Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/UnC24FTFRq2pbovniPRXweP6vq0.roa
File: UnC24FTFRq2pbovniPRXweP6vq0.roa (raw, json)
Hash identifier: yUfuIjO6asVUN556JE+z3kQunS5tWMKHfIN1GXkLb00=
Subject key identifier: 52:70:B6:E0:54:C5:46:AD:A9:6E:8B:E7:88:F4:57:C1:E3:FA:BE:AD
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018A9816DFE990E13E1CE1A52B9A44EB7698
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/UnC24FTFRq2pbovniPRXweP6vq0.roa
Signing time: Fri 15 Sep 2023 09:05:50 +0000
ROA not before: Fri 15 Sep 2023 09:05:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35809
IP address blocks: 80.233.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:16:df:e9:90:e1:3e:1c:e1:a5:2b:9a:44:eb:76:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Sep 15 09:05:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5270b6e054c546ada96e8be788f457c1e3fabead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b9:ce:be:e2:e7:f8:e5:98:4a:b9:bf:d5:d9:
77:52:ec:1f:20:8c:a9:ac:11:48:e5:33:26:66:08:
10:10:41:f5:f3:3a:e6:82:42:cf:aa:58:9a:03:fc:
d6:8f:7f:9c:2e:05:40:8f:ef:a3:70:1b:8d:c6:29:
35:83:16:75:e5:0b:41:bc:58:f6:d6:6e:f0:2f:d4:
df:04:c5:8d:9f:4a:78:93:b4:80:14:b9:8f:54:0c:
8c:f5:46:6e:c1:d2:8f:eb:32:82:8c:00:39:91:e3:
77:9e:40:76:d8:a0:f6:e8:90:1c:bf:8c:c9:b6:95:
5e:ac:6c:f5:8e:89:37:74:78:57:ae:a1:f3:26:cb:
05:5e:33:75:2a:47:26:09:34:19:cd:d0:d8:fc:0f:
d1:8e:0a:fd:9f:ef:c5:56:83:2a:37:99:0d:ce:d3:
6e:fb:8f:75:22:d1:42:79:c3:9f:ef:08:87:ab:88:
b3:81:4d:0e:c5:12:04:73:4a:25:32:ae:b9:61:e7:
99:c5:0e:6c:0b:34:d4:8f:7b:81:28:8d:60:e8:6c:
df:26:5a:d8:10:8c:3c:3e:67:dd:02:7e:fd:0b:ed:
2b:45:46:65:ac:cc:88:1a:b2:5c:a8:82:f6:5b:91:
27:9c:be:1c:a5:78:65:0f:a1:28:39:ac:78:21:d4:
23:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:70:B6:E0:54:C5:46:AD:A9:6E:8B:E7:88:F4:57:C1:E3:FA:BE:AD
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/UnC24FTFRq2pbovniPRXweP6vq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.167.0/24
Signature Algorithm: sha256WithRSAEncryption
75:ae:b1:a4:87:a4:28:13:9d:7a:5a:df:5b:08:15:9a:aa:2a:
70:5b:2b:50:52:7c:dd:8e:d6:d9:58:2c:73:e0:d3:c0:8e:5d:
b7:db:6b:70:b0:c5:a4:f0:40:76:ce:cf:a1:01:07:44:74:3d:
4b:83:3b:8a:02:41:e5:15:cc:f9:81:48:96:04:d1:8b:15:0e:
be:a2:43:2e:2c:61:5d:24:61:4b:02:3b:80:3f:70:16:13:06:
3f:74:e7:ae:f6:10:ae:6e:b8:85:9e:e7:39:b6:b5:51:c5:ae:
90:6d:37:c9:1b:6e:bf:58:77:f2:6b:cd:02:a6:40:fc:7e:05:
c8:11:ee:5f:ad:88:39:62:ef:f8:26:91:74:aa:77:95:d0:62:
6e:93:aa:24:c4:4d:2e:99:4f:3e:4a:d5:04:db:e3:0b:dd:2f:
8d:56:7b:bf:a8:52:0a:7b:df:b3:b6:20:d5:24:cb:78:e5:e3:
a6:00:d3:ed:54:fb:bc:c1:c0:62:1e:95:eb:99:de:4c:79:b5:
2a:44:6e:c1:19:d0:c1:0b:c7:2b:d4:5c:d5:c3:8a:c7:4a:18:
d0:f9:f4:28:20:fd:99:84:53:6a:7a:8a:5b:37:08:a0:29:1a:
b7:b6:aa:a4:7c:3a:f3:c0:74:c6:a3:f6:d4:8e:58:ae:c8:c2:
de:97:a5:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:12 2024 by rpki-client on console-ams.rpki-client.org