Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/3hglb_-fqo1uAD_5oYN336hwNo0.roa
File: 3hglb_-fqo1uAD_5oYN336hwNo0.roa (raw, json)
Hash identifier: du8+Ecx2/gX7l7ccapX7XIyGStIBwN78NXXXLfeFVSI=
Subject key identifier: DE:18:25:6F:FF:9F:AA:8D:6E:00:3F:F9:A1:83:77:DF:A8:70:36:8D
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018C40D0CCB364EBBD82C0353EC207DD1819
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/3hglb_-fqo1uAD_5oYN336hwNo0.roa
Signing time: Wed 06 Dec 2023 20:27:54 +0000
ROA not before: Wed 06 Dec 2023 20:27:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35112
IP address blocks: 193.233.19.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:40:d0:cc:b3:64:eb:bd:82:c0:35:3e:c2:07:dd:18:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Dec 6 20:27:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de18256fff9faa8d6e003ff9a18377dfa870368d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c4:4d:47:70:95:e1:4c:f4:c8:ea:64:95:d3:
69:f4:42:c4:78:0b:6c:06:9b:25:61:b3:f6:18:51:
99:cb:4e:b3:62:cd:00:6f:a4:94:9e:43:8d:37:f3:
71:a8:66:6e:a2:18:a7:e5:a0:17:fa:4f:aa:31:7a:
e4:93:09:bf:5d:3b:61:6e:ee:2e:df:81:a0:82:0f:
fa:a8:75:50:e1:e9:e6:69:66:24:7f:0b:fe:ac:da:
a9:3c:fd:2c:bd:64:fd:37:8e:3c:57:9e:29:d1:b8:
b5:89:21:de:96:a6:b8:d2:01:85:06:c0:cf:2d:c0:
f1:a6:f6:7b:59:46:39:58:4b:c4:7f:aa:36:36:1e:
81:5c:c2:9f:4a:6e:61:5e:34:6a:d9:f1:59:9b:e1:
9c:a4:9c:7d:ae:fc:89:62:2f:64:66:13:fd:9b:68:
e4:4f:57:cd:f8:8f:96:c8:c4:97:36:42:46:6e:31:
92:f5:a6:a5:3b:b6:59:27:7b:ac:ff:8a:b7:90:5c:
6a:78:78:3e:58:76:d5:25:13:67:8d:ed:20:69:dc:
df:1a:9c:aa:1b:9c:1c:67:60:4a:39:be:1c:58:ef:
37:74:8b:63:86:0a:97:bc:8c:2c:1e:b9:e8:be:19:
1b:35:a4:cd:ff:80:7e:e9:9d:49:19:6a:95:ee:db:
4c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:18:25:6F:FF:9F:AA:8D:6E:00:3F:F9:A1:83:77:DF:A8:70:36:8D
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/3hglb_-fqo1uAD_5oYN336hwNo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.19.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:13:49:2c:a9:9a:58:ab:ae:48:d6:83:e3:5c:dc:7e:74:4b:
34:35:0a:28:14:ec:ac:d5:87:21:c9:84:3d:13:7b:5a:08:20:
c3:2e:55:9e:e7:35:9c:13:a2:74:00:39:f2:6d:ea:e1:64:2b:
9c:68:8a:fb:32:d8:b9:03:7f:36:7a:eb:7e:55:e8:e3:2c:fb:
5a:37:17:8e:7b:f6:da:d2:f7:40:a1:64:b8:45:d4:68:a9:8b:
04:46:71:42:93:e9:38:88:ec:49:33:be:e5:ed:cd:70:97:c9:
a0:c1:73:a6:27:f8:aa:4f:a0:f3:6a:b4:8f:38:b4:e8:ea:8d:
73:c1:05:18:c5:0c:34:ac:1b:8b:0d:5d:63:bb:17:83:25:9f:
22:cd:61:4c:9f:17:b8:7a:18:cd:dc:83:37:83:11:80:c5:cb:
e7:f5:57:fe:c1:73:13:f2:51:ee:6a:6d:c5:e9:49:93:bc:f0:
7f:6f:1b:f0:e0:28:50:cc:a8:d7:33:e4:e7:df:e2:e6:15:53:
c6:2f:ed:a2:5c:30:de:77:48:92:99:b1:fe:a8:9b:c3:7f:9a:
37:dd:c4:9c:45:34:96:f3:3d:bd:38:32:01:09:1c:77:a5:ea:
de:1d:9e:07:3e:b5:b5:2c:ab:7c:3b:db:cd:06:f4:d8:86:1a:
c6:95:97:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxA0MyzZOu9gsA1PsIH3RgZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjMxMjA2MjAyNzU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTE4MjU2ZmZmOWZhYThkNmUwMDNmZjlhMTgzNzdkZmE4NzAzNjhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMRNR3CV4Uz0yOpkldNp9ELEeAts
BpslYbP2GFGZy06zYs0Ab6SUnkONN/NxqGZuohin5aAX+k+qMXrkkwm/XTthbu4u
34Gggg/6qHVQ4enmaWYkfwv+rNqpPP0svWT9N448V54p0bi1iSHelqa40gGFBsDP
LcDxpvZ7WUY5WEvEf6o2Nh6BXMKfSm5hXjRq2fFZm+GcpJx9rvyJYi9kZhP9m2jk
T1fN+I+WyMSXNkJGbjGS9aalO7ZZJ3us/4q3kFxqeHg+WHbVJRNnje0gadzfGpyq
G5wcZ2BKOb4cWO83dItjhgqXvIwsHrnovhkbNaTN/4B+6Z1JGWqV7ttMnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN4YJW//n6qNbgA/+aGDd9+ocDaNMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvM2hnbGJfLWZxbzF1QURfNW9ZTjMzNmh3Tm8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwekTMA0G
CSqGSIb3DQEBCwUAA4IBAQAOE0ksqZpYq65I1oPjXNx+dEs0NQooFOys1YchyYQ9
E3taCCDDLlWe5zWcE6J0ADnyberhZCucaIr7Mti5A382eut+VejjLPtaNxeOe/ba
0vdAoWS4RdRoqYsERnFCk+k4iOxJM77l7c1wl8mgwXOmJ/iqT6DzarSPOLTo6o1z
wQUYxQw0rBuLDV1juxeDJZ8izWFMnxe4ehjN3IM3gxGAxcvn9Vf+wXMT8lHuam3F
6UmTvPB/bxvw4ChQzKjXM+Tn3+LmFVPGL+2iXDDed0iSmbH+qJvDf5o33cScRTSW
8z29ODIBCRx3pereHZ4HPrW1LKt8O9vNBvTYhhrGlZcL
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:05 2024 by rpki-client on console-fra.rpki-client.org