Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RVy35YkTOdj5vv4TB1S75Pf4tHw.roa
File: RVy35YkTOdj5vv4TB1S75Pf4tHw.roa (raw, json)
Hash identifier: rWSZotYJAsyRGBPGtx5Mf4zct8cxfop224dZvGXvmcw=
Subject key identifier: 45:5C:B7:E5:89:13:39:D8:F9:BE:FE:13:07:54:BB:E4:F7:F8:B4:7C
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018684868A114FD16A2F98D4CA00ABDE33F4
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RVy35YkTOdj5vv4TB1S75Pf4tHw.roa
Signing time: Fri 24 Feb 2023 17:44:14 +0000
ROA not before: Fri 24 Feb 2023 17:44:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56380
IP address blocks: 193.233.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:84:86:8a:11:4f:d1:6a:2f:98:d4:ca:00:ab:de:33:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Feb 24 17:44:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=455cb7e5891339d8f9befe130754bbe4f7f8b47c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a6:6a:49:e5:2e:96:4b:8e:21:09:bc:e6:d5:
c4:85:b8:88:bd:fb:c7:8d:1f:41:65:72:36:5e:9b:
80:a0:9f:f9:c8:8a:24:37:97:c5:dc:8c:37:43:6d:
98:d2:e7:6d:69:ab:94:5a:40:71:28:e6:45:59:64:
1e:34:70:25:b5:60:6e:e9:19:e2:69:41:ab:34:64:
55:4d:28:eb:ea:9e:f4:31:02:fa:c6:16:d4:e2:ee:
2c:43:fa:aa:40:98:05:d3:2b:56:88:8d:dd:09:f2:
85:fa:eb:6d:03:49:93:ec:6d:91:9b:5f:f0:fe:2b:
47:6d:7f:39:e3:6a:cb:b2:76:e8:39:30:58:4d:dd:
a9:b7:b8:d9:47:23:a0:28:ca:05:7f:af:1e:b0:ef:
a9:58:69:51:67:66:fe:f5:c0:18:69:5d:8f:e5:50:
79:62:7c:7a:ec:a1:a6:98:f9:a9:13:76:42:28:49:
0c:b0:4d:5f:ad:ce:c2:26:56:75:a4:a7:ee:09:c8:
64:c9:71:3d:76:9a:3c:da:26:35:0d:48:05:72:89:
dd:2c:ef:7b:70:23:8f:68:a7:6c:cb:34:5b:f8:ee:
7a:ef:ef:f8:b0:df:c6:c1:b0:19:76:68:57:b1:a6:
26:85:57:4a:ff:3e:5d:64:6c:4a:1f:54:d2:db:ae:
b5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5C:B7:E5:89:13:39:D8:F9:BE:FE:13:07:54:BB:E4:F7:F8:B4:7C
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RVy35YkTOdj5vv4TB1S75Pf4tHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.21.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:8b:24:53:52:f9:4f:81:52:13:93:40:a1:22:73:9f:2b:b2:
2f:ba:05:d3:fe:ba:17:a7:1c:3c:f8:44:7d:9e:e8:b6:2e:8e:
84:21:de:3e:da:06:72:c3:ca:c9:c4:4c:59:f9:1f:2c:47:d8:
07:5c:9d:3f:1f:0d:3f:94:6a:08:83:6f:08:2f:e3:ed:b3:9f:
16:8d:ec:f3:7a:ac:d8:a0:46:ca:60:2d:9c:91:a4:ec:a9:08:
fa:ac:dd:77:5d:c1:19:78:dd:cb:25:99:b1:6d:5a:99:4b:50:
ce:99:37:56:93:2a:ac:1a:9a:b9:2f:f0:15:f3:a1:78:7c:e6:
a6:c4:42:37:7d:f0:a2:dc:72:77:18:62:06:90:3e:02:3b:ff:
a7:33:5c:7c:42:97:00:f3:89:66:00:c5:57:81:12:ed:79:66:
7e:8c:63:74:e0:fa:56:fc:7a:5a:c1:10:42:34:a5:e1:f0:9d:
cd:47:f2:9b:f8:2d:32:88:85:04:ad:9c:91:b2:0a:47:6b:13:
2e:12:3d:6a:2d:ff:d4:37:26:f9:0e:8f:48:7a:2e:17:4f:3a:
10:2a:5d:88:26:8d:56:21:7b:fe:2f:6c:b8:a7:5e:58:96:91:
ac:c0:16:a5:93:8d:d0:da:46:00:2f:c4:15:1b:21:05:fb:57:
eb:71:03:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org