Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/UBaF23mw-DmwNtSZ6d3XhKisfWM.roa
File: UBaF23mw-DmwNtSZ6d3XhKisfWM.roa (raw, json)
Hash identifier: 0X4bZFeAms7oJBW1VDv7fRQNLJEE4063Fz5y/Y7MWvU=
Subject key identifier: 50:16:85:DB:79:B0:F8:39:B0:36:D4:99:E9:DD:D7:84:A8:AC:7D:63
Certificate issuer: /CN=c2919334ad2ad53616c34fece96ce29230f86349
Certificate serial: 018D1881A2A08BB2958D5C927A4E42C5BAE0
Authority key identifier: C2:91:93:34:AD:2A:D5:36:16:C3:4F:EC:E9:6C:E2:92:30:F8:63:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wpGTNK0q1TYWw0_s6WzikjD4Y0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/UBaF23mw-DmwNtSZ6d3XhKisfWM.roa
Signing time: Wed 17 Jan 2024 17:39:25 +0000
ROA not before: Wed 17 Jan 2024 17:39:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 91.201.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 13:14:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:18:81:a2:a0:8b:b2:95:8d:5c:92:7a:4e:42:c5:ba:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2919334ad2ad53616c34fece96ce29230f86349
Validity
Not Before: Jan 17 17:39:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=501685db79b0f839b036d499e9ddd784a8ac7d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:80:01:0f:3f:00:0c:06:11:f1:b4:d4:4f:d8:
d1:96:fd:46:b7:b9:31:1c:54:9e:1a:51:73:de:e7:
ed:13:d6:cf:88:fb:be:c9:63:d3:d1:d9:23:5b:c6:
c6:56:2c:0c:84:5e:78:90:1f:8c:d9:bc:f2:6c:8a:
31:fb:2a:e8:45:af:11:76:ba:a5:34:55:ff:81:48:
d6:4e:80:42:37:d4:cd:c4:61:26:46:8b:73:f9:73:
a7:7e:ea:f0:9c:28:6c:d7:13:f2:19:51:4f:09:31:
34:d4:77:ca:f0:1f:b6:e9:46:59:f7:ab:dd:1b:bb:
eb:54:69:1d:82:4d:5c:dd:16:5d:2e:31:76:93:12:
26:79:89:87:20:34:f8:86:fe:d0:96:86:0d:b2:0a:
b9:ed:25:c8:8e:00:8d:21:60:42:99:23:3a:19:8b:
0a:b3:2a:0e:dc:40:3c:9f:a5:43:57:fb:ec:e0:e0:
73:48:36:40:84:8a:0d:66:4b:d0:36:4f:97:d6:70:
71:10:cd:56:a3:61:0c:3c:6b:8d:f3:4e:ca:2f:18:
20:4d:92:20:f1:d8:ec:43:ed:1a:15:2f:f5:42:c6:
d0:d6:39:85:0a:b2:5d:25:f9:53:7f:8e:6a:83:c7:
ff:5f:f3:f6:b9:a3:6f:af:a6:46:62:75:69:78:59:
49:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:16:85:DB:79:B0:F8:39:B0:36:D4:99:E9:DD:D7:84:A8:AC:7D:63
X509v3 Authority Key Identifier:
keyid:C2:91:93:34:AD:2A:D5:36:16:C3:4F:EC:E9:6C:E2:92:30:F8:63:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wpGTNK0q1TYWw0_s6WzikjD4Y0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/UBaF23mw-DmwNtSZ6d3XhKisfWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/wpGTNK0q1TYWw0_s6WzikjD4Y0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.87.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:3f:5d:10:d0:27:c1:97:b1:2c:86:bd:4d:14:cf:a2:fd:89:
3c:93:2c:08:80:f8:be:ff:23:dc:a8:ef:64:78:2e:1b:b1:f1:
0b:84:c6:7f:00:4c:4f:8b:8d:13:7a:c1:40:c7:14:01:ec:d2:
df:41:93:ba:c0:40:e9:48:e3:42:7f:c2:d2:37:81:ca:9b:20:
dd:25:e6:a8:78:0b:21:e0:f4:5b:96:70:da:23:d2:06:2b:01:
e6:ce:6b:5e:a3:36:bf:a0:7c:0f:8a:29:ec:fe:18:94:f4:84:
0f:38:e2:8a:8c:0f:53:8e:a6:01:a0:75:37:59:44:0f:1d:f9:
a0:19:c2:df:67:ae:a5:25:eb:31:fe:c6:d9:c6:6f:02:ae:12:
e0:f9:23:6a:e1:95:07:4c:e5:95:ae:fa:7c:ec:53:f8:f3:ba:
49:93:3d:84:58:9a:b0:d3:01:5a:6a:18:94:0d:d2:c2:10:18:
d8:ac:b1:ca:ed:ce:22:56:79:8f:2a:40:7b:3a:16:ce:54:eb:
6f:14:69:57:05:7f:cc:8a:98:c7:44:4a:a6:d5:d0:80:31:b4:
a6:67:4b:ce:b9:c4:45:9c:7f:3a:b1:d3:ea:9d:bf:04:51:e5:
20:bb:d5:03:15:9f:a6:87:f7:e5:6b:b8:90:9d:12:9e:fb:05:
8a:f9:7a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:40 2024 by rpki-client on console-ams.rpki-client.org