Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Vc1bGHwwZrlraB0cxqtNOTrnyJQ.roa
File: Vc1bGHwwZrlraB0cxqtNOTrnyJQ.roa (raw, json)
Hash identifier: bQptqtjzbHpUCivCyqnkn7b0PSqGeVY8HOnojISKpCU=
Subject key identifier: 55:CD:5B:18:7C:30:66:B9:6B:68:1D:1C:C6:AB:4D:39:3A:E7:C8:94
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018D9C09AA523C6A455968CD343B8E126577
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Vc1bGHwwZrlraB0cxqtNOTrnyJQ.roa
Signing time: Mon 12 Feb 2024 06:38:15 +0000
ROA not before: Mon 12 Feb 2024 06:38:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207713
IP address blocks: 193.233.18.0/24 maxlen: 24
193.233.48.0/24 maxlen: 24
193.233.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 10:39:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9c:09:aa:52:3c:6a:45:59:68:cd:34:3b:8e:12:65:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Feb 12 06:38:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55cd5b187c3066b96b681d1cc6ab4d393ae7c894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:15:43:16:21:21:d6:99:25:c9:df:26:68:d0:
b5:d0:39:f6:e7:95:c4:dc:71:2a:f6:7c:8b:63:92:
77:05:c8:9a:78:62:52:ac:65:af:91:07:57:97:80:
bd:5d:fb:e4:b2:95:13:d2:38:9b:4c:8b:cc:60:e3:
bb:71:98:4f:b9:f5:88:65:54:87:58:21:fa:f6:bb:
63:d4:f7:e7:86:eb:b7:75:47:1a:19:e2:17:b2:c1:
1a:18:12:db:c9:e0:71:ea:ea:d2:8b:51:72:ca:d4:
c2:16:8c:f0:6e:98:49:3f:35:02:d8:66:75:f1:97:
0e:51:f3:19:d8:5e:da:68:89:e7:f0:18:1f:7e:d7:
4e:d6:fc:f2:cd:9c:01:48:c0:f4:6f:04:f9:1c:a9:
38:f2:2a:af:48:e8:b3:43:b1:23:1f:02:f2:48:5b:
01:65:4d:cc:86:10:8b:d9:9d:c5:ca:61:77:cb:f7:
48:4b:25:73:24:58:42:37:0e:d9:8d:5c:b6:5e:db:
3f:bd:ec:fd:e8:45:11:23:45:48:35:99:0e:8f:48:
f0:17:c2:2e:e6:b2:77:97:77:60:c4:92:c4:69:6d:
3f:d1:f5:1c:16:da:12:39:59:bc:3c:9f:71:3c:fe:
03:23:b9:10:56:8f:9e:20:c9:ae:06:79:f6:0f:01:
9c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:CD:5B:18:7C:30:66:B9:6B:68:1D:1C:C6:AB:4D:39:3A:E7:C8:94
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Vc1bGHwwZrlraB0cxqtNOTrnyJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.18.0/24
193.233.48.0/23
Signature Algorithm: sha256WithRSAEncryption
49:f2:78:d6:2c:c3:4b:4e:e1:35:81:d9:38:8f:9b:8d:90:99:
d6:bc:c6:1f:89:62:e9:a5:5e:93:4e:95:fc:b2:1f:81:49:f5:
6d:e0:50:87:3d:27:7b:d9:5b:fb:a3:23:7a:d3:28:f0:e6:94:
f6:9e:9f:ff:5c:d8:9c:c4:06:86:eb:70:38:05:75:fa:1a:5b:
6d:84:20:7a:e8:c7:e4:22:ce:38:4f:85:04:39:ed:7d:12:74:
28:b3:b3:01:b2:1f:e2:94:0a:11:0c:8a:de:80:6e:1e:30:59:
8b:10:91:88:de:e7:22:e0:7c:ad:b3:ef:26:3f:26:89:6b:3d:
3e:f9:aa:66:ba:54:aa:e0:4b:11:64:60:f2:2e:dc:41:0b:4c:
ac:62:a5:15:20:6f:08:c9:8a:0c:cd:13:89:25:d8:2d:53:0f:
d6:26:4b:3d:fb:75:29:be:31:0f:9a:f6:59:a8:34:fc:f1:98:
8d:66:02:cc:f3:10:f8:18:ac:81:69:bf:d1:21:af:20:96:e5:
e1:9a:e5:68:c0:a2:8d:01:72:f5:1a:5b:13:13:8a:c7:5c:9f:
18:a3:60:f2:c1:db:da:3b:66:fd:03:43:1e:dd:77:fe:ad:78:
62:0d:54:82:99:95:1a:15:86:db:18:c2:3a:37:3f:e6:f1:5d:
ba:16:31:d7
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY2cCapSPGpFWWjNNDuOEmV3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjQwMjEyMDYzODE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NWNkNWIxODdjMzA2NmI5NmI2ODFkMWNjNmFiNGQzOTNhZTdjODk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAihVDFiEh1pklyd8maNC10Dn255XE
3HEq9nyLY5J3BciaeGJSrGWvkQdXl4C9XfvkspUT0jibTIvMYOO7cZhPufWIZVSH
WCH69rtj1Pfnhuu3dUcaGeIXssEaGBLbyeBx6urSi1FyytTCFozwbphJPzUC2GZ1
8ZcOUfMZ2F7aaInn8BgfftdO1vzyzZwBSMD0bwT5HKk48iqvSOizQ7EjHwLySFsB
ZU3MhhCL2Z3FymF3y/dISyVzJFhCNw7ZjVy2Xts/vez96EURI0VINZkOj0jwF8Iu
5rJ3l3dgxJLEaW0/0fUcFtoSOVm8PJ9xPP4DI7kQVo+eIMmuBnn2DwGcUQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFXNWxh8MGa5a2gdHMarTTk658iUMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvVmMxYkdId3dacmxyYUIwY3hxdE5PVHJueUpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwekSAwQB
wekwMA0GCSqGSIb3DQEBCwUAA4IBAQBJ8njWLMNLTuE1gdk4j5uNkJnWvMYfiWLp
pV6TTpX8sh+BSfVt4FCHPSd72Vv7oyN60yjw5pT2np//XNicxAaG63A4BXX6Gltt
hCB66MfkIs44T4UEOe19EnQos7MBsh/ilAoRDIregG4eMFmLEJGI3uci4Hyts+8m
PyaJaz0++apmulSq4EsRZGDyLtxBC0ysYqUVIG8IyYoMzROJJdgtUw/WJks9+3Up
vjEPmvZZqDT88ZiNZgLM8xD4GKyBab/RIa8gluXhmuVowKKNAXL1GlsTE4rHXJ8Y
o2DywdvaO2b9A0Me3Xf+rXhiDVSCmZUaFYbbGMI6Nz/m8V26FjHX
-----END CERTIFICATE-----
Generated at Thu Feb 22 15:54:48 2024 by rpki-client on console-ams.rpki-client.org