Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Ijy8cMpDpASqQUYRwb8gCbwHHyM.roa
File: Ijy8cMpDpASqQUYRwb8gCbwHHyM.roa (raw, json)
Hash identifier: BI0gGrmyzwBwJZQPs1Mxc9vqBB3mZEuBQ746uxbqGBs=
Subject key identifier: 22:3C:BC:70:CA:43:A4:04:AA:41:46:11:C1:BF:20:09:BC:07:1F:23
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01856F26DC7E8D8ADA8BB228C678A02CF4A8
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Ijy8cMpDpASqQUYRwb8gCbwHHyM.roa
Signing time: Sun 01 Jan 2023 21:04:55 +0000
ROA not before: Sun 01 Jan 2023 21:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8480
IP address blocks: 193.233.144.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:dc:7e:8d:8a:da:8b:b2:28:c6:78:a0:2c:f4:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 21:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=223cbc70ca43a404aa414611c1bf2009bc071f23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:00:3d:df:17:e8:ff:76:6c:c4:18:96:37:8e:
f6:d5:83:36:3c:5b:5a:6f:0a:f8:e2:60:e4:8c:f9:
5b:7c:ee:c7:2c:4c:80:43:41:71:07:49:5b:50:4c:
bd:ee:7b:58:09:2b:d0:46:a0:fd:98:04:e5:c2:13:
bc:ae:c6:32:ef:46:46:81:dd:25:73:50:ba:3e:30:
ba:aa:3a:66:44:4a:a3:95:e3:ae:18:c6:72:b0:ee:
5f:bd:1b:4e:3e:c5:27:aa:ec:af:10:02:3f:47:f5:
05:e2:8e:22:be:20:45:7f:bb:0c:eb:1b:1a:03:07:
b1:4d:6f:65:9a:16:ad:83:7f:de:90:bd:96:4f:2a:
01:e3:01:fc:53:68:4b:e8:30:21:83:55:98:e0:ac:
33:66:01:18:56:61:3a:d1:6d:0e:0e:8c:56:a5:25:
7d:69:6a:97:91:e9:d0:32:a4:b0:cd:ca:f7:87:a7:
be:26:79:b8:b8:e2:39:a9:65:33:cb:bd:27:60:05:
b2:da:88:47:16:54:15:26:d6:90:cb:86:88:8a:57:
d9:a5:0f:a5:e3:27:4f:86:34:ed:92:a6:b4:74:8c:
e7:9f:47:41:48:ea:3b:cf:d5:85:f5:1d:05:a3:66:
9c:8c:c6:df:b2:4e:37:e4:30:d6:20:1d:d7:11:66:
24:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:3C:BC:70:CA:43:A4:04:AA:41:46:11:C1:BF:20:09:BC:07:1F:23
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Ijy8cMpDpASqQUYRwb8gCbwHHyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.144.0/22
Signature Algorithm: sha256WithRSAEncryption
63:3e:ee:e8:6e:61:df:da:e5:39:af:63:d3:64:39:70:39:56:
d1:4c:69:66:97:c3:7b:7e:0f:47:bf:0d:f8:63:79:9c:c9:05:
a9:b2:ff:0d:31:37:d3:b4:b4:f6:f7:48:0e:f3:28:41:f4:f7:
d0:95:2c:b8:62:c1:b9:00:ba:c6:d3:83:66:5f:37:d5:5b:ea:
a5:52:50:8d:d3:88:3f:dd:c1:e2:7f:8a:5d:8c:d4:7b:63:60:
5e:43:2a:2b:f5:b5:f5:2d:24:22:0a:47:2d:43:99:f1:04:bf:
12:d0:17:55:44:47:af:8b:d7:4c:ef:74:39:aa:ad:37:2a:23:
a1:df:18:c8:e8:44:9e:94:60:cd:65:45:f9:75:09:01:51:6b:
ea:43:eb:d6:45:66:90:f4:2e:f1:21:0e:fa:18:41:b9:40:30:
b8:8a:ac:3e:0c:14:54:4d:ca:6c:2d:e2:49:87:61:2a:ae:7e:
1c:12:fe:f3:90:a3:9f:8b:07:3a:1c:7d:5e:a3:f2:22:f9:ac:
87:e8:78:d0:87:0e:24:2b:b3:a9:c8:a1:35:fc:e8:c9:bf:6b:
ad:ab:93:4f:ea:34:45:1d:41:c2:53:b1:e6:cc:4d:8a:05:6b:
f0:32:93:b5:ee:cc:7d:e4:e3:04:27:28:48:0c:30:b8:d7:18:
5a:58:fa:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:05 2024 by rpki-client on console-fra.rpki-client.org