Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/AlBO4qGZCXbFYu9h90VEfSZWcwM.roa
File: AlBO4qGZCXbFYu9h90VEfSZWcwM.roa (raw, json)
Hash identifier: LPg8mxjIm45q1yA6J8VQEFiMFVKi/sEiO1Lpxjg65p0=
Subject key identifier: 02:50:4E:E2:A1:99:09:76:C5:62:EF:61:F7:45:44:7D:26:56:73:03
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018798ED4F2CE8D32FDBCE7D6A8086A820E9
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/AlBO4qGZCXbFYu9h90VEfSZWcwM.roa
Signing time: Wed 19 Apr 2023 09:51:41 +0000
ROA not before: Wed 19 Apr 2023 09:51:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61121
IP address blocks: 193.233.238.0/23 maxlen: 23
193.233.236.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 19 Apr 2023 12:56:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:98:ed:4f:2c:e8:d3:2f:db:ce:7d:6a:80:86:a8:20:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Apr 19 09:51:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02504ee2a1990976c562ef61f745447d26567303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:39:26:f3:27:7c:5c:e2:59:9e:44:e4:18:fb:
ca:a7:92:6d:ef:9c:39:34:0b:0d:6e:26:35:dc:4e:
56:f7:fb:f1:30:81:ba:d4:05:f5:b8:ed:a0:22:5b:
69:23:c7:77:83:b6:cf:18:f9:02:d2:91:ac:f5:3e:
dd:bd:56:cd:1c:a3:f2:bd:fa:33:29:20:35:19:f7:
63:55:56:fe:a0:e1:18:46:0a:03:3f:58:49:45:08:
fb:1b:b8:b6:8e:52:b1:ab:af:6f:65:70:b5:85:84:
4f:a1:6c:5b:c2:8a:b6:6f:cf:21:69:f7:1f:23:5a:
8b:ec:5b:0d:32:73:1b:a5:08:5d:50:6c:92:85:00:
27:e5:e0:6c:41:ac:26:05:7f:cc:20:99:15:b7:17:
1e:f9:b7:64:72:ce:f8:4d:3c:e2:f5:24:74:90:75:
cc:c3:61:1a:01:4b:43:a9:89:a0:1c:16:e4:7d:ce:
58:92:cd:08:22:cf:92:80:5e:0b:00:cb:21:ae:3c:
30:cf:31:16:e3:7c:15:c2:07:47:12:d4:fd:26:8b:
97:d0:87:d9:37:de:0a:f7:c8:1c:b3:1c:67:91:9b:
cd:09:b4:01:6c:47:b2:6e:2f:f6:df:01:ae:35:25:
b7:db:cd:9e:06:c3:d1:92:4f:63:90:54:bc:c6:ab:
22:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:50:4E:E2:A1:99:09:76:C5:62:EF:61:F7:45:44:7D:26:56:73:03
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/AlBO4qGZCXbFYu9h90VEfSZWcwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.236.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:19:77:18:f6:b6:e1:0d:fd:d5:55:64:0f:61:11:86:4c:a1:
ef:20:f2:3b:e2:1d:10:8e:3c:63:4e:18:85:d4:d2:95:bc:c4:
a0:d4:f9:6d:5a:b0:ed:cd:93:7f:e0:c1:ef:f1:37:06:07:44:
7e:dc:aa:14:af:59:8d:39:78:26:63:05:8e:85:4d:be:c0:97:
e2:ab:63:c8:db:79:a2:c1:b3:2c:d9:04:f3:e8:6e:9c:2e:ca:
1a:da:9c:ea:4d:61:65:bb:d2:e0:d2:fe:fb:78:91:18:76:22:
eb:8a:c4:42:e4:cf:cf:9b:10:dc:31:03:f3:65:86:85:94:19:
da:74:19:8e:2b:ea:a4:99:6b:5c:e3:ac:73:6c:71:e3:8b:c2:
f8:03:b2:a9:fb:77:23:15:de:94:2b:6b:1b:48:54:28:fc:da:
a0:0b:43:7f:11:06:10:d7:39:d7:de:23:9f:7c:ef:08:5c:91:
f0:63:69:4d:e1:11:91:53:65:d7:8e:c7:d4:9d:1e:6d:5c:1b:
9a:a4:83:44:38:0b:18:75:87:d3:0a:4d:b6:99:22:8c:20:30:
ac:cf:1a:4f:56:52:a7:97:94:e3:f6:b2:3e:9d:2f:b9:14:da:
a3:88:61:b0:55:90:c3:35:98:66:13:4d:25:fb:2b:6c:8c:24:
00:82:1c:b1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYeY7U8s6NMv2859aoCGqCDpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjMwNDE5MDk1MTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjUwNGVlMmExOTkwOTc2YzU2MmVmNjFmNzQ1NDQ3ZDI2NTY3MzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTkm8yd8XOJZnkTkGPvKp5Jt75w5
NAsNbiY13E5W9/vxMIG61AX1uO2gIltpI8d3g7bPGPkC0pGs9T7dvVbNHKPyvfoz
KSA1GfdjVVb+oOEYRgoDP1hJRQj7G7i2jlKxq69vZXC1hYRPoWxbwoq2b88hafcf
I1qL7FsNMnMbpQhdUGyShQAn5eBsQawmBX/MIJkVtxce+bdkcs74TTzi9SR0kHXM
w2EaAUtDqYmgHBbkfc5Yks0IIs+SgF4LAMshrjwwzzEW43wVwgdHEtT9JouX0IfZ
N94K98gcsxxnkZvNCbQBbEeybi/23wGuNSW3282eBsPRkk9jkFS8xqsiDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAJQTuKhmQl2xWLvYfdFRH0mVnMDMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvQWxCTzRxR1pDWGJGWXU5aDkwVkVmU1pXY3dNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwensMA0G
CSqGSIb3DQEBCwUAA4IBAQAvGXcY9rbhDf3VVWQPYRGGTKHvIPI74h0QjjxjThiF
1NKVvMSg1PltWrDtzZN/4MHv8TcGB0R+3KoUr1mNOXgmYwWOhU2+wJfiq2PI23mi
wbMs2QTz6G6cLsoa2pzqTWFlu9Lg0v77eJEYdiLrisRC5M/PmxDcMQPzZYaFlBna
dBmOK+qkmWtc46xzbHHji8L4A7Kp+3cjFd6UK2sbSFQo/NqgC0N/EQYQ1znX3iOf
fO8IXJHwY2lN4RGRU2XXjsfUnR5tXBuapINEOAsYdYfTCk22mSKMIDCszxpPVlKn
l5Tj9rI+nS+5FNqjiGGwVZDDNZhmE00l+ytsjCQAghyx
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org