Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/8c48ac-d96a-441a-b186-8787d0bf1207/1/UNicPvjlRKxo71RVVTLwzJXbyFY.roa
File: UNicPvjlRKxo71RVVTLwzJXbyFY.roa (raw, json)
Hash identifier: P9dJty1tlE+VF22pKa94Ci8/AIYRFZfiPbz77Hctms8=
Subject key identifier: 50:D8:9C:3E:F8:E5:44:AC:68:EF:54:55:55:32:F0:CC:95:DB:C8:56
Certificate issuer: /CN=ef803a490fd6203518bbe644bc7209afb77ec7b4
Certificate serial: 0189B136F65A0268C76F61C7C7EB2145EF9D
Authority key identifier: EF:80:3A:49:0F:D6:20:35:18:BB:E6:44:BC:72:09:AF:B7:7E:C7:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/74A6SQ_WIDUYu-ZEvHIJr7d-x7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/8c48ac-d96a-441a-b186-8787d0bf1207/1/UNicPvjlRKxo71RVVTLwzJXbyFY.roa
Signing time: Tue 01 Aug 2023 13:08:36 +0000
ROA not before: Tue 01 Aug 2023 13:08:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203170
IP address blocks: 193.177.232.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b1:36:f6:5a:02:68:c7:6f:61:c7:c7:eb:21:45:ef:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef803a490fd6203518bbe644bc7209afb77ec7b4
Validity
Not Before: Aug 1 13:08:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50d89c3ef8e544ac68ef54555532f0cc95dbc856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ce:b8:48:ff:7c:7c:c2:e9:24:b2:4e:b0:7e:
0b:3a:9a:a4:7b:3f:69:b8:8b:41:8c:17:de:78:c7:
2c:e0:d4:e8:62:65:a7:19:aa:54:39:9f:2f:c5:b5:
09:00:f2:3d:c2:f3:4f:ad:b8:c2:6c:8a:22:f1:4b:
b4:5b:d6:13:8f:22:5e:8e:bb:7d:33:ee:50:66:6e:
11:31:35:b2:c7:c1:7b:2e:f1:88:da:e0:31:ad:de:
42:24:f9:89:46:c7:52:30:73:23:43:4a:11:a7:17:
20:4a:61:cc:97:ec:aa:33:bc:c3:8e:97:1e:c0:2e:
f1:81:2d:4a:a4:e8:bc:24:ed:56:36:d9:bb:8c:08:
db:ac:3a:15:49:6b:3a:d1:2e:90:4c:3c:1c:e9:22:
7a:7f:a1:3c:1c:a3:fe:81:6f:6a:82:ad:f9:14:2a:
2b:05:bd:f3:69:0a:7c:1b:bf:75:9d:9b:35:57:8b:
2c:6d:40:7c:fd:99:20:44:e1:74:4b:d6:6f:de:96:
ad:14:19:e8:98:86:2a:4c:1a:c8:c4:41:a2:da:b9:
9c:8f:76:02:4a:d9:0d:25:e4:48:9d:60:2b:94:a4:
7d:a7:bd:66:cf:9f:6c:8d:f6:6a:c6:36:27:7c:6d:
0a:2b:f7:e2:12:1a:5a:78:60:46:6a:21:e6:2a:7b:
f6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:D8:9C:3E:F8:E5:44:AC:68:EF:54:55:55:32:F0:CC:95:DB:C8:56
X509v3 Authority Key Identifier:
keyid:EF:80:3A:49:0F:D6:20:35:18:BB:E6:44:BC:72:09:AF:B7:7E:C7:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/74A6SQ_WIDUYu-ZEvHIJr7d-x7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8c48ac-d96a-441a-b186-8787d0bf1207/1/UNicPvjlRKxo71RVVTLwzJXbyFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8c48ac-d96a-441a-b186-8787d0bf1207/1/74A6SQ_WIDUYu-ZEvHIJr7d-x7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.177.232.0/23
Signature Algorithm: sha256WithRSAEncryption
47:b5:76:bd:0d:ed:0f:ac:27:c3:79:e5:81:d0:18:c3:e2:cc:
cd:00:e1:e7:f6:68:20:e4:95:97:3b:ce:01:19:4b:9e:0c:07:
b8:55:64:56:90:38:ce:bd:5b:cb:06:0e:e2:70:04:21:f7:43:
bb:7c:9b:de:80:2e:43:79:42:ad:42:62:66:80:4e:3a:28:5c:
b0:d7:1e:89:8e:6d:a9:43:5c:f7:0d:03:f5:7a:72:c0:aa:a6:
04:9f:5e:ff:ca:02:74:e8:a7:22:8b:1d:3b:88:34:17:5b:4e:
c4:fe:ef:14:5f:a7:d2:77:f8:d4:87:e1:a0:99:16:a2:b2:c8:
65:4b:49:ba:5b:44:f4:6a:18:75:8b:68:26:c1:f0:fd:2f:43:
1e:23:1c:bf:34:ba:8a:6d:14:35:4d:ce:be:84:61:90:34:73:
27:40:33:63:5b:c7:f6:8d:9d:71:19:ac:92:9c:14:cc:8e:3e:
10:90:46:fb:8f:7a:20:06:d9:28:e2:95:b9:47:a5:ce:43:1f:
07:01:bb:79:ca:99:b8:58:5c:f1:a8:03:50:55:90:9f:cd:bd:
86:7b:4e:e8:12:24:ef:2b:cf:10:57:b5:94:d3:98:58:f4:e1:
8f:65:67:dd:7e:96:7e:96:bb:25:64:ac:c1:39:3a:b1:bd:7b:
7e:5d:52:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:26 2024 by rpki-client on console-fra.rpki-client.org