Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/0T8kyyfuZZi5dwpu8hD6jCL0hnU.roa
File: 0T8kyyfuZZi5dwpu8hD6jCL0hnU.roa (raw, json)
Hash identifier: drD5aSfCThLE2Sc9p6P+tkUjYwsAhMG2AQxM9iNBeMg=
Subject key identifier: D1:3F:24:CB:27:EE:65:98:B9:77:0A:6E:F2:10:FA:8C:22:F4:86:75
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01856F26DEB9AFEF2B1371D29EA6D55D257D
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/0T8kyyfuZZi5dwpu8hD6jCL0hnU.roa
Signing time: Sun 01 Jan 2023 21:04:56 +0000
ROA not before: Sun 01 Jan 2023 21:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26548
IP address blocks: 193.233.208.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:de:b9:af:ef:2b:13:71:d2:9e:a6:d5:5d:25:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 21:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d13f24cb27ee6598b9770a6ef210fa8c22f48675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:be:b5:1c:21:ff:35:6c:ae:43:20:a2:bd:69:
08:3e:6e:90:1e:1e:99:f6:00:25:c7:1e:3d:f0:e3:
97:ed:a1:61:dc:17:0c:03:6c:d8:05:32:e2:b1:58:
3f:e2:55:14:8a:44:f0:f6:af:03:38:6c:41:f2:40:
2d:4c:b3:20:31:a1:9d:dd:b7:b7:cd:f4:de:d9:8d:
61:76:37:4a:f1:cb:4d:95:8b:b4:e2:11:0f:26:10:
ea:dc:1d:9f:24:be:fa:30:0d:69:c3:b5:91:1d:6b:
6b:22:f5:4c:50:8c:e0:8f:5b:03:a0:c1:ef:54:61:
5a:40:76:f4:eb:d6:5e:46:d7:9b:4e:d4:40:2e:7d:
45:52:0b:e5:f7:ee:cb:19:d5:8b:bf:d4:2b:89:4f:
cc:e5:ad:ee:29:6a:5e:1f:e7:28:5c:78:b6:95:9b:
1f:84:f8:50:6b:e4:00:35:88:49:ef:e6:58:4b:74:
01:8a:ff:01:83:c1:6c:f3:6e:1e:87:43:21:b0:b1:
0f:df:37:ec:80:f6:31:a9:4b:b8:98:2f:76:d2:81:
e5:13:07:48:6e:01:0f:10:b3:fe:0d:f3:ee:68:88:
ae:dc:00:ca:66:18:41:76:6e:f9:6b:cb:6e:02:a3:
c9:7a:c1:56:80:41:43:04:8e:1f:d0:af:68:dd:89:
0a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:3F:24:CB:27:EE:65:98:B9:77:0A:6E:F2:10:FA:8C:22:F4:86:75
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/0T8kyyfuZZi5dwpu8hD6jCL0hnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.208.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:09:a9:c7:3a:e5:be:82:6e:d5:2d:66:b8:be:22:78:cc:fd:
4f:c9:1e:df:a0:c2:fd:5c:d3:c3:ae:ee:46:f2:8b:b6:c0:9f:
a2:c1:5a:57:23:68:83:39:9c:5f:88:fb:36:e0:5b:5f:c5:34:
53:b6:71:7b:21:80:a2:9e:e7:e1:6d:4e:ec:83:2c:83:eb:9a:
21:48:59:c7:1f:fe:0b:d7:dc:4e:2f:5f:d2:5b:b2:36:38:98:
e3:a8:fa:c9:a1:70:b0:9e:50:42:e8:a9:80:ac:e1:f4:2a:9d:
35:29:5e:82:57:fd:33:90:bd:68:5a:61:d1:8b:34:ae:9c:24:
19:7f:70:a2:44:52:79:40:28:53:b2:a8:d4:17:99:b2:cf:cd:
bf:ab:ba:2a:0b:d8:69:cd:64:26:8f:9c:3f:54:50:16:c4:6d:
e3:e1:37:7b:94:23:30:0c:35:67:b6:a6:cf:c6:34:11:3d:4e:
86:02:9e:f6:95:57:2a:c1:ef:fe:3d:cf:7f:cc:a4:be:39:5d:
29:20:21:a9:ae:00:f2:44:11:a0:a6:16:2d:b0:c2:a0:86:cc:
b5:a0:97:4a:bd:fc:6e:95:6d:99:ec:15:80:e0:da:13:a1:8f:
d6:f5:4d:79:68:99:1a:90:32:af:d3:71:49:a4:99:60:7f:ec:
9e:2e:a2:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:05 2024 by rpki-client on console-fra.rpki-client.org