjwDDn4y1XIkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/4f8DZVzxespCDp9ZG1zsVf-cal4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/q6EAV7zQB2Lu9DgjwDDn4y1XIkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.202.20.0-160.202.22.255
Signature Algorithm: sha256WithRSAEncryption
5b:fe:a5:43:86:b6:ee:35:6f:c9:5a:79:f4:b9:2a:4c:30:e9:
88:a5:39:33:f5:a3:ea:a2:d4:17:8d:34:ae:da:11:42:11:b9:
b0:7c:2a:e0:a2:63:d8:8f:e0:8f:d7:c5:cc:e1:ca:7a:a7:76:
ce:68:6a:e1:d3:2b:3b:24:d7:1c:76:97:64:49:1a:c8:50:0f:
0c:5a:f7:83:37:b4:91:7d:78:13:80:c5:00:84:3d:c6:09:11:
64:b1:32:48:b6:72:04:88:d4:a3:c6:e9:fc:8b:4e:81:f9:3e:
96:35:cb:1a:1f:82:9a:11:47:f8:28:48:f8:b6:85:83:85:80:
2f:d9:68:04:29:12:0b:b0:00:9c:33:f4:4f:0d:b7:ad:5b:a0:
93:66:25:a0:92:65:16:7a:b9:96:2d:1c:46:42:29:3a:66:a2:
38:bc:51:76:1d:bc:1f:40:30:5f:f4:8d:2a:32:d3:82:21:59:
5f:0c:ce:8b:89:d4:ea:f9:8c:38:c9:51:a2:00:14:32:1e:09:
53:42:e3:09:cf:77:cc:51:b7:1b:e8:b1:1a:d0:3a:04:76:fa:
75:ec:de:fb:54:0a:a6:c5:ca:4d:ae:68:2b:68:66:d6:51:20:
c3:b6:b6:72:a6:16:ab:e8:b1:a2:a3:6d:bb:60:08:d4:ac:48:
a5:57:e4:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:01 2024 by rpki-client on console-ams.rpki-client.org