Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8iz_Rl5J66Tqi-dEFaY91EwnZjo.roa
File: 8iz_Rl5J66Tqi-dEFaY91EwnZjo.roa (raw, json)
Hash identifier: nNgMXTSuRQjIyR8x/QB8DtatSCGN7RP+rSSmxVYaQj0=
Subject key identifier: F2:2C:FF:46:5E:49:EB:A4:EA:8B:E7:44:15:A6:3D:D4:4C:27:66:3A
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018A98C5BC4368E4549F0B21F72B3EA958D5
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8iz_Rl5J66Tqi-dEFaY91EwnZjo.roa
Signing time: Fri 15 Sep 2023 12:16:50 +0000
ROA not before: Fri 15 Sep 2023 12:16:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 193.233.88.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:c5:bc:43:68:e4:54:9f:0b:21:f7:2b:3e:a9:58:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Sep 15 12:16:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f22cff465e49eba4ea8be74415a63dd44c27663a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:df:86:bc:fc:09:2d:83:d6:f0:ac:f3:42:0b:
36:e8:24:90:16:1c:a0:cf:0c:b0:d1:a6:29:5e:c2:
2f:82:4e:71:8f:2b:b1:74:39:ac:ba:ec:14:c8:fc:
f5:83:fe:75:8a:ce:d5:53:c5:82:fb:bc:27:f9:77:
00:e2:8d:32:29:c3:f1:e1:d7:9c:39:52:22:90:b0:
eb:96:f8:ee:17:1e:13:a0:7b:3f:5e:9d:ab:a5:a6:
b9:71:1d:93:99:16:a6:29:68:ad:6b:cf:ab:5f:7a:
8d:63:98:90:d2:3a:b7:c5:e8:c1:2f:1f:e4:22:af:
5d:98:97:a6:b7:f0:be:ee:cf:76:68:0c:2b:d8:5e:
50:f6:f8:99:3a:20:bd:16:a2:57:4d:d0:2f:10:1c:
09:83:69:5a:e0:e0:0e:37:b2:5f:e0:e3:7e:e2:3a:
58:e9:45:93:a7:57:10:d7:13:5b:18:75:6c:2e:ba:
3e:ed:0a:b5:22:95:6c:05:4c:7d:58:5b:5e:06:fd:
f9:30:db:a3:18:35:6a:13:d0:7d:b6:99:0a:bb:db:
bf:d9:37:47:9c:b7:5b:0a:67:a3:19:de:42:de:cb:
9d:d9:4c:fc:b8:ba:c7:d1:d9:97:2e:fe:e5:e7:62:
74:40:11:6d:ef:7d:05:c1:51:6b:c1:38:ae:8f:99:
f8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:2C:FF:46:5E:49:EB:A4:EA:8B:E7:44:15:A6:3D:D4:4C:27:66:3A
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8iz_Rl5J66Tqi-dEFaY91EwnZjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.88.0/22
Signature Algorithm: sha256WithRSAEncryption
11:88:4d:74:11:75:18:06:89:cf:26:d0:42:61:00:76:c9:e3:
89:76:1c:f5:f3:eb:53:98:28:a2:31:15:15:61:cd:e6:5f:e0:
68:11:2e:ef:e0:12:60:6b:b9:2b:ec:27:69:89:fa:57:1b:f1:
63:df:71:6f:74:77:60:5f:f8:86:4b:4f:21:2a:69:af:b8:11:
04:12:13:77:c5:3e:d0:cb:fc:42:54:bb:68:d0:76:8b:4a:52:
b2:cf:96:04:6b:be:53:da:fe:1e:ef:26:0a:67:68:0c:b8:7a:
28:8d:1c:f7:92:bd:e0:e5:fb:4c:fb:a8:2f:e3:2c:6f:6f:b6:
b7:61:7c:36:28:a8:f5:c8:61:a8:a8:82:cb:ec:f5:14:f3:8d:
22:d3:6e:4f:7e:81:36:ce:17:00:82:53:b4:71:91:83:c5:a6:
30:05:19:21:07:9f:9e:ac:2a:17:9b:ab:7d:c1:6c:4d:38:4f:
9b:71:94:5b:f4:11:04:7d:c8:37:72:4b:10:17:7b:a3:5a:e6:
7f:c3:4e:ed:8c:80:5c:cf:84:da:05:f2:cf:db:9d:40:cf:ba:
71:93:35:b2:7d:c0:b6:91:3b:1d:32:58:e0:ff:f7:c6:85:c7:
ef:7a:78:43:fc:a7:de:10:63:31:db:38:2f:e5:b6:c3:4b:ee:
9f:52:27:5c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqYxbxDaORUnwsh9ys+qVjVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjMwOTE1MTIxNjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjJjZmY0NjVlNDllYmE0ZWE4YmU3NDQxNWE2M2RkNDRjMjc2NjNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9+GvPwJLYPW8KzzQgs26CSQFhyg
zwyw0aYpXsIvgk5xjyuxdDmsuuwUyPz1g/51is7VU8WC+7wn+XcA4o0yKcPx4dec
OVIikLDrlvjuFx4ToHs/Xp2rpaa5cR2TmRamKWita8+rX3qNY5iQ0jq3xejBLx/k
Iq9dmJemt/C+7s92aAwr2F5Q9viZOiC9FqJXTdAvEBwJg2la4OAON7Jf4ON+4jpY
6UWTp1cQ1xNbGHVsLro+7Qq1IpVsBUx9WFteBv35MNujGDVqE9B9tpkKu9u/2TdH
nLdbCmejGd5C3sud2Uz8uLrH0dmXLv7l52J0QBFt730FwVFrwTiuj5n40QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPIs/0ZeSeuk6ovnRBWmPdRMJ2Y6MB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvOGl6X1JsNUo2NlRxaS1kRUZhWTkxRXduWmpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwelYMA0G
CSqGSIb3DQEBCwUAA4IBAQARiE10EXUYBonPJtBCYQB2yeOJdhz18+tTmCiiMRUV
Yc3mX+BoES7v4BJga7kr7CdpifpXG/Fj33FvdHdgX/iGS08hKmmvuBEEEhN3xT7Q
y/xCVLto0HaLSlKyz5YEa75T2v4e7yYKZ2gMuHoojRz3kr3g5ftM+6gv4yxvb7a3
YXw2KKj1yGGoqILL7PUU840i025PfoE2zhcAglO0cZGDxaYwBRkhB5+erCoXm6t9
wWxNOE+bcZRb9BEEfcg3cksQF3ujWuZ/w07tjIBcz4TaBfLP251Az7pxkzWyfcC2
kTsdMljg//fGhcfvenhD/KfeEGMx2zgv5bbDS+6fUidc
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:21 2024 by rpki-client on console-ams.rpki-client.org