Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Mmss48W425ok0ElL6x3z7douhMQ.roa
File: Mmss48W425ok0ElL6x3z7douhMQ.roa (raw, json)
Hash identifier: StHAyNSDs2HkWUT8vrNsu+PpqhlRczUB3ztGVr/a098=
Subject key identifier: 32:6B:2C:E3:C5:B8:DB:9A:24:D0:49:4B:EB:1D:F3:ED:DA:2E:84:C4
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018AF60789DB07226910B38F3913CB3A70F4
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Mmss48W425ok0ElL6x3z7douhMQ.roa
Signing time: Tue 03 Oct 2023 14:53:23 +0000
ROA not before: Tue 03 Oct 2023 14:53:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51659
IP address blocks: 193.233.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Nov 2023 15:16:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f6:07:89:db:07:22:69:10:b3:8f:39:13:cb:3a:70:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Oct 3 14:53:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=326b2ce3c5b8db9a24d0494beb1df3edda2e84c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:96:cc:35:a1:42:bf:aa:c9:aa:79:5e:53:f1:
30:f7:05:e9:af:ce:79:3a:24:5c:02:82:bb:f8:d7:
1f:8f:3d:48:e0:ec:da:ac:9c:3b:da:03:2a:28:ab:
6d:9f:4b:35:a8:9b:d4:08:35:92:00:c7:7b:e3:c3:
ec:42:e6:bb:70:b7:4b:8b:a7:7b:2a:61:56:a8:75:
34:13:0f:c4:04:3b:e4:1f:a8:83:81:8c:b2:15:16:
15:89:72:01:54:d5:5c:18:88:03:ee:37:50:37:d6:
40:4c:96:8e:04:8d:13:12:f9:f1:bd:d5:25:fa:67:
f0:0e:3e:ec:26:7c:de:3c:89:ae:3b:af:64:3b:4f:
56:15:cc:1b:03:df:ee:9d:70:50:e2:c3:7e:a7:e2:
8f:4f:a9:0e:79:bf:d4:b3:bd:cc:c7:b8:23:3e:b3:
2c:44:6c:65:ed:5f:48:85:e3:7a:c0:71:88:84:c1:
52:1e:df:6b:ed:5d:7b:a8:c4:7e:3a:52:4a:ce:9a:
81:88:1e:1e:a8:93:fd:6d:6f:60:88:9b:99:b2:29:
e0:6d:49:8b:04:f7:48:6b:eb:b8:8d:90:7e:9f:16:
f5:d9:c2:66:b8:a5:0c:d6:96:e8:17:fe:14:c3:40:
eb:36:44:2c:e4:d4:1f:bf:ea:f7:f3:70:39:85:66:
6c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:6B:2C:E3:C5:B8:DB:9A:24:D0:49:4B:EB:1D:F3:ED:DA:2E:84:C4
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Mmss48W425ok0ElL6x3z7douhMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.16.0/24
Signature Algorithm: sha256WithRSAEncryption
66:d7:c3:20:b5:55:f2:47:01:70:29:b5:f4:a9:3b:01:9e:5a:
85:0b:df:23:3f:b0:34:b3:bf:d7:4e:8d:c2:f0:5b:bb:90:63:
9a:b7:de:cf:ac:37:b3:7b:8a:03:eb:21:a5:1f:f1:5e:f8:f2:
b7:bd:82:a5:2c:a4:f7:8b:c4:d0:29:4e:ff:10:92:cf:d5:a1:
50:11:71:1a:b3:99:8f:a0:99:93:c4:10:27:f4:72:2e:ad:12:
37:d7:02:77:f8:ef:ae:5c:10:b5:fb:97:0c:3e:f1:89:06:4e:
87:09:75:d3:5e:bb:09:4c:fb:72:11:b0:e3:d5:a4:bc:17:a3:
a3:7a:45:75:53:0c:67:23:62:fb:9f:9a:64:89:18:78:30:22:
a0:4b:6d:82:d2:60:48:73:c6:27:a4:5f:32:a7:27:b9:61:12:
e3:23:db:c0:d4:ad:09:d8:bb:51:37:d6:6b:e5:a7:40:3b:96:
82:b5:ce:ea:5c:e4:64:af:14:22:7c:87:1f:ff:22:16:83:cb:
b7:f7:44:f5:4c:26:9b:cc:47:00:c4:3e:70:4e:c0:41:a7:8e:
44:a4:9f:9c:ed:78:7c:e4:0b:7a:60:07:9b:7b:3e:cf:e5:81:
0a:3d:a6:69:76:ae:af:44:b9:fd:cc:5a:e6:5e:cc:4a:17:b7:
53:08:68:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org