Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8bR_nJJOtiTAPsE181PwPq8p94Q.roa
File: 8bR_nJJOtiTAPsE181PwPq8p94Q.roa (raw, json)
Hash identifier: nNOpfmBC6wCVEqwea0N1akTUzL91irX+pZQd29ihgNI=
Subject key identifier: F1:B4:7F:9C:92:4E:B6:24:C0:3E:C1:35:F3:53:F0:3E:AF:29:F7:84
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01874C2264B66410B1F24430C29244AA9538
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8bR_nJJOtiTAPsE181PwPq8p94Q.roa
Signing time: Tue 04 Apr 2023 11:58:54 +0000
ROA not before: Tue 04 Apr 2023 11:58:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207967
IP address blocks: 193.233.124.0/23 maxlen: 23
193.233.126.0/23 maxlen: 23
193.233.87.0/24 maxlen: 24
193.233.112.0/22 maxlen: 22
193.233.108.0/22 maxlen: 22
193.233.116.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Apr 2023 12:33:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4c:22:64:b6:64:10:b1:f2:44:30:c2:92:44:aa:95:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Apr 4 11:58:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1b47f9c924eb624c03ec135f353f03eaf29f784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c2:7b:cc:a9:4f:1c:1e:e8:84:d8:ce:09:46:
c5:1b:f5:c8:22:e5:a0:b0:5c:48:07:11:35:30:ce:
fc:9e:a9:5c:07:f6:c0:0e:3d:87:b9:d5:71:f3:5d:
a9:98:06:40:13:81:3e:2b:03:9f:5a:e7:a1:49:83:
01:09:ad:ef:28:04:e3:1b:ba:a3:cd:cd:15:bd:30:
12:62:15:b0:a2:50:a4:ea:6e:51:a0:8b:f6:1f:52:
54:18:ff:b9:02:04:36:67:46:f8:a0:5d:2e:a2:b5:
cd:b2:2d:13:e0:17:6a:0f:8b:1c:cc:01:6f:e2:b4:
bf:33:c3:11:fe:83:e7:fd:62:e3:24:52:48:fb:4d:
bb:e5:6c:9e:bb:66:93:42:1f:6e:13:17:f6:d4:30:
30:01:10:6b:b6:84:be:cc:84:6f:bd:ce:92:b3:c8:
1b:c5:f6:66:ff:7d:6b:a9:ab:07:1e:56:63:53:c6:
4d:d8:6e:68:3b:d5:0e:06:3b:df:88:4d:e5:e9:82:
00:a5:2c:ad:6c:ee:f1:73:7b:d4:22:25:5f:b4:0f:
40:ce:4a:4e:5b:a4:c0:19:ab:8a:1b:32:60:77:08:
41:cb:2d:18:ac:28:45:1e:42:cb:5b:e7:36:87:58:
a3:4d:68:51:2b:97:42:a8:fe:c6:eb:6b:f8:e2:a1:
bc:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B4:7F:9C:92:4E:B6:24:C0:3E:C1:35:F3:53:F0:3E:AF:29:F7:84
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8bR_nJJOtiTAPsE181PwPq8p94Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.87.0/24
193.233.108.0-193.233.119.255
193.233.124.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:e3:b1:fc:fd:82:2b:f8:c0:d4:43:62:a6:f0:83:e9:82:96:
ac:97:78:4d:fe:7b:b9:ce:d6:e8:59:d6:83:83:40:b2:1a:5b:
3e:4f:9b:c1:8e:0d:c6:f4:89:b3:64:b5:9c:71:d1:22:3c:d8:
b6:fb:c0:96:2c:47:0b:27:76:4e:d8:d9:f6:31:88:fd:47:b3:
a8:74:d5:01:7c:cf:df:72:40:1c:f9:53:fa:e8:19:a8:14:4f:
6b:2d:35:db:ef:40:c1:6c:e0:ad:d1:5b:1b:1f:0e:a7:77:58:
27:94:25:a2:c7:8a:ec:39:cf:f6:a2:ac:23:b4:85:d6:b8:2f:
42:e2:29:83:7d:ae:c8:9a:d2:eb:84:9c:18:34:c4:0d:b2:b5:
93:8c:e7:fa:3a:c3:1d:ba:4c:94:18:19:6c:0c:24:32:4b:7d:
ab:0f:e7:fe:c5:1a:95:40:65:5e:6f:ec:c6:d3:62:dc:8c:e9:
f9:5f:67:9f:35:8c:77:de:db:76:b2:39:72:2b:94:61:bf:f7:
5c:b0:5e:02:4c:29:a4:c3:c6:4d:32:b2:3a:8c:e3:33:a8:c3:
1c:13:f8:27:ed:93:75:10:33:b7:b4:b6:58:b0:a5:2f:23:5f:
81:cc:68:f9:fa:81:f7:7a:fb:00:90:b9:06:74:f1:26:d0:04:
33:a6:52:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org