Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/86ODAgLLePxL_51cPYZ1I4GWMdA.roa
File: 86ODAgLLePxL_51cPYZ1I4GWMdA.roa (raw, json)
Hash identifier: aQRZts0SmaPJKxXuRj8KAp7IFR2iSxgXkRyyvlhHhC4=
Subject key identifier: F3:A3:83:02:02:CB:78:FC:4B:FF:9D:5C:3D:86:75:23:81:96:31:D0
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01891C33F80518D2637CD81DF08025C892D4
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/86ODAgLLePxL_51cPYZ1I4GWMdA.roa
Signing time: Mon 03 Jul 2023 14:41:55 +0000
ROA not before: Mon 03 Jul 2023 14:41:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204833
IP address blocks: 193.233.17.0/24 maxlen: 24
193.233.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Oct 2023 08:39:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1c:33:f8:05:18:d2:63:7c:d8:1d:f0:80:25:c8:92:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jul 3 14:41:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3a3830202cb78fc4bff9d5c3d867523819631d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:aa:80:08:63:d5:78:2c:dc:ba:3d:93:50:0e:
d0:ae:f1:87:49:16:70:f0:ba:1f:cf:34:15:a4:0f:
a1:5a:39:79:eb:5e:1f:62:d0:22:16:ac:03:36:48:
37:a3:80:21:e8:84:7a:a5:34:82:0f:69:51:d7:b9:
26:36:f1:95:c1:88:ee:3f:9e:59:89:f5:b8:ba:fd:
09:2b:5f:e2:c5:ff:6a:5f:5a:bf:31:af:1f:31:89:
11:45:66:91:78:23:7e:ad:8f:18:b9:46:63:62:fb:
e2:79:26:70:3c:ea:ec:93:c6:68:da:8b:3f:2d:f5:
c0:d4:15:a1:01:9b:bf:36:6d:b8:5f:17:db:3a:51:
c2:c6:79:9b:82:3b:2b:4d:61:d8:42:5e:c1:30:17:
48:27:ec:d4:76:3d:7d:86:39:09:da:f6:fb:81:ea:
3c:0c:27:82:af:f0:29:b6:5b:70:7c:4c:f4:18:f0:
e7:7b:01:08:ea:8d:94:03:38:b2:fe:2d:29:45:9a:
28:cf:4b:64:14:70:2e:20:0b:44:61:7e:1a:61:1e:
bf:40:70:a9:5a:ea:52:6e:e7:f5:ed:58:72:b3:1f:
4c:77:80:2e:2f:f7:ec:d7:3e:c7:00:49:13:45:9d:
f9:c1:28:0d:17:9b:aa:a9:84:ab:4e:c9:95:fa:e4:
ea:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A3:83:02:02:CB:78:FC:4B:FF:9D:5C:3D:86:75:23:81:96:31:D0
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/86ODAgLLePxL_51cPYZ1I4GWMdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.6.0/24
193.233.17.0/24
Signature Algorithm: sha256WithRSAEncryption
36:de:5f:21:4c:67:1d:8e:0c:b1:a3:c7:66:b5:60:a7:42:9b:
04:a3:cc:88:17:c7:e8:6c:0b:c2:b5:73:f0:db:70:35:43:d6:
51:f1:df:c9:c7:f5:b5:76:9f:2f:9b:e9:75:41:86:19:67:ae:
56:5c:4c:dc:a7:ce:3a:fd:6b:44:ec:63:8c:b1:ca:e1:4f:4f:
ea:b7:6e:47:b8:0c:28:4e:fb:f2:cf:70:84:73:14:e5:e5:49:
46:22:47:6b:c5:b5:4a:28:9e:e1:f4:df:fe:e0:50:05:76:d8:
58:81:92:ce:b0:f9:b0:76:0e:a9:75:01:6d:62:db:42:fa:9c:
23:b9:46:54:a9:15:4c:f3:71:51:23:eb:3e:38:0b:b4:ae:3b:
a9:cf:92:ac:43:33:e3:df:5d:5b:e1:4a:4b:6c:3f:1f:ef:61:
52:b0:c7:4e:11:7a:5b:c5:d0:65:b6:5a:fe:54:57:a2:be:62:
37:5d:7e:d7:32:2a:b3:c8:48:0c:24:1d:55:3b:c7:2d:71:63:
a1:47:8b:e9:8c:5f:d0:d8:aa:a7:2c:0d:0c:ef:89:70:24:a3:
76:0b:d8:21:9e:6d:c4:6f:57:79:80:67:00:27:41:1f:ee:eb:
76:8d:a5:88:6e:f6:1c:09:78:08:0a:b5:79:36:dd:6a:99:38:
d0:36:72:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org