Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1hWpD-IK5Cyoabnri1U0742vfWs.roa
File: 1hWpD-IK5Cyoabnri1U0742vfWs.roa (raw, json)
Hash identifier: XopSBi03eWF2vhUkCEk52xWPGgTbr0lMb/C0J+AB5rg=
Subject key identifier: D6:15:A9:0F:E2:0A:E4:2C:A8:69:B9:EB:8B:55:34:EF:8D:AF:7D:6B
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01856F26F64C05D526C8F760E3B18A285F60
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1hWpD-IK5Cyoabnri1U0742vfWs.roa
Signing time: Sun 01 Jan 2023 21:05:02 +0000
ROA not before: Sun 01 Jan 2023 21:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212980
IP address blocks: 193.233.196.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:f6:4c:05:d5:26:c8:f7:60:e3:b1:8a:28:5f:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 21:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d615a90fe20ae42ca869b9eb8b5534ef8daf7d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b4:fd:9b:2b:18:6e:77:38:c2:e7:27:97:b7:
b3:2b:1e:64:c4:14:78:c4:21:49:5f:d2:21:90:6b:
b7:27:83:d0:9f:3a:21:db:fc:5c:30:99:3f:26:4c:
57:2a:2b:7a:bc:2b:ea:99:db:bc:04:c3:28:75:36:
64:38:02:de:a0:05:ff:dd:cd:9b:41:5f:96:0c:43:
43:a2:c5:0f:fe:89:59:e5:4e:48:8f:bb:fe:d0:ce:
b3:42:e2:ed:f8:09:e4:d2:c6:0e:5a:15:ea:c8:31:
4c:b9:66:7e:62:b5:fd:c6:b9:da:35:36:ae:e7:99:
65:90:93:89:e0:f8:b5:c2:90:cd:1d:20:0c:3f:b8:
1d:5d:d2:9b:1e:30:81:12:da:9e:52:2d:e6:d4:92:
44:d0:35:ac:b7:de:56:6f:2e:ba:b4:b9:13:dd:76:
48:aa:2b:23:9e:cc:2e:20:ee:35:8a:2e:b1:a1:19:
20:b9:39:11:d1:99:f3:a4:b4:e9:3e:d2:31:d7:7a:
a4:25:5a:8e:7a:df:45:09:3d:72:9f:12:9f:50:c3:
12:45:b2:87:07:81:32:3c:20:31:2b:f3:e2:8b:57:
1d:ba:7f:1e:6d:f6:ea:1a:52:42:1e:a9:44:bc:e6:
56:d6:ca:88:64:42:cf:14:87:52:8e:2d:6e:49:d1:
24:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:15:A9:0F:E2:0A:E4:2C:A8:69:B9:EB:8B:55:34:EF:8D:AF:7D:6B
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1hWpD-IK5Cyoabnri1U0742vfWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.196.0/24
Signature Algorithm: sha256WithRSAEncryption
68:f6:fe:73:44:0b:49:2d:de:bf:1c:53:17:f3:7a:0a:c0:0e:
c5:e5:7a:2f:92:cf:8d:f9:5b:4f:6b:4f:48:d2:c6:8f:56:53:
44:5e:59:f6:7b:f9:a2:35:53:b9:25:69:7a:bf:31:8a:03:52:
42:af:50:bf:48:75:56:b1:44:cc:88:ba:bb:a7:88:7a:2d:31:
d8:38:42:11:57:b0:85:58:73:a9:36:4f:1f:86:d0:70:a0:06:
b9:54:9b:ed:a4:3f:5f:22:bf:41:b5:7b:ee:5a:ea:a4:a3:4f:
dd:ad:a3:0d:4b:8f:7b:42:d1:05:09:07:f7:00:50:44:bb:95:
ff:25:ad:ad:dd:94:1b:24:ca:e5:37:98:d4:c7:fe:e4:a8:d6:
4a:c4:ce:5e:77:fa:af:9a:c9:d6:6a:12:11:43:0f:d4:7e:86:
1a:f8:d6:26:fc:a0:27:4b:12:62:47:31:81:42:6b:27:bd:7e:
dd:20:a1:b0:d4:3f:ca:20:f8:ae:fc:44:63:f7:a2:bb:dc:0f:
f9:88:53:6e:58:69:3a:99:64:91:2a:3e:d8:46:ab:f2:1f:04:
9a:78:d5:e5:d7:48:0d:ce:04:a5:26:de:58:c9:24:7c:78:c4:
14:c1:9e:14:c6:d1:ec:e3:c2:3f:7d:15:86:f3:94:cd:3b:e0:
92:1f:77:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:21 2024 by rpki-client on console-ams.rpki-client.org