Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/UusOGejDnKU14qC-dQXgkuVIKl0.roa
File: UusOGejDnKU14qC-dQXgkuVIKl0.roa (raw, json)
Hash identifier: PKxU3rhznLSYP5QPXCSaUyBx6U36US6x5rRdX5vOE8Q=
Subject key identifier: 52:EB:0E:19:E8:C3:9C:A5:35:E2:A0:BE:75:05:E0:92:E5:48:2A:5D
Certificate issuer: /CN=08af091858bb99651764399c6565df7a0834dbad
Certificate serial: 018825A6F0F77513A405852C48E846071766
Authority key identifier: 08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/UusOGejDnKU14qC-dQXgkuVIKl0.roa
Signing time: Tue 16 May 2023 17:41:17 +0000
ROA not before: Tue 16 May 2023 17:41:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210896
IP address blocks: 185.239.24.0/24 maxlen: 24
2a13:f780::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:25:a6:f0:f7:75:13:a4:05:85:2c:48:e8:46:07:17:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08af091858bb99651764399c6565df7a0834dbad
Validity
Not Before: May 16 17:41:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52eb0e19e8c39ca535e2a0be7505e092e5482a5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f9:26:1c:ee:28:cd:b0:e7:71:26:15:ac:a6:
a7:a7:3a:c2:f7:ee:28:9e:4f:51:e8:e8:4c:bd:56:
2c:9b:4f:2f:87:77:00:44:ce:95:61:c5:e5:69:5d:
0e:22:70:05:b7:b8:80:9b:10:31:5f:ea:14:1d:9d:
1c:59:75:7e:87:09:18:1d:9a:b9:26:cf:ce:93:46:
a6:f0:49:97:42:5c:0b:08:b1:d0:92:e3:98:83:14:
67:77:09:1e:80:28:cf:9a:66:83:8f:35:74:48:3c:
ce:9d:fa:2c:24:1f:dd:4d:1e:c8:e9:7b:48:e3:b6:
f3:fe:a3:2e:13:00:e4:35:c8:10:f2:57:21:04:35:
df:39:99:d3:22:86:e5:37:54:aa:50:e1:6d:bc:a4:
91:ff:93:17:db:13:f9:ed:a0:1f:94:e6:e8:91:66:
91:02:54:13:f2:9a:f6:38:5b:cd:42:4b:bb:f0:14:
89:a5:0f:73:2e:ba:ab:f4:1d:3c:ca:d0:e1:c5:c1:
fe:3c:9a:d3:3e:4f:b7:9f:2d:1c:7a:e9:e6:17:f8:
e6:30:74:35:d6:85:55:73:7b:84:42:67:1b:7b:2d:
e6:94:75:99:d2:51:2d:43:dc:9d:16:fe:96:41:05:
f2:b2:f4:e1:ba:c1:87:be:80:83:99:17:fd:3b:a7:
1c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EB:0E:19:E8:C3:9C:A5:35:E2:A0:BE:75:05:E0:92:E5:48:2A:5D
X509v3 Authority Key Identifier:
keyid:08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/UusOGejDnKU14qC-dQXgkuVIKl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.24.0/24
IPv6:
2a13:f780::/29
Signature Algorithm: sha256WithRSAEncryption
54:8f:01:a5:ea:0b:09:1a:ef:7f:ee:b5:cf:95:2f:dd:0a:49:
d6:34:93:4c:c4:70:1d:72:3e:d1:1b:9d:16:76:e9:e9:3f:94:
6a:6a:f2:c6:c1:b0:ba:a8:59:76:df:97:78:44:f9:94:36:cb:
0f:d5:4a:94:0e:4e:e4:46:47:1c:94:df:b7:9f:43:39:ed:bd:
88:45:9e:47:e3:14:09:be:14:25:c1:74:d6:44:9c:d2:08:de:
02:2c:24:16:1c:09:ac:19:0c:96:19:09:7b:6d:64:e9:c2:bf:
4f:bf:8d:47:15:47:af:84:8c:00:9c:dd:e2:8a:3a:f7:d3:65:
6a:41:b0:85:a4:13:a7:17:47:81:76:7e:c7:c8:50:7e:be:84:
2d:d3:45:3e:de:90:0c:df:c0:e5:78:cb:62:e3:ee:72:97:ec:
66:24:c2:ec:ef:ff:d9:53:d1:b9:90:88:da:09:71:18:55:94:
cb:39:0c:62:d1:9f:15:66:d2:90:78:48:b5:28:23:75:11:45:
02:3a:d0:9c:fc:64:b8:4c:27:eb:18:53:e8:3b:0b:0e:84:ab:
c4:a4:69:b7:f0:25:03:f9:51:8a:91:22:0a:8f:d7:c6:4b:d2:
20:55:4f:0d:27:40:c1:d0:4d:f4:65:92:35:65:3d:a5:2f:6c:
26:ad:c6:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:08 2024 by rpki-client on console-fra.rpki-client.org