Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/EkugUMk7UeipZsWPpw7wS17iyLU.roa
File: EkugUMk7UeipZsWPpw7wS17iyLU.roa (raw, json)
Hash identifier: lR6d8oh21B1K3ksGdxUhrC4L9eju6GCOWr41Gct9B2U=
Subject key identifier: 12:4B:A0:50:C9:3B:51:E8:A9:66:C5:8F:A7:0E:F0:4B:5E:E2:C8:B5
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018C7381A83875D8155D95F74A421F53A164
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/EkugUMk7UeipZsWPpw7wS17iyLU.roa
Signing time: Sat 16 Dec 2023 16:42:06 +0000
ROA not before: Sat 16 Dec 2023 16:42:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199868
IP address blocks: 185.103.102.0/24 maxlen: 24
185.103.103.0/24 maxlen: 24
185.103.100.0/24 maxlen: 24
185.103.101.0/24 maxlen: 24
193.233.164.0/24 maxlen: 24
193.233.75.0/24 maxlen: 24
193.233.74.0/24 maxlen: 24
193.233.80.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:73:81:a8:38:75:d8:15:5d:95:f7:4a:42:1f:53:a1:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Dec 16 16:42:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=124ba050c93b51e8a966c58fa70ef04b5ee2c8b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:36:22:f4:82:b4:e5:b4:97:73:c7:bd:62:29:
f6:74:bd:fe:d2:b8:2f:fe:54:3e:4a:ff:27:20:b0:
6b:37:d4:4f:2d:a5:bb:58:86:81:85:ad:e8:78:b4:
c3:9d:f9:22:e3:95:f1:00:58:9a:44:8c:dd:99:e5:
4f:94:6c:dc:d2:c9:ac:17:4f:bd:43:6f:36:40:dd:
a1:92:b8:1a:87:26:87:48:66:40:d0:e3:3d:23:61:
a0:51:ad:3c:bc:93:b2:c8:7d:e1:03:8c:ee:9a:2d:
19:36:af:0b:3d:1f:3d:c2:d5:c7:9b:7e:dd:60:10:
63:82:d1:29:4d:10:ec:37:ce:6c:91:83:b0:4d:48:
6a:f3:8f:ae:14:29:fd:27:e9:27:d8:05:35:94:8d:
19:07:29:70:97:86:85:cc:34:b2:e8:d4:a8:e1:09:
59:d8:f7:b6:68:27:45:ff:47:59:8b:82:f6:5d:ac:
b8:c6:ca:a7:71:0e:e5:7c:a2:8f:63:b8:9e:00:f4:
8a:91:78:39:d9:04:bf:b2:ae:c2:4a:d9:47:90:52:
73:d2:ff:cc:d9:c6:6f:50:af:51:ca:a3:ee:74:93:
25:45:0c:8e:5e:a5:cd:68:4a:8d:54:13:3a:d4:39:
a5:95:5f:1f:c2:1d:51:71:4f:44:b8:5c:a8:73:88:
b9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:4B:A0:50:C9:3B:51:E8:A9:66:C5:8F:A7:0E:F0:4B:5E:E2:C8:B5
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/EkugUMk7UeipZsWPpw7wS17iyLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.100.0/22
193.233.74.0/23
193.233.80.0/24
193.233.164.0/24
Signature Algorithm: sha256WithRSAEncryption
96:a1:ec:6e:64:c1:82:b7:c6:b1:5c:9b:b7:62:bc:e5:50:7c:
cb:51:cc:04:ad:bb:a3:63:74:6a:87:95:5b:7c:6e:ad:66:5a:
5e:34:6b:73:d0:84:58:af:f7:8b:09:00:e8:cb:3f:b0:9f:77:
ab:60:13:d2:14:59:48:10:63:7d:bd:56:4b:0a:2e:57:86:17:
27:10:8c:09:f1:e9:b8:5b:b3:83:fb:37:13:d5:2a:cd:e1:e3:
b7:e3:87:de:ab:c1:49:85:ae:65:2e:e1:aa:b4:b7:79:35:53:
ab:f3:4f:18:2d:c5:ec:d5:92:0f:d9:b9:71:ad:4f:57:a9:a6:
b6:bd:62:3d:90:3d:0a:9e:c3:64:b4:67:95:c7:5b:cc:46:06:
17:63:89:6e:d9:41:91:f9:0a:3c:ba:60:fc:a7:20:c3:97:23:
b2:d7:52:49:c5:36:f4:ab:90:eb:5e:6e:ac:55:75:1e:12:70:
f6:f3:de:12:15:9d:d5:b9:92:0f:3f:72:22:7b:35:3a:29:69:
3d:a3:eb:84:ee:22:ff:e5:41:92:13:81:08:e9:95:d5:96:e0:
3d:a1:ec:af:92:06:04:c8:36:d9:d7:09:1a:30:08:08:98:0c:
78:b2:a3:77:85:1e:86:ad:99:ef:75:4f:fb:96:d8:37:43:31:
25:e0:98:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:21 2024 by rpki-client on console-ams.rpki-client.org