Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1-tSPmlIPVudrQXlKABc9UsA7aB0.roa
File: 1-tSPmlIPVudrQXlKABc9UsA7aB0.roa (raw, json)
Hash identifier: 4YxQGpYe8oT0Y5xD/VX1LD7LUVsYa81/9La0bi0HrR0=
Subject key identifier: FA:D4:8F:9A:52:0F:56:E7:6B:41:79:4A:00:17:3D:52:C0:3B:68:1D
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018B04541FA388B6A45040F5A93C2326FB72
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1-tSPmlIPVudrQXlKABc9UsA7aB0.roa
Signing time: Fri 06 Oct 2023 09:31:43 +0000
ROA not before: Fri 06 Oct 2023 09:31:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135330
IP address blocks: 193.233.193.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:04:54:1f:a3:88:b6:a4:50:40:f5:a9:3c:23:26:fb:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Oct 6 09:31:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fad48f9a520f56e76b41794a00173d52c03b681d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:59:b8:fb:0f:da:0d:82:54:c8:28:43:05:92:
35:ad:06:a9:03:34:e5:b4:60:e7:e9:91:71:dd:9e:
4f:be:06:f3:1b:02:27:b0:98:6a:c7:d8:98:34:db:
e2:dd:87:d1:5e:d7:4c:ce:35:53:64:61:bf:38:97:
98:bd:f3:18:ba:10:57:6a:0b:ef:44:4b:29:1f:09:
12:e7:52:f2:dc:89:da:db:42:62:dc:71:9b:c9:98:
58:e6:ab:d5:97:ed:34:61:9a:f6:f9:15:3c:81:b5:
a4:7c:32:09:6d:f6:9d:44:b1:11:87:f4:f0:ee:ed:
e7:78:76:90:ab:7c:2a:21:de:e7:5f:9a:94:40:21:
d7:aa:fe:a3:ae:01:62:02:10:6d:b0:66:91:78:80:
14:0d:97:3b:55:ae:b0:2e:9a:e7:ab:83:d4:15:f2:
5e:c1:a4:e2:da:fc:b6:41:29:68:8a:d2:35:97:2a:
75:3d:0c:cc:11:ad:39:35:7c:5d:82:9d:2a:10:e1:
e0:27:30:49:ef:d4:3b:c7:87:97:e2:27:c9:d9:da:
7f:7f:66:36:ea:fd:30:9c:a4:f3:76:49:00:aa:73:
a2:76:af:2c:3f:42:a5:6f:a8:13:ba:0d:b7:77:08:
9c:84:f2:34:c3:c3:3f:96:10:20:3c:0a:bf:0b:09:
ff:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D4:8F:9A:52:0F:56:E7:6B:41:79:4A:00:17:3D:52:C0:3B:68:1D
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1-tSPmlIPVudrQXlKABc9UsA7aB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.193.0/24
Signature Algorithm: sha256WithRSAEncryption
47:c7:22:2c:e1:d7:94:1f:60:fa:db:57:f1:10:2d:fd:2d:0e:
59:67:94:77:0b:28:ef:15:09:bb:32:82:5a:ec:d9:9f:6a:a4:
87:7c:b8:0e:ce:82:11:ea:bd:df:c7:de:e1:e3:15:a2:43:74:
11:f5:7e:70:aa:a7:b0:46:ab:32:45:b6:b5:2e:ea:d7:c5:ef:
5b:26:e0:23:2f:5c:9d:bc:d2:7e:0c:0e:5e:bf:0a:a3:20:43:
d2:d8:2f:94:cf:41:72:11:d2:09:53:ed:96:5b:13:3a:3b:da:
30:0a:e7:f6:27:25:b8:99:f7:88:99:77:98:65:a0:30:a3:8a:
5b:db:95:05:62:f9:c0:c2:ed:e2:e4:21:cf:15:29:e4:a4:8e:
f4:9e:92:8a:ed:2d:0f:76:db:17:76:b5:49:30:08:55:80:6f:
d6:51:84:9e:31:26:8c:31:0b:bb:47:79:80:ca:2a:96:c8:59:
6c:ad:c2:04:e8:5a:46:7d:eb:c3:3d:0d:f5:a6:e2:7f:b0:d1:
e1:94:74:ff:39:b3:c5:c5:63:bb:76:75:8c:68:99:7d:f8:b2:
df:f3:cc:f6:ed:37:41:7d:ea:90:10:a4:9b:08:de:c6:90:70:
04:7e:f3:3f:d3:b9:08:df:0f:48:07:11:de:7f:e8:fa:37:ac:
8f:b1:fc:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:21 2024 by rpki-client on console-ams.rpki-client.org