Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/5qvIbMWQYZrFLnVmd1bXsL-sq8M.roa
File: 5qvIbMWQYZrFLnVmd1bXsL-sq8M.roa (raw, json)
Hash identifier: e4tYBxSdEKtLFs9CX1OQuNpYgBZFpy6KXWqfwZp4j5I=
Subject key identifier: E6:AB:C8:6C:C5:90:61:9A:C5:2E:75:66:77:56:D7:B0:BF:AC:AB:C3
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01883D3022E9FC1271945D78EA9CE8DA743F
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/5qvIbMWQYZrFLnVmd1bXsL-sq8M.roa
Signing time: Sun 21 May 2023 07:22:24 +0000
ROA not before: Sun 21 May 2023 07:22:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6939
IP address blocks: 193.233.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:3d:30:22:e9:fc:12:71:94:5d:78:ea:9c:e8:da:74:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: May 21 07:22:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6abc86cc590619ac52e75667756d7b0bfacabc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b3:90:1d:73:89:ed:dd:5a:5b:a7:09:59:8c:
ea:b5:1d:32:72:12:14:5f:a9:8e:82:00:15:96:d3:
33:52:64:df:8e:5f:27:d3:11:92:2c:dc:14:51:d8:
c9:62:93:fa:13:83:0f:4e:13:9e:b9:b0:55:af:bf:
c5:7b:df:97:61:80:5f:69:e7:55:9c:0a:e5:98:ee:
42:fe:28:2d:45:17:d6:c7:02:d5:c0:28:74:f0:d7:
c5:e6:25:5f:bb:34:77:c7:c9:d6:7e:37:1d:33:24:
2a:dd:ce:0d:66:2e:aa:c5:fc:43:c6:a7:5c:3a:21:
a0:50:60:04:bd:8f:6c:b3:0b:a9:b2:13:07:7c:d3:
c4:86:70:18:df:93:a9:af:b9:d0:f9:2e:2c:b8:2e:
bd:df:1d:ba:e1:3f:ef:70:bd:46:0f:d5:94:18:1e:
83:a8:e7:ad:ce:40:4d:7e:54:46:b6:a2:fb:ab:4e:
0e:39:be:e2:85:b5:1c:bd:38:58:6b:bf:03:35:f8:
ae:43:85:00:a1:f6:3c:9f:a2:28:6b:8b:20:4e:7f:
33:15:94:c5:29:f8:90:89:66:9a:75:29:da:24:af:
23:b4:aa:e4:5f:b3:a0:1a:7a:97:0f:62:6a:c5:f8:
9b:c8:18:ff:d5:02:66:f5:6d:ac:17:47:b9:51:1a:
e0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:AB:C8:6C:C5:90:61:9A:C5:2E:75:66:77:56:D7:B0:BF:AC:AB:C3
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/5qvIbMWQYZrFLnVmd1bXsL-sq8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.18.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ce:13:7d:b6:61:73:f9:4c:c4:20:62:9d:19:ba:3a:8f:71:
16:a6:92:57:1f:ec:30:37:b6:21:f3:61:33:d7:27:e1:e2:fe:
df:85:10:b5:31:86:0e:39:eb:cc:0f:d0:d9:5e:0b:8a:b8:0f:
fc:6e:25:ca:7a:e5:43:89:1b:2d:22:31:20:d1:46:6b:ea:d3:
3d:ad:28:5c:94:6d:7a:f9:bd:12:24:9f:a2:ac:2c:e5:f5:70:
17:f5:d4:d9:0e:99:3f:5c:b5:29:d2:a2:56:f1:34:eb:76:41:
2c:c9:b0:05:0f:72:07:27:18:f1:59:2b:78:72:da:63:7a:29:
81:f5:02:11:6c:34:25:67:ba:e5:9b:2e:b5:fe:ac:08:fc:e0:
46:fb:e1:8a:fb:c3:57:71:41:8b:66:7a:88:e8:2d:d9:47:c9:
12:a8:c5:15:7f:ad:3f:24:e7:7e:6f:53:c8:26:06:f4:90:73:
ba:af:16:c2:f1:6f:60:b1:f9:39:cb:60:ca:5a:46:d6:8c:17:
55:92:6a:ca:71:a0:4b:d8:5b:cc:cf:dd:66:42:39:66:6e:96:
91:56:c3:5c:75:91:98:40:8d:fe:38:6d:0f:25:89:45:ba:44:
fd:f1:e3:59:6c:00:80:80:fb:f1:a1:19:b2:8c:c8:97:20:ae:
8e:f3:fb:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:37 2023 by rpki-client on console-fra.rpki-client.org