Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1K2qHBsR5myK8Zk_X1Lp9hgHyfk.roa
File: 1K2qHBsR5myK8Zk_X1Lp9hgHyfk.roa (raw, json)
Hash identifier: oqwUGOaWZ+vtNLm9ZoLNqgY0gOhtoVxzTEZEVtm56xc=
Subject key identifier: D4:AD:AA:1C:1B:11:E6:6C:8A:F1:99:3F:5F:52:E9:F6:18:07:C9:F9
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01874C2262303B47C0F306C7B7DDCC91EE85
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1K2qHBsR5myK8Zk_X1Lp9hgHyfk.roa
Signing time: Tue 04 Apr 2023 11:58:54 +0000
ROA not before: Tue 04 Apr 2023 11:58:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35608
IP address blocks: 193.233.193.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4c:22:62:30:3b:47:c0:f3:06:c7:b7:dd:cc:91:ee:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Apr 4 11:58:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4adaa1c1b11e66c8af1993f5f52e9f61807c9f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:4a:ff:51:85:c2:40:62:07:ee:c0:cf:fc:e2:
fd:e6:d6:5c:79:44:db:21:b0:f4:93:e4:36:9c:3d:
9e:49:55:53:49:f6:f7:ac:5a:7c:7a:6b:5c:6d:73:
4f:b3:73:b0:f3:ef:8e:1a:02:f9:cb:99:1a:a6:3b:
1b:c0:cb:fd:d1:3a:01:27:00:00:c6:12:79:c4:44:
f0:ae:f6:12:dc:c7:94:1e:91:17:4c:3d:76:56:77:
d4:f0:9f:40:42:c6:0a:00:94:bb:b3:95:07:a8:48:
86:6a:84:c2:b4:13:d8:ef:68:55:09:92:c3:ae:d9:
c1:5d:14:f7:ba:49:35:55:a8:40:d4:6f:bb:1e:6a:
c1:fd:b7:b0:48:33:92:79:7a:33:4b:1e:a1:33:ed:
0f:1d:83:30:70:f4:54:39:83:23:be:42:37:07:27:
3e:7d:01:6c:8e:c3:32:78:32:c3:61:61:f3:46:be:
9b:ef:23:c2:8b:c8:27:41:7c:b4:60:ad:04:d5:92:
24:75:76:c3:50:e7:73:95:d0:87:1c:cc:31:51:20:
48:61:73:9f:09:a6:fb:46:75:2a:3e:8f:1e:85:6b:
a5:3a:4b:7b:31:02:43:f8:98:21:d1:7d:02:f4:80:
ad:dc:be:2d:04:2e:f1:79:da:80:87:56:d5:57:61:
9c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:AD:AA:1C:1B:11:E6:6C:8A:F1:99:3F:5F:52:E9:F6:18:07:C9:F9
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1K2qHBsR5myK8Zk_X1Lp9hgHyfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.193.0/24
Signature Algorithm: sha256WithRSAEncryption
46:a8:70:fa:27:a3:dc:a3:c8:7b:dd:02:dc:22:d5:a0:e8:8d:
ac:42:35:88:c6:76:8f:53:a8:41:f6:11:1a:73:80:bc:45:be:
ce:f3:0e:b6:eb:b6:6a:dd:45:ff:b2:e7:9c:c2:2d:6c:16:2a:
50:d0:d9:f0:d3:6c:2f:45:e6:7d:13:23:62:cd:b1:86:cc:9f:
88:ea:93:73:09:a3:2c:b7:96:ed:74:7d:60:6e:0c:6a:13:51:
29:ba:d9:de:c3:c2:a2:80:f4:57:5d:4c:00:fe:8d:f2:f1:d9:
0b:09:1f:c3:5e:55:99:84:16:c2:05:b5:cf:fc:81:60:38:a7:
e4:b6:4b:73:66:75:f3:56:a9:a7:09:80:31:3c:ba:82:5c:e3:
22:da:a9:06:3f:dd:93:99:9d:01:11:dd:b5:81:21:ee:4c:ba:
d0:a4:b9:7f:58:a0:b9:ed:53:85:16:62:e0:2a:38:f9:db:62:
5e:c9:97:14:5e:76:52:66:8b:94:1b:e8:3b:86:14:2a:ce:aa:
fb:ae:79:04:cb:f6:80:24:c6:63:d3:f9:b5:e0:b0:6c:41:61:
b2:cd:b2:aa:07:b6:66:17:52:2c:02:ce:e3:a6:7e:4a:0d:4e:
27:7c:d5:7c:bc:43:9d:a6:0e:ea:6f:e3:95:ab:52:ee:66:cd:
10:d6:a3:2f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdMImIwO0fA8wbHt93Mke6FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjMwNDA0MTE1ODU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNGFkYWExYzFiMTFlNjZjOGFmMTk5M2Y1ZjUyZTlmNjE4MDdjOWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg0r/UYXCQGIH7sDP/OL95tZceUTb
IbD0k+Q2nD2eSVVTSfb3rFp8emtcbXNPs3Ow8++OGgL5y5kapjsbwMv90ToBJwAA
xhJ5xETwrvYS3MeUHpEXTD12VnfU8J9AQsYKAJS7s5UHqEiGaoTCtBPY72hVCZLD
rtnBXRT3ukk1VahA1G+7HmrB/bewSDOSeXozSx6hM+0PHYMwcPRUOYMjvkI3Byc+
fQFsjsMyeDLDYWHzRr6b7yPCi8gnQXy0YK0E1ZIkdXbDUOdzldCHHMwxUSBIYXOf
Cab7RnUqPo8ehWulOkt7MQJD+Jgh0X0C9ICt3L4tBC7xedqAh1bVV2GcRwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNStqhwbEeZsivGZP19S6fYYB8n5MB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvMUsycUhCc1I1bXlLOFprX1gxTHA5aGdIeWZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwenBMA0G
CSqGSIb3DQEBCwUAA4IBAQBGqHD6J6Pco8h73QLcItWg6I2sQjWIxnaPU6hB9hEa
c4C8Rb7O8w6267Zq3UX/suecwi1sFipQ0Nnw02wvReZ9EyNizbGGzJ+I6pNzCaMs
t5btdH1gbgxqE1Eputnew8KigPRXXUwA/o3y8dkLCR/DXlWZhBbCBbXP/IFgOKfk
tktzZnXzVqmnCYAxPLqCXOMi2qkGP92TmZ0BEd21gSHuTLrQpLl/WKC57VOFFmLg
Kjj522JeyZcUXnZSZouUG+g7hhQqzqr7rnkEy/aAJMZj0/m14LBsQWGyzbKqB7Zm
F1IsAs7jpn5KDU4nfNV8vEOdpg7qb+OVq1LuZs0Q1qMv
-----END CERTIFICATE-----
Generated at Wed Aug 16 13:59:27 2023 by rpki-client on console-fra.rpki-client.org