Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/9SQmzq1tuenIJtLZ5fv3j38hoEg.roa
File: 9SQmzq1tuenIJtLZ5fv3j38hoEg.roa (raw, json)
Hash identifier: 00Pw4T0Wz+l4IiLEG1yb2f9IW+EB9nS7dTnuhaJOj74=
Subject key identifier: F5:24:26:CE:AD:6D:B9:E9:C8:26:D2:D9:E5:FB:F7:8F:7F:21:A0:48
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0186F00ECCE6A5DAD48E37D1D10C75F1EB25
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/9SQmzq1tuenIJtLZ5fv3j38hoEg.roa
Signing time: Fri 17 Mar 2023 14:52:27 +0000
ROA not before: Fri 17 Mar 2023 14:52:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51659
IP address blocks: 193.233.16.0/24 maxlen: 24
193.233.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Oct 2023 14:53:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f0:0e:cc:e6:a5:da:d4:8e:37:d1:d1:0c:75:f1:eb:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Mar 17 14:52:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f52426cead6db9e9c826d2d9e5fbf78f7f21a048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3c:e2:7c:a5:fe:ea:f3:2e:62:83:77:59:54:
bc:c8:34:13:d4:a1:7b:69:8d:d0:9c:37:b2:36:0e:
f4:6c:86:54:41:7f:d6:2d:51:27:dc:e9:73:d7:41:
be:6e:64:10:c2:a7:70:bd:fc:ab:61:49:73:b8:81:
1a:8f:81:42:4c:e7:e6:d6:d7:bb:48:c1:92:6d:72:
c1:37:4b:0f:53:4a:ec:95:96:ce:2a:a6:f4:5b:39:
78:c2:b4:f7:93:69:74:0c:1e:15:d5:1e:50:8d:c9:
6e:ea:0b:90:be:d8:8b:3c:58:0a:ce:6f:86:0e:7f:
af:85:64:88:25:f0:f9:e8:30:51:64:9e:83:90:6d:
ad:4c:fd:04:3e:d5:60:ec:c2:11:65:7e:21:69:23:
a7:70:93:eb:86:39:29:39:32:ca:19:f1:cb:ce:22:
52:5b:9d:dd:0b:6f:1f:02:87:02:b5:40:0f:7a:22:
27:42:c6:ba:c0:a1:0c:45:ee:45:2e:26:57:34:5c:
a6:d2:05:85:93:f4:b7:be:8b:2c:93:9b:da:fc:23:
87:cf:1a:b0:f7:8a:9e:c7:a0:32:d2:da:a6:3c:85:
56:c6:97:16:1f:57:8f:e0:1e:60:78:66:c5:3e:99:
85:dc:69:1b:9e:39:a8:a8:b6:8c:42:60:d4:a7:4a:
00:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:24:26:CE:AD:6D:B9:E9:C8:26:D2:D9:E5:FB:F7:8F:7F:21:A0:48
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/9SQmzq1tuenIJtLZ5fv3j38hoEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.16.0/24
193.233.19.0/24
Signature Algorithm: sha256WithRSAEncryption
11:53:d3:b7:a1:dc:0f:e6:b3:38:f3:fe:96:38:c5:6d:56:c3:
87:cc:f6:e0:c2:b9:00:0d:82:7b:28:67:54:10:68:d4:d8:3c:
67:01:6b:d6:3a:1d:21:ed:be:22:bf:a5:76:c4:5b:c0:e3:58:
ee:25:8a:f7:e3:a3:1e:36:74:f7:af:36:63:9d:e7:8b:5d:7e:
dd:e9:9e:19:bd:84:96:11:f4:ab:89:13:9d:bb:b5:3b:f0:54:
b3:54:c9:ff:fe:9b:ab:3a:15:5e:e8:72:77:0d:75:ff:99:de:
f0:64:15:73:32:29:cb:4a:20:57:03:17:56:55:e6:01:8d:e9:
e9:3b:c8:58:03:3c:90:0d:fd:9d:57:fd:00:a3:5d:e8:b4:06:
67:54:f9:e7:94:80:eb:d0:89:07:44:9a:d3:80:22:72:9c:80:
4d:1c:21:40:66:01:7d:1a:8f:71:88:bf:82:f7:89:b7:ab:31:
1e:33:38:1f:46:fb:fe:2d:84:01:5d:17:8f:1d:64:08:11:68:
e0:af:e5:5b:53:d4:c4:61:a3:7c:b5:b1:f0:bb:05:fc:98:ef:
10:c0:4c:64:70:49:75:86:0c:9c:13:aa:66:ce:1a:c2:88:e9:
b2:dc:4e:01:73:90:bd:5f:17:a8:63:4b:3b:6c:d0:21:0f:1f:
8a:43:d9:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org