Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/0Gf3zYG0EvbIhv4jAjrgAr1K8pc.roa
File: 0Gf3zYG0EvbIhv4jAjrgAr1K8pc.roa (raw, json)
Hash identifier: U6QG9mlOE2SGl5FREYAIDh6oV9E68YlX8/7Ra62vdj0=
Subject key identifier: D0:67:F7:CD:81:B4:12:F6:C8:86:FE:23:02:3A:E0:02:BD:4A:F2:97
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0187E677A021E09EF3B9A8EE195697DCE9AB
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/0Gf3zYG0EvbIhv4jAjrgAr1K8pc.roa
Signing time: Thu 04 May 2023 11:13:32 +0000
ROA not before: Thu 04 May 2023 11:13:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210171
IP address blocks: 193.233.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Sep 2023 11:24:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e6:77:a0:21:e0:9e:f3:b9:a8:ee:19:56:97:dc:e9:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: May 4 11:13:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d067f7cd81b412f6c886fe23023ae002bd4af297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:05:7f:f9:ff:53:5f:07:8f:68:df:ab:d5:7f:
eb:b3:fb:ab:b4:80:25:e5:95:8b:21:8c:6c:db:5c:
18:ef:13:18:64:6f:26:21:20:32:56:6c:8c:60:ee:
20:cc:f5:a8:9f:0b:b8:23:16:cb:f2:3a:db:41:ae:
4f:24:39:86:7c:a3:88:c3:aa:98:93:7e:02:c0:8b:
e3:14:1b:a7:4c:0b:4c:b6:eb:76:a5:57:0c:94:d1:
e4:63:d8:d3:50:d2:4c:9c:03:5a:d5:db:65:55:78:
f2:44:b3:3e:52:54:71:93:cb:c2:3a:d7:d8:bf:92:
b6:41:26:d4:6b:15:f6:76:54:82:4a:f0:24:3a:e3:
57:87:c8:d7:11:70:35:e6:3a:52:6a:7d:66:9a:a0:
ab:29:df:ab:64:b9:3e:00:a1:bc:b7:af:51:39:9f:
f8:06:d5:7d:6d:fc:1f:30:b7:2b:dc:a7:72:50:01:
ea:87:4f:7f:c1:c7:99:07:1c:ac:e9:ad:d6:78:50:
8d:57:1b:3d:1d:54:6d:ef:f4:c7:68:57:1b:2a:19:
2e:ac:65:27:89:72:8a:56:20:03:48:9a:6c:fb:7d:
d6:44:e8:e4:0f:da:87:82:4b:d1:fb:6a:f9:fb:6c:
21:65:eb:d2:bd:f4:ef:ee:fb:39:9b:08:6d:75:e2:
dd:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:67:F7:CD:81:B4:12:F6:C8:86:FE:23:02:3A:E0:02:BD:4A:F2:97
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/0Gf3zYG0EvbIhv4jAjrgAr1K8pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.132.0/24
Signature Algorithm: sha256WithRSAEncryption
74:36:9d:c9:e6:6a:cb:e5:f3:fc:a3:41:12:55:94:b5:c6:99:
d8:c3:66:6d:82:64:76:55:c7:38:45:a1:65:71:df:1f:2c:42:
e1:57:f7:11:76:7f:6c:6b:78:f8:32:05:45:65:c3:ab:27:8c:
7f:98:54:96:0b:96:4a:ed:25:54:6b:60:62:e9:fd:93:8d:bc:
e8:b8:5e:bc:f2:56:18:f1:4e:c1:4d:90:3c:9d:74:3e:b5:2f:
02:24:c0:03:98:b8:9b:71:c7:dd:ad:c9:fb:6f:5e:ed:63:7d:
b9:56:4b:c2:e7:04:45:d5:9d:6d:29:04:1a:5e:70:08:34:ce:
13:04:b3:18:e9:b1:43:17:32:58:fc:d6:1c:d0:81:96:51:dc:
f8:9e:9b:17:97:a3:28:b8:3a:8a:d3:4a:d3:13:f4:75:a1:9a:
6d:ee:1e:1a:3d:ad:ee:9f:01:13:2d:45:14:56:29:31:f5:dd:
74:fa:fd:2f:c2:63:cf:d9:a7:dc:27:b3:55:ab:ae:88:b1:5a:
28:09:1c:e9:37:40:0f:dc:4f:3b:b8:f5:ac:31:3d:59:23:fd:
01:33:07:28:3b:99:43:b1:e4:8a:95:e1:ec:aa:25:55:59:2f:
8a:0b:0c:82:35:04:52:4c:28:3c:92:7d:ca:ed:8d:ca:59:71:
4b:11:8c:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org