Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/W2a7ifnk48h5Ezih9HFHlD8kxqw.roa
File: W2a7ifnk48h5Ezih9HFHlD8kxqw.roa (raw, json)
Hash identifier: +6nPGGO6JuObwLl5rAhSwotbmn9vgaWKUDMAMptGArY=
Subject key identifier: 5B:66:BB:89:F9:E4:E3:C8:79:13:38:A1:F4:71:47:94:3F:24:C6:AC
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0185F3CD7CF0E5E6BE85673595287BB727B6
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/W2a7ifnk48h5Ezih9HFHlD8kxqw.roa
Signing time: Fri 27 Jan 2023 15:16:48 +0000
ROA not before: Fri 27 Jan 2023 15:16:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202973
IP address blocks: 193.233.20.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f3:cd:7c:f0:e5:e6:be:85:67:35:95:28:7b:b7:27:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 27 15:16:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b66bb89f9e4e3c8791338a1f47147943f24c6ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:43:b1:84:e6:20:af:1e:a3:63:00:3a:c7:86:
fd:ea:34:fa:0b:f1:c4:d0:31:bb:64:d7:a8:4f:fa:
09:20:13:29:a4:4f:8b:63:2c:8f:ee:63:d5:14:a9:
27:88:67:f7:70:db:c4:4e:d1:bb:48:d3:82:b2:d0:
08:ab:3d:0b:43:28:69:13:35:2e:09:1d:d8:88:52:
fe:6b:08:a8:c4:7c:b6:88:e2:8c:07:9a:bc:fe:99:
44:21:3e:ee:ad:e0:92:45:d8:af:d3:3b:60:3e:2a:
ee:6f:e4:76:4e:f7:f4:1e:2e:cc:44:74:34:60:00:
2e:e4:62:5f:f9:30:58:be:10:cf:e8:84:21:68:d8:
59:b7:26:a2:41:17:41:db:cd:55:c1:56:15:6d:64:
86:ee:01:3b:1f:e0:76:d5:e3:2b:d9:db:a7:16:23:
be:6e:d2:b5:e4:46:c4:52:8e:b1:59:d2:b9:56:84:
ce:b2:8c:57:81:19:ef:9a:98:06:f6:15:12:29:ab:
3e:ba:22:cc:6d:bb:29:27:70:02:18:b1:ef:82:91:
82:01:ce:ea:8c:49:f6:9d:f4:86:37:1a:8c:7f:36:
37:0f:4d:37:52:73:ee:8a:e2:8c:65:8f:21:55:99:
3b:43:f8:80:30:36:d5:e7:07:91:07:bb:3b:df:6f:
0a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:66:BB:89:F9:E4:E3:C8:79:13:38:A1:F4:71:47:94:3F:24:C6:AC
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/W2a7ifnk48h5Ezih9HFHlD8kxqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.20.0/24
Signature Algorithm: sha256WithRSAEncryption
46:77:53:16:93:a0:51:d2:59:cf:89:57:cd:8d:e5:9e:e0:41:
1d:c5:88:9b:e2:dc:46:72:a7:fc:95:7b:e0:6d:5c:31:0a:37:
2c:34:4d:55:5c:ed:1b:cc:34:54:68:c4:f8:b1:42:0e:5f:87:
54:2e:00:dc:f4:76:01:4b:4b:eb:5a:9e:4f:c8:96:54:f9:91:
0a:ba:1c:7b:f0:a5:9c:97:89:5a:f2:ff:78:69:86:2e:9a:5d:
67:8d:55:5d:05:2b:cf:77:9a:cd:d8:fa:53:e3:21:0c:7e:49:
4c:cb:2f:c4:7a:ee:b4:c3:d5:c5:07:b4:0e:38:b0:7f:82:09:
56:4d:01:fe:3c:1c:7a:b1:3f:ff:d0:c4:38:b8:d6:2e:40:4f:
ea:77:87:43:91:d3:f2:9e:1b:b7:8f:0b:3d:fb:37:37:1f:a5:
45:0f:f4:5f:ac:06:b2:5e:27:95:6e:0e:d5:2a:0e:42:bc:cf:
8b:b5:e8:5a:87:d4:cf:98:4e:60:c6:95:b1:e4:86:1d:32:56:
c8:d3:35:cb:92:2e:de:c9:6e:8e:43:8d:cd:30:4c:60:13:a4:
59:98:d2:f7:93:15:06:d9:82:79:5e:75:6e:ed:a5:e2:10:80:
39:d5:d9:61:f1:f6:fb:df:4c:bd:c7:38:28:1a:cf:c3:96:e6:
4a:0f:49:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org