Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/JTXOaWB1TyMOpdiIwvhl13RqHKE.roa
File: JTXOaWB1TyMOpdiIwvhl13RqHKE.roa (raw, json)
Hash identifier: jom7pNO1eA2fE1bzBvXHxi+ZliAV2m57Qq39HhCwis8=
Subject key identifier: 25:35:CE:69:60:75:4F:23:0E:A5:D8:88:C2:F8:65:D7:74:6A:1C:A1
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0186C080A27EEE3EF952D8C555F12C439FB8
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/JTXOaWB1TyMOpdiIwvhl13RqHKE.roa
Signing time: Wed 08 Mar 2023 09:15:00 +0000
ROA not before: Wed 08 Mar 2023 09:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200088
IP address blocks: 193.233.96.0/24 maxlen: 24
193.233.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Mar 2023 19:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c0:80:a2:7e:ee:3e:f9:52:d8:c5:55:f1:2c:43:9f:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Mar 8 09:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2535ce6960754f230ea5d888c2f865d7746a1ca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a2:11:f5:3c:34:2c:a5:ec:3c:a4:ac:44:3f:
f5:15:19:9c:b5:9c:3a:41:bb:23:b7:18:8b:8a:95:
94:7b:c1:80:d1:ed:75:3f:d7:8f:6a:38:8e:ea:a9:
f7:8a:20:1f:9a:bf:60:32:f0:2a:69:2f:16:fd:60:
64:4c:bc:92:7a:3c:24:0c:7d:9e:16:fa:3e:c6:ee:
37:17:62:78:e4:c4:9f:e0:56:18:aa:1c:ed:38:33:
a0:3f:60:fb:6e:aa:88:02:84:0c:31:7a:63:dd:3f:
81:86:22:cc:7c:e7:e3:23:4a:d9:91:66:58:4d:d4:
5c:41:6b:ab:6d:cc:79:b0:95:ef:2b:4f:1d:e2:35:
08:90:96:71:a5:e4:4f:88:48:16:a1:6c:83:36:75:
8a:c0:50:ba:95:73:e4:ac:cb:1e:ba:04:76:26:26:
ff:7e:dd:d6:6a:cc:a5:64:a2:06:75:a6:9b:2c:32:
39:09:e0:47:33:1a:4a:44:26:96:5b:ce:75:69:bc:
28:a1:85:e8:2e:34:b7:2f:0a:a1:9f:ba:6f:33:a7:
17:ad:8c:cf:f9:cb:27:dd:2d:80:52:19:eb:12:36:
38:41:49:84:95:07:fd:34:7c:b0:99:64:73:01:10:
52:2a:90:77:12:c0:50:9d:11:d8:0e:84:d2:a6:b4:
c0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:35:CE:69:60:75:4F:23:0E:A5:D8:88:C2:F8:65:D7:74:6A:1C:A1
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/JTXOaWB1TyMOpdiIwvhl13RqHKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.96.0/23
Signature Algorithm: sha256WithRSAEncryption
63:ed:a1:fe:d3:85:a8:4a:bd:fe:c8:41:cf:26:7a:c5:e6:42:
65:89:e8:f3:aa:05:9e:df:d7:8e:8f:45:63:29:28:0e:62:31:
c2:c5:46:fa:8a:75:4b:16:24:23:04:5f:0c:aa:ee:db:87:2e:
c3:f3:43:22:14:90:52:10:96:d8:6b:34:ba:ce:bc:1d:1c:22:
52:f1:f0:b4:79:a9:ac:08:0a:07:c7:2d:56:4d:3e:03:11:e0:
8f:9b:3c:5c:ae:c1:db:30:d6:5e:1b:7e:01:bf:78:6c:89:c6:
7c:29:47:a3:7e:19:85:29:2f:ee:0f:f8:8e:f0:ac:c7:24:48:
ea:86:24:97:f4:4d:ea:10:c7:ed:0b:eb:93:00:cc:4d:27:e6:
e2:2b:77:46:99:6b:61:20:e6:a2:53:65:a5:47:c3:7d:b6:15:
9f:2c:da:a4:0f:06:34:e8:a1:9c:89:e1:c9:65:89:fc:13:9d:
a4:76:fe:ee:13:21:79:68:7a:c8:a7:ac:e7:59:29:e4:43:c2:
e0:41:85:2f:21:3b:ae:2a:98:02:be:14:8b:c8:b2:58:9e:26:
26:2d:6a:6f:59:64:61:09:f7:e8:2a:5d:8e:46:04:a3:c5:04:
89:c8:24:2a:38:2b:97:b8:de:53:59:69:5c:0d:bd:47:f4:4c:
d9:cd:2a:19
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbAgKJ+7j75UtjFVfEsQ5+4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjMwMzA4MDkxNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTM1Y2U2OTYwNzU0ZjIzMGVhNWQ4ODhjMmY4NjVkNzc0NmExY2ExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6IR9Tw0LKXsPKSsRD/1FRmctZw6
QbsjtxiLipWUe8GA0e11P9ePajiO6qn3iiAfmr9gMvAqaS8W/WBkTLySejwkDH2e
Fvo+xu43F2J45MSf4FYYqhztODOgP2D7bqqIAoQMMXpj3T+BhiLMfOfjI0rZkWZY
TdRcQWurbcx5sJXvK08d4jUIkJZxpeRPiEgWoWyDNnWKwFC6lXPkrMseugR2Jib/
ft3WasylZKIGdaabLDI5CeBHMxpKRCaWW851abwooYXoLjS3Lwqhn7pvM6cXrYzP
+csn3S2AUhnrEjY4QUmElQf9NHywmWRzARBSKpB3EsBQnRHYDoTSprTAkwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCU1zmlgdU8jDqXYiML4Zdd0ahyhMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvSlRYT2FXQjFUeU1PcGRpSXd2aGwxM1JxSEtFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwelgMA0G
CSqGSIb3DQEBCwUAA4IBAQBj7aH+04WoSr3+yEHPJnrF5kJliejzqgWe39eOj0Vj
KSgOYjHCxUb6inVLFiQjBF8Mqu7bhy7D80MiFJBSEJbYazS6zrwdHCJS8fC0eams
CAoHxy1WTT4DEeCPmzxcrsHbMNZeG34Bv3hsicZ8KUejfhmFKS/uD/iO8KzHJEjq
hiSX9E3qEMftC+uTAMxNJ+biK3dGmWthIOaiU2WlR8N9thWfLNqkDwY06KGcieHJ
ZYn8E52kdv7uEyF5aHrIp6znWSnkQ8LgQYUvITuuKpgCvhSLyLJYniYmLWpvWWRh
CffoKl2ORgSjxQSJyCQqOCuXuN5TWWlcDb1H9EzZzSoZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org