Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LYiSSerCzjtm8nuDFa_7Z11ACbo.roa
File: LYiSSerCzjtm8nuDFa_7Z11ACbo.roa (raw, json)
Hash identifier: NUUHbkRopD1kY0mQJdHlCYYV6itLxi/7Kkvd6nOGqaA=
Subject key identifier: 2D:88:92:49:EA:C2:CE:3B:66:F2:7B:83:15:AF:FB:67:5D:40:09:BA
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01856F26E42B23B8625DFA3B30D132B892B2
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LYiSSerCzjtm8nuDFa_7Z11ACbo.roa
Signing time: Sun 01 Jan 2023 21:04:57 +0000
ROA not before: Sun 01 Jan 2023 21:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47531
IP address blocks: 193.233.96.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 08 Mar 2023 09:15:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:e4:2b:23:b8:62:5d:fa:3b:30:d1:32:b8:92:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 21:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d889249eac2ce3b66f27b8315affb675d4009ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:73:23:48:47:4a:c8:3a:9d:a4:b9:69:58:f4:
24:5c:0e:29:ca:a9:31:86:a7:33:78:1c:f5:5f:71:
0d:ac:02:da:60:ab:54:5d:7b:17:9d:ac:a3:93:60:
0c:c4:a2:30:0b:f3:13:80:15:7d:3d:98:b4:b1:50:
a5:c0:ab:4b:a2:23:c7:d4:ed:f1:ab:5e:92:65:8d:
ec:ff:93:db:e1:8a:4b:55:dc:ab:de:1a:fa:b5:e5:
a6:d2:26:f6:39:1d:36:03:59:d5:5c:7d:fc:84:f5:
60:68:af:35:be:2c:80:b9:9b:78:b2:40:3f:91:78:
4f:9d:3f:66:0a:ac:b0:1c:60:8b:7a:fc:4d:5b:ff:
65:d3:8f:fe:85:c2:02:50:2f:da:84:53:1b:58:4b:
04:9c:62:b6:00:16:ee:f5:10:f9:cf:ad:d3:57:6e:
0e:76:04:7f:35:8a:29:ad:cd:2f:ef:81:3e:1d:98:
4b:f5:12:63:95:18:bd:16:45:b6:4d:56:f8:e4:7e:
1e:83:67:4d:71:31:56:bb:5e:53:a9:05:ce:8e:72:
58:91:85:34:18:c9:e8:df:d2:ff:e5:ee:13:f2:ac:
73:e1:17:54:82:83:b0:66:5a:d7:ba:2a:60:ee:ae:
af:77:73:97:6b:7d:f2:bd:93:d2:4a:93:a4:40:c0:
1b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:88:92:49:EA:C2:CE:3B:66:F2:7B:83:15:AF:FB:67:5D:40:09:BA
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LYiSSerCzjtm8nuDFa_7Z11ACbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.96.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:38:db:e7:4b:09:6f:a6:f7:b9:7c:c0:82:73:04:00:e3:eb:
f3:8e:b1:41:26:f1:ef:ea:3c:eb:22:1b:61:3d:df:cf:62:ab:
dc:f6:3e:7f:0c:2f:20:fc:5f:3b:b7:9f:9f:33:10:81:51:d0:
93:dc:3e:b1:a0:97:45:52:6a:54:eb:51:f7:f5:25:03:67:4f:
5c:0f:e5:f4:67:47:64:56:e4:be:47:bd:f5:5b:b1:58:df:39:
13:ab:49:3f:38:94:9d:d4:cf:14:f8:8d:d5:19:6a:c8:52:cc:
52:cc:f1:f7:32:5f:77:af:e9:f7:db:7a:a7:4a:0f:a5:a6:69:
71:ba:78:60:5a:67:a5:06:5c:cd:af:11:d9:84:0e:f8:22:c5:
ea:d9:2f:1c:03:bb:a6:96:ac:cd:7a:af:0a:11:f8:98:09:12:
f7:9e:c3:5e:a5:03:c2:ed:f7:fe:e5:ba:9b:10:3a:30:66:58:
fd:70:4d:70:fa:83:36:b1:fd:ba:fe:28:32:d7:16:ed:51:c5:
40:b2:b6:db:ef:09:33:68:af:fa:4e:1b:43:63:ec:fd:b7:83:
98:fb:23:7e:ec:d8:e4:b6:1d:8e:dd:26:53:2e:0d:cc:66:53:
bf:ae:73:1a:7b:ae:04:64:2f:81:ff:2f:82:52:a1:32:b0:15:
35:21:74:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org