Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/UNe2NXnrABZ2ZcviI_1oCzbHYtY.roa
File: UNe2NXnrABZ2ZcviI_1oCzbHYtY.roa (raw, json)
Hash identifier: jJO8/mr8cBuVtWvQuS+kEHRdT3ipCeeaNL9I35khltU=
Subject key identifier: 50:D7:B6:35:79:EB:00:16:76:65:CB:E2:23:FD:68:0B:36:C7:62:D6
Certificate issuer: /CN=23cbbf9348ae558c6efa0c086f24be04cb23c6e9
Certificate serial: 0186DF52D872EDE1C206E025C1DD697476DA
Authority key identifier: 23:CB:BF:93:48:AE:55:8C:6E:FA:0C:08:6F:24:BE:04:CB:23:C6:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I8u_k0iuVYxu-gwIbyS-BMsjxuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/UNe2NXnrABZ2ZcviI_1oCzbHYtY.roa
Signing time: Tue 14 Mar 2023 08:53:13 +0000
ROA not before: Tue 14 Mar 2023 08:53:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60751
IP address blocks: 185.104.216.0/22 maxlen: 24
185.24.233.0/24 maxlen: 24
185.24.234.0/23 maxlen: 24
2a04:2e01::/32 maxlen: 36
2a04:2e00::/32 maxlen: 36
Validation: Failed, certificate revoked on Tue 14 Mar 2023 11:17:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:df:52:d8:72:ed:e1:c2:06:e0:25:c1:dd:69:74:76:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23cbbf9348ae558c6efa0c086f24be04cb23c6e9
Validity
Not Before: Mar 14 08:53:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50d7b63579eb00167665cbe223fd680b36c762d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:06:03:79:a7:72:98:3c:5a:07:a4:88:19:a5:
0f:de:5b:58:ef:ed:1c:55:fc:49:d9:f9:20:f5:c7:
fe:81:73:95:c5:1f:42:f0:6d:3f:1a:aa:f8:f1:57:
97:a1:f5:09:b7:fd:19:26:35:40:b2:20:50:bf:49:
aa:20:c2:86:00:e2:6b:74:f9:0f:6b:75:0d:d0:f2:
95:f4:35:c6:33:95:97:0f:4a:20:76:f9:b4:69:4b:
91:7c:8d:53:e0:45:e5:15:2e:ef:87:40:f7:39:e1:
47:ba:4d:70:94:5a:2c:da:3b:80:23:08:d3:db:cc:
70:7b:63:02:c4:fd:9f:7f:bf:e8:4f:fc:b1:69:42:
ca:a4:83:00:49:25:88:75:6a:46:03:45:82:f8:5c:
dd:5a:dd:99:41:06:79:cd:a3:d9:5c:21:c9:26:de:
dc:9d:0e:bf:2c:0e:6a:15:3b:f5:8c:3b:2e:de:4d:
7c:c6:e3:c0:eb:68:49:73:c6:f2:30:67:98:90:aa:
d7:50:d9:88:49:96:29:73:20:0c:4f:80:ac:36:ff:
56:51:68:38:55:5e:99:5a:ca:d0:24:7e:e6:b7:eb:
1a:78:3b:28:27:a2:c0:20:9c:6f:91:ab:c5:6f:ab:
e8:9a:df:6a:9a:93:aa:e8:38:0a:3a:fd:25:af:9b:
f8:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:D7:B6:35:79:EB:00:16:76:65:CB:E2:23:FD:68:0B:36:C7:62:D6
X509v3 Authority Key Identifier:
keyid:23:CB:BF:93:48:AE:55:8C:6E:FA:0C:08:6F:24:BE:04:CB:23:C6:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I8u_k0iuVYxu-gwIbyS-BMsjxuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/UNe2NXnrABZ2ZcviI_1oCzbHYtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/I8u_k0iuVYxu-gwIbyS-BMsjxuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.233.0-185.24.235.255
185.104.216.0/22
IPv6:
2a04:2e00::/31
Signature Algorithm: sha256WithRSAEncryption
14:90:cf:60:9e:44:ea:b4:c4:e9:3e:7d:a5:2d:3c:19:7e:c1:
c9:32:e0:3f:ab:1d:20:5a:11:fc:0e:e9:5c:12:e7:f2:76:cd:
f8:c5:33:f1:3f:c9:cc:ca:77:d5:fc:f1:a8:ca:9d:d6:4d:d3:
a9:6b:6b:a9:c2:c8:af:5c:f0:e8:a3:e5:a2:2a:7e:32:e8:53:
84:da:fd:11:65:49:b5:18:36:2d:9e:4b:97:24:99:aa:e5:5b:
90:80:8d:67:b1:25:7e:3e:15:09:b7:1c:4b:29:f9:fd:3a:18:
b5:d3:9d:bc:a5:eb:f9:bb:49:4e:49:b6:fc:e9:e1:06:08:cb:
02:3b:a1:45:f8:38:a5:a4:bd:88:0b:fa:cf:b8:4c:94:14:de:
2f:5e:01:52:3d:dc:7e:c1:c8:2c:a3:04:6e:0f:ff:62:a9:00:
89:47:4e:24:88:5c:9c:5b:39:75:af:53:65:cf:6e:d8:b1:f8:
ee:5d:b5:6d:a3:d3:cf:8d:08:86:7f:0a:f9:c4:20:07:03:28:
6d:fb:a4:1e:d0:97:6d:98:85:e5:90:1b:f8:2c:a1:b0:57:17:
ce:cb:53:db:b9:0d:e9:fd:48:79:d3:cf:eb:5c:c4:01:7b:aa:
e3:76:d5:af:8d:10:29:7c:dd:e4:1f:70:a9:91:68:7b:9e:db:
10:38:2d:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:13 2024 by rpki-client on console-ams.rpki-client.org