Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/19J5TerHKUEja30Ya8oJhe4YfR4.roa
File: 19J5TerHKUEja30Ya8oJhe4YfR4.roa (raw, json)
Hash identifier: nlLzQ6KjRzYUdaFdCA+BHtHuyFG3nMU5OjQz67GVU3c=
Subject key identifier: D7:D2:79:4D:EA:C7:29:41:23:6B:7D:18:6B:CA:09:85:EE:18:7D:1E
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01869EDAE28AC3C7A12B97658AC78AB458B6
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/19J5TerHKUEja30Ya8oJhe4YfR4.roa
Signing time: Wed 01 Mar 2023 20:26:30 +0000
ROA not before: Wed 01 Mar 2023 20:26:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56690
IP address blocks: 193.233.150.0/24 maxlen: 24
193.233.166.0/23 maxlen: 23
193.233.168.0/23 maxlen: 23
193.233.73.0/24 maxlen: 24
193.233.92.0/24 maxlen: 24
193.233.93.0/24 maxlen: 24
193.233.94.0/24 maxlen: 24
193.233.12.0/23 maxlen: 23
193.233.240.0/23 maxlen: 23
193.233.18.0/24 maxlen: 24
193.233.24.0/23 maxlen: 23
193.233.242.0/24 maxlen: 24
193.233.243.0/24 maxlen: 24
193.233.26.0/23 maxlen: 23
193.233.28.0/23 maxlen: 23
193.233.254.0/23 maxlen: 23
193.233.54.0/23 maxlen: 23
193.233.176.0/20 maxlen: 20
193.233.212.0/22 maxlen: 22
193.233.224.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9e:da:e2:8a:c3:c7:a1:2b:97:65:8a:c7:8a:b4:58:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Mar 1 20:26:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7d2794deac72941236b7d186bca0985ee187d1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:82:34:fc:40:1b:34:df:a5:ea:6e:c6:ad:a6:
7d:21:f7:9a:38:21:f1:91:c1:02:ef:a8:4f:34:9a:
c1:da:a3:ba:68:db:bc:9f:ef:1e:0a:38:32:e2:00:
50:88:5a:77:1a:d5:32:b1:46:91:68:81:76:16:e1:
ee:c4:c4:75:26:cf:21:a3:62:bc:66:71:53:12:38:
02:67:5b:44:77:2b:dd:47:75:50:81:a8:81:9a:af:
65:41:d0:db:55:38:5b:99:7d:47:a2:dd:a7:cc:70:
86:41:74:06:44:80:49:27:43:e3:af:ec:68:70:79:
35:bc:2b:54:e0:d3:cb:c4:c0:08:1e:cd:b4:db:f2:
02:33:1d:c2:f6:65:c7:cf:b4:4d:f8:15:03:f2:73:
22:2d:8d:2e:50:ff:1d:23:50:f9:8c:2c:90:ea:00:
83:bc:e0:4d:4a:71:c1:ea:bd:8e:4a:e5:af:6a:17:
69:8d:69:e7:e2:65:35:69:ab:be:7b:47:fc:e2:59:
0d:f8:91:aa:16:9e:3c:8a:42:78:7a:f2:d0:26:a1:
5f:75:c6:6a:b9:c0:55:3d:5c:c7:62:1a:66:69:d0:
53:ba:bc:8f:d9:37:9c:b9:bb:19:40:48:35:23:d8:
f2:bb:55:38:42:dd:53:0c:95:68:55:d9:df:81:d8:
95:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D2:79:4D:EA:C7:29:41:23:6B:7D:18:6B:CA:09:85:EE:18:7D:1E
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/19J5TerHKUEja30Ya8oJhe4YfR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.12.0/23
193.233.18.0/24
193.233.24.0-193.233.29.255
193.233.54.0/23
193.233.73.0/24
193.233.92.0-193.233.94.255
193.233.150.0/24
193.233.166.0-193.233.169.255
193.233.176.0/20
193.233.212.0/22
193.233.224.0/22
193.233.240.0/22
193.233.254.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:44:16:f2:c0:1e:48:03:2f:85:7c:3e:59:39:90:c9:3b:77:
0e:f9:4b:0a:ab:3d:b7:82:4c:a7:a7:71:71:12:f4:ed:5e:8b:
76:46:a8:03:7e:8c:f7:46:40:c0:6b:ab:f2:3d:87:4e:4c:3e:
95:04:cc:92:e1:81:cd:b7:5d:24:e8:6d:07:f4:04:7b:c1:16:
17:00:9d:86:6a:a3:12:8d:c9:34:c0:e4:69:3d:15:d0:1b:24:
bf:b5:ed:11:61:d0:25:f6:b2:4c:14:7a:ba:59:8e:12:e2:33:
6a:31:ca:1f:ca:64:ff:48:b8:7e:05:a1:c2:d5:a5:f1:12:0b:
0c:14:7f:9b:c4:c8:97:4f:b1:01:5b:8d:2a:e1:54:3e:e1:07:
de:19:64:b2:be:bf:1c:1f:41:67:37:2d:aa:f4:1e:6f:2f:52:
78:25:6d:85:c6:67:62:b6:77:40:67:f3:f9:2e:1e:59:7e:85:
6c:11:77:9c:8c:dc:99:35:a5:70:b6:23:a6:69:bc:5d:38:68:
90:93:47:c2:42:54:93:ea:66:52:a9:17:4c:3e:3a:5d:18:2b:
77:43:7d:e4:51:21:2b:bb:7d:2e:8b:74:b8:bc:cc:9b:5e:9f:
a0:6b:c0:a9:2d:ef:f5:60:2a:5a:d0:e3:10:26:d2:c9:13:35:
5e:29:22:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:37 2023 by rpki-client on console-fra.rpki-client.org