Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/b0iWhBLFmSkI7hINptmGxgLSkYM.roa
File: b0iWhBLFmSkI7hINptmGxgLSkYM.roa (raw, json)
Hash identifier: 4E1n+xqjvEv4BQqkn64sXeSdpuEU6zSBbcg9/Op38j4=
Subject key identifier: 6F:48:96:84:12:C5:99:29:08:EE:12:0D:A6:D9:86:C6:02:D2:91:83
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0189915225FCACBAEF77D84E45C01A0B598A
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/b0iWhBLFmSkI7hINptmGxgLSkYM.roa
Signing time: Wed 26 Jul 2023 08:30:27 +0000
ROA not before: Wed 26 Jul 2023 08:30:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137263
IP address blocks: 193.233.194.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:91:52:25:fc:ac:ba:ef:77:d8:4e:45:c0:1a:0b:59:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jul 26 08:30:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f48968412c5992908ee120da6d986c602d29183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7c:95:cb:3c:4d:0f:a9:ea:12:23:fb:5c:50:
c5:3a:a0:34:08:45:be:8c:89:66:42:58:ea:03:8b:
3a:08:b8:93:cb:63:70:f7:4d:62:25:93:70:30:99:
2f:34:5a:56:ab:87:13:68:7c:4e:00:00:9b:a7:c4:
ba:b9:29:25:34:d9:e4:f0:83:2d:a2:b0:2c:38:da:
a5:a8:1b:82:c5:71:e1:0b:1d:0f:ad:c8:fd:23:d3:
cd:c7:78:f5:9a:b5:c8:e5:f2:c6:91:19:c7:4f:21:
d5:20:7c:49:e7:8a:39:a6:e6:6d:16:95:26:0f:82:
44:a8:68:8b:5f:25:af:e4:c2:b0:1e:7b:1d:67:80:
8b:38:32:8e:60:86:82:0e:50:6e:02:ea:43:7a:f2:
ce:11:ef:78:3a:dc:90:bd:75:41:39:cf:0d:97:22:
71:f5:73:02:56:eb:86:f3:d1:d7:e2:ca:9e:5d:9b:
a9:df:0d:1a:8d:46:ea:30:c0:90:0b:9d:2e:7f:de:
98:3e:d5:9f:23:a3:24:c7:7f:87:25:6a:47:fb:6f:
48:f3:59:b7:fa:28:14:cb:c0:4d:3d:08:7c:35:c1:
56:8b:2d:e7:ed:8a:48:f0:5c:0a:5b:f9:e9:74:53:
0f:f2:46:48:4e:e1:7c:a4:b7:3b:9e:eb:09:21:8c:
eb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:48:96:84:12:C5:99:29:08:EE:12:0D:A6:D9:86:C6:02:D2:91:83
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/b0iWhBLFmSkI7hINptmGxgLSkYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.194.0/23
Signature Algorithm: sha256WithRSAEncryption
57:70:10:a6:cb:8b:76:fd:2b:ee:6a:c7:f1:41:3f:9d:76:83:
7e:25:a7:ce:31:67:f1:88:e9:8f:ca:32:1c:97:29:29:6a:a2:
19:ff:ad:9b:b8:20:0f:59:b7:f7:44:b7:7e:e5:a2:f9:09:09:
69:6b:ca:a0:10:01:6b:c2:3d:56:de:bf:a5:d3:2f:8f:a0:a2:
f4:c6:86:fa:7b:f3:de:5a:02:8f:69:e4:c1:77:f9:21:6a:de:
f0:a3:4c:d9:3e:1b:92:5b:e1:4b:cc:57:72:44:50:4b:97:1e:
f1:28:42:10:a3:67:2e:69:d5:38:25:ed:87:f3:82:63:05:d2:
9d:bf:ea:83:c8:56:88:1c:16:13:b2:02:d5:9b:82:84:75:fe:
7c:ac:7f:68:d1:90:19:61:6e:81:ef:e5:76:69:bf:3e:15:eb:
20:c9:66:9e:c3:51:11:40:f2:4b:95:f2:7f:76:a8:7a:2c:9e:
d2:21:40:7a:11:d6:9b:f8:63:6e:15:75:0d:48:07:fe:d1:0b:
b5:c9:5f:80:a8:b2:87:bc:1d:b6:35:c2:47:e2:34:93:e2:c6:
3e:de:bd:51:f8:6c:f8:77:2c:fc:dc:e6:cc:85:9e:55:5a:58:
37:7b:58:17:a9:ec:b9:4c:3c:61:81:6d:bf:63:ff:67:e9:10:
4d:cc:fe:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org