Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/BgG8HqmpX-TDl15NFq61aiSSf6I.roa
File: BgG8HqmpX-TDl15NFq61aiSSf6I.roa (raw, json)
Hash identifier: EdL6T/tNdS+4Eu4kvYR76Te960Eg5jk6ZNJFsA7ZQak=
Subject key identifier: 06:01:BC:1E:A9:A9:5F:E4:C3:97:5E:4D:16:AE:B5:6A:24:92:7F:A2
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01874C226303EB59585E5CC998745B8561B5
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/BgG8HqmpX-TDl15NFq61aiSSf6I.roa
Signing time: Tue 04 Apr 2023 11:58:54 +0000
ROA not before: Tue 04 Apr 2023 11:58:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51178
IP address blocks: 193.233.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 11:25:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4c:22:63:03:eb:59:58:5e:5c:c9:98:74:5b:85:61:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Apr 4 11:58:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0601bc1ea9a95fe4c3975e4d16aeb56a24927fa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:59:e7:ca:6c:db:01:8b:17:6b:78:c2:29:97:
f4:76:3c:ae:ba:ad:14:6d:da:c0:80:83:94:95:e9:
99:44:55:ef:c8:03:6b:67:92:98:ab:f5:72:fb:9d:
58:78:12:3d:4d:ed:80:46:5d:0b:62:41:8f:9a:13:
eb:1c:6a:ab:61:b0:1b:7a:6f:f3:61:8c:85:ab:69:
bb:02:96:44:79:a3:a3:e9:4f:87:5a:6d:13:37:e5:
ae:cf:8c:a7:40:70:d8:8c:ca:f9:2c:cd:14:f6:53:
0d:45:21:e8:1f:cc:68:e5:be:f7:e8:81:ef:7f:78:
10:7a:e9:6b:19:ed:73:b5:c7:c6:88:c6:84:1c:0f:
d3:2e:ec:06:2b:92:59:f7:f4:82:79:eb:17:74:37:
e5:7d:03:a9:f7:12:01:be:80:67:b5:a9:b3:07:37:
79:bb:79:07:2d:ac:79:d6:b2:e4:71:74:a5:a3:4a:
0c:d8:ba:fe:cb:49:44:aa:0e:b4:8f:76:4b:55:98:
b1:20:8a:e5:77:20:34:82:a3:0e:52:bf:ca:77:fe:
f9:be:b0:aa:85:05:83:31:35:73:ec:1e:5f:ac:3b:
97:cb:3b:35:41:56:79:19:d2:51:4a:4c:c2:86:25:
39:26:7f:42:3f:a3:cb:c5:6a:7b:2b:92:f1:6b:40:
23:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:01:BC:1E:A9:A9:5F:E4:C3:97:5E:4D:16:AE:B5:6A:24:92:7F:A2
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/BgG8HqmpX-TDl15NFq61aiSSf6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.18.0/24
Signature Algorithm: sha256WithRSAEncryption
01:eb:f0:4c:08:73:9c:95:b0:60:d9:b3:b7:c9:c0:21:e9:c2:
49:b0:de:51:3a:0a:ef:8d:1a:2f:04:03:44:bd:c6:e5:14:5a:
4a:fe:d6:b3:57:c9:73:01:6c:b2:92:1f:3d:0b:57:4e:3f:0c:
08:bb:fb:4e:12:64:6f:6b:3e:52:ba:19:33:fe:63:c4:e3:e6:
52:72:35:2d:cc:67:a2:dd:54:23:06:cb:81:c3:64:cb:13:d3:
01:d0:1c:42:47:c2:60:1a:55:da:bb:93:fb:cc:86:1d:42:e8:
75:75:2f:91:2b:be:5a:b0:1f:13:37:9b:c7:26:04:ad:6e:ca:
09:a3:82:9b:51:58:06:ed:85:17:5e:03:85:22:1d:c5:ce:18:
4d:83:e6:ca:69:ed:03:33:b0:fd:a7:5e:d9:43:b3:03:5d:10:
fa:5d:8d:57:89:d1:17:bd:5d:82:62:e1:a3:57:13:a5:82:37:
cf:38:2f:f5:ee:eb:12:40:fb:8e:a3:94:c4:49:2f:b1:eb:97:
e9:7c:6b:35:8c:d1:b1:91:d5:13:28:84:f5:58:b8:1d:35:ed:
a9:42:8f:ef:a8:05:0b:6f:86:e4:6b:6b:c0:d5:46:80:33:73:
e7:54:3c:13:06:e5:8c:1f:9b:b2:b3:99:1d:6d:81:3c:4c:6c:
d9:c9:9f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org