Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0NWURN-O7WG1FkOvYrRTZp9-ugI.roa
File: 0NWURN-O7WG1FkOvYrRTZp9-ugI.roa (raw, json)
Hash identifier: T1Ai7UomMl64asxq9BZjuUE7nh3mxH+9iaP++8duErM=
Subject key identifier: D0:D5:94:44:DF:8E:ED:61:B5:16:43:AF:62:B4:53:66:9F:7E:BA:02
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018926D7E60E6A13B70D3F58624E8CFC01A7
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0NWURN-O7WG1FkOvYrRTZp9-ugI.roa
Signing time: Wed 05 Jul 2023 16:17:10 +0000
ROA not before: Wed 05 Jul 2023 16:17:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138195
IP address blocks: 185.214.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:26:d7:e6:0e:6a:13:b7:0d:3f:58:62:4e:8c:fc:01:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 5 16:17:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0d59444df8eed61b51643af62b453669f7eba02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:af:ea:51:e6:e0:4e:64:48:c9:27:69:b3:e4:
35:ca:97:e7:4f:62:44:90:7f:84:f8:ab:3b:0b:b7:
53:65:f8:2a:32:71:d1:e4:df:4e:47:a2:1d:67:b6:
dc:12:60:e9:6d:f5:43:e4:c9:c7:87:58:50:eb:67:
81:19:83:34:da:01:49:15:0f:1a:67:80:d0:d9:22:
f4:7a:93:d0:f5:af:c3:d1:0c:3e:1c:72:8b:ab:b9:
c3:58:81:4b:70:24:a7:50:10:98:7f:93:b6:ea:08:
56:55:f3:92:ed:e8:0a:24:12:7c:d9:e4:95:35:8b:
7d:18:6a:26:83:d8:9b:ab:f5:e7:c9:7b:ea:ed:fc:
2b:b9:29:b0:c3:94:25:fa:11:20:45:d7:bf:65:41:
ef:97:5b:3e:46:3a:02:68:b0:e9:1a:de:46:51:ef:
8c:b4:27:96:b8:f5:88:5d:a4:bf:51:79:b2:07:49:
d2:5c:55:5c:99:e8:a3:fa:1a:a0:01:8b:c4:36:90:
59:17:3e:25:8d:91:4f:31:52:f8:f5:e7:b2:33:ff:
db:89:65:fb:55:28:f4:40:61:8b:dc:11:8e:64:c0:
2e:82:02:af:c2:17:7c:a3:9a:9a:d8:d9:53:da:ad:
d1:d8:04:3a:36:0b:e8:5a:f4:37:38:31:8d:d6:f6:
be:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D5:94:44:DF:8E:ED:61:B5:16:43:AF:62:B4:53:66:9F:7E:BA:02
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0NWURN-O7WG1FkOvYrRTZp9-ugI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.103.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:71:9e:47:9a:ee:87:88:a1:63:11:e7:65:c6:0f:0c:02:3d:
4c:06:c8:3d:6a:b8:86:01:36:90:c8:f8:15:9c:d4:51:49:58:
9e:b6:b6:3a:bd:99:83:4d:75:96:8f:c2:06:f9:0b:89:86:e8:
df:02:30:d0:d8:05:53:2e:85:8f:94:53:63:5f:11:4b:af:53:
85:83:98:1c:99:f6:23:da:46:98:5b:c3:81:1e:8e:7c:8b:2c:
93:8b:a7:70:aa:6e:b9:ae:92:0c:d0:53:df:0d:96:b5:ac:cf:
ae:6b:3c:f8:54:a3:23:d5:79:18:22:43:4a:b0:9d:95:cc:6e:
1f:f2:14:0c:3f:dc:30:9d:8c:18:3b:43:69:97:41:ba:02:a0:
9b:8e:af:9a:14:05:ad:9d:d0:f1:dd:d1:3f:b4:07:9d:68:07:
a4:d3:e4:77:72:44:67:5c:07:3a:8b:06:2e:e5:ee:9a:94:c0:
48:00:a6:09:29:07:5a:77:5e:04:0f:6a:f1:30:22:a7:6a:d2:
43:f4:b5:39:73:b9:0c:7e:82:c6:5e:1c:eb:b8:8d:87:d7:a1:
4c:d3:c6:1f:4a:3f:b2:d0:6e:37:f4:56:18:61:75:fa:74:0e:
1d:cb:1e:49:da:cc:06:ce:a5:1e:ff:78:d7:24:c7:90:00:eb:
9e:ca:fd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:19 2024 by rpki-client on console-ams.rpki-client.org