Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/u2P1tvnUHfqo4s4-dAGh_gFp5RI.roa
File: u2P1tvnUHfqo4s4-dAGh_gFp5RI.roa (raw, json)
Hash identifier: oQhjSwURl4TGqFgpd70XyFbl+0jw/HViAojWiMp5Gjc=
Subject key identifier: BB:63:F5:B6:F9:D4:1D:FA:A8:E2:CE:3E:74:01:A1:FE:01:69:E5:12
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 018CA0DB56C499386762B91DC14BEA08E772
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/u2P1tvnUHfqo4s4-dAGh_gFp5RI.roa
Signing time: Mon 25 Dec 2023 12:02:58 +0000
ROA not before: Mon 25 Dec 2023 12:02:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49063
IP address blocks: 185.216.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a0:db:56:c4:99:38:67:62:b9:1d:c1:4b:ea:08:e7:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Dec 25 12:02:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb63f5b6f9d41dfaa8e2ce3e7401a1fe0169e512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:23:e9:03:3f:09:f9:c7:08:38:9b:2e:bf:27:
24:26:ca:27:3b:17:17:31:09:e2:52:57:80:62:34:
95:7b:98:4b:d1:ae:d5:4a:90:80:c9:b5:e3:93:55:
e6:4c:b3:1c:c9:a5:6e:07:61:bd:ad:3f:e8:94:8f:
9a:df:6b:1f:e6:fe:28:96:5f:15:54:7d:ec:44:d7:
09:cf:a6:f6:c1:68:d8:15:8b:72:9b:5a:1c:43:cd:
ee:15:fc:e9:3c:e1:b0:f3:0d:e7:6d:0e:db:53:f3:
40:a9:96:4a:5c:45:ee:0c:62:ba:85:a2:af:fa:2f:
35:fd:64:92:ca:79:c1:de:81:c2:9d:2f:9b:6e:7a:
fd:18:4d:3e:7d:fc:ea:53:21:26:3b:74:6b:ba:b6:
ad:af:e5:4d:da:4b:e3:f4:d6:ca:a3:20:3e:7c:05:
bb:c7:01:2b:78:19:c2:e2:fe:99:eb:41:91:e8:60:
76:a1:c2:e6:04:c1:80:ba:c3:d9:f9:f5:fc:7a:af:
3c:71:06:83:a6:6c:ef:a5:54:90:e0:8a:5b:b9:9f:
8e:93:78:3b:d0:cc:1c:b4:3d:e7:54:cf:e8:6d:c8:
fd:3c:83:81:19:0f:b7:90:ec:c0:75:09:b8:59:4a:
d2:57:65:70:20:77:34:08:5e:5b:e1:16:72:21:bf:
72:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:63:F5:B6:F9:D4:1D:FA:A8:E2:CE:3E:74:01:A1:FE:01:69:E5:12
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/u2P1tvnUHfqo4s4-dAGh_gFp5RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.102.0/24
Signature Algorithm: sha256WithRSAEncryption
11:97:d3:9d:ef:65:4e:2d:b8:19:c9:2e:db:3b:ea:67:5a:0c:
5f:c0:c5:4a:da:9c:97:46:57:74:24:c7:62:45:a4:79:a9:94:
a7:a0:26:6b:0b:45:a6:d5:c6:cb:5f:8b:1a:55:ba:de:bc:98:
77:b6:46:20:2d:72:f3:ab:02:6c:34:dc:9c:56:97:80:b5:72:
0a:b7:8d:9a:85:67:80:ae:ea:81:78:1d:a5:d6:5f:2c:a7:e4:
24:1d:59:a7:99:52:82:46:96:bf:2d:40:67:9a:3c:50:17:fb:
8b:80:b2:c0:a7:b0:17:20:fb:58:ce:71:99:c0:dc:2b:39:75:
f6:a6:b0:35:7a:64:20:a2:d7:d3:ee:5a:5e:4d:5a:64:29:44:
f7:0b:5f:49:40:8f:43:cc:5d:0d:4b:53:0c:20:a8:07:5a:61:
b2:36:62:7e:b2:00:f6:6f:ac:0e:a5:b8:a6:79:c4:da:43:f3:
8e:e2:73:ae:c4:e3:76:3c:43:1c:2e:b0:ee:da:03:ac:50:30:
23:1c:74:e1:1d:e7:21:42:18:db:a4:66:24:12:0c:57:7f:27:
86:58:83:3b:1b:e4:15:5a:7c:7c:6d:53:95:cb:53:8b:33:a5:
f2:06:1f:38:3b:c0:ec:07:bb:9b:8a:c5:94:97:a0:b1:ad:3f:
29:28:38:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:29 2024 by rpki-client on console-ams.rpki-client.org