Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/hlmXEbvD2geVHgpAmAhtU0RwChE.roa
File: hlmXEbvD2geVHgpAmAhtU0RwChE.roa (raw, json)
Hash identifier: Kne19D9IG22Y9GqLqFzsc/WYOYk4cjeWStb83y0v5B8=
Subject key identifier: 86:59:97:11:BB:C3:DA:07:95:1E:0A:40:98:08:6D:53:44:70:0A:11
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018703FA74C7BDE181B8D32CBE59C489526B
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/hlmXEbvD2geVHgpAmAhtU0RwChE.roa
Signing time: Tue 21 Mar 2023 11:42:38 +0000
ROA not before: Tue 21 Mar 2023 11:42:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200195
IP address blocks: 193.233.135.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:03:fa:74:c7:bd:e1:81:b8:d3:2c:be:59:c4:89:52:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Mar 21 11:42:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86599711bbc3da07951e0a4098086d5344700a11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fc:f0:19:47:6f:78:5f:de:7d:a2:1f:60:a7:
1b:17:6d:2e:4f:f0:85:84:dc:88:0c:95:51:a0:2d:
6f:06:db:1d:75:e0:31:1d:8e:48:d0:e4:53:18:94:
8e:be:96:f9:6b:cf:33:2b:32:21:8d:a8:39:32:84:
89:ff:9e:0c:18:a0:a5:3d:08:f8:a4:da:96:92:3d:
32:d4:26:e9:af:1c:8b:c0:6a:21:39:42:93:20:76:
f2:ef:16:e5:3d:e8:70:8f:69:c7:82:cf:22:09:46:
29:a2:3e:92:e6:15:96:14:ad:c0:f4:c1:d5:6a:80:
d1:b7:f6:e1:cc:b4:dd:3b:3e:09:05:7e:7c:dd:f9:
49:96:66:16:f3:29:f9:23:aa:5e:c4:62:a1:c6:8d:
20:a7:a2:31:03:35:42:e7:bf:96:19:20:80:a3:05:
c6:d5:bc:c4:01:8b:d3:8e:cc:f3:9d:eb:e3:44:d1:
c0:48:e3:09:0f:39:11:20:0b:b0:fc:ed:ad:d8:de:
e6:fa:da:6a:6c:fb:42:4a:3f:48:4d:78:6c:c4:50:
6a:c5:6c:3e:51:84:8e:50:ca:c0:6d:ff:d0:63:07:
68:eb:60:24:51:1a:f5:16:dc:0e:dc:98:43:c0:fe:
af:15:ec:34:3c:16:5b:b7:3b:ad:2d:28:d9:9d:a5:
ea:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:59:97:11:BB:C3:DA:07:95:1E:0A:40:98:08:6D:53:44:70:0A:11
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/hlmXEbvD2geVHgpAmAhtU0RwChE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.135.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:33:a0:25:35:86:ec:73:3c:3c:cb:d7:ce:4d:9e:78:37:fe:
e1:3e:a0:5b:cd:a4:d7:c4:19:04:5c:03:eb:3f:46:5a:2f:85:
89:80:2a:b7:11:92:5b:bd:5b:21:b2:89:b1:85:d8:66:9f:60:
74:e6:b7:b7:c0:70:33:de:ac:79:00:7a:ad:8a:46:fe:68:c3:
c9:83:82:79:89:e3:2f:58:5f:ca:48:3b:26:81:cd:7e:66:6e:
78:e9:1d:d1:bc:59:45:12:fe:62:a9:0c:ac:ef:57:29:b6:b6:
fe:65:13:b4:14:9a:54:83:52:31:4c:1e:cc:50:37:2f:8a:0b:
85:2f:01:87:e5:47:dc:de:76:8f:a0:43:d5:fa:bd:68:f9:08:
4a:2c:c6:83:de:ab:51:33:55:7f:d6:25:ae:3e:f7:41:76:22:
d5:c7:cf:4d:8a:95:21:b9:b6:e5:04:08:29:7a:c0:e8:44:5e:
7a:4d:99:af:20:53:b6:5e:6b:45:a4:e1:5f:0b:a8:fe:06:21:
16:0c:bd:de:41:ad:19:aa:7e:ac:0b:71:03:e4:8f:73:66:7a:
db:c8:15:16:19:db:bf:5d:1a:21:ee:8e:d1:ed:dc:24:2f:ef:
89:b7:a8:3f:9d:18:d4:be:a0:a1:0b:aa:9b:c9:ad:ca:a9:45:
55:a7:3f:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcD+nTHveGBuNMsvlnEiVJrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjMwMzIxMTE0MjM4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjU5OTcxMWJiYzNkYTA3OTUxZTBhNDA5ODA4NmQ1MzQ0NzAwYTExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/zwGUdveF/efaIfYKcbF20uT/CF
hNyIDJVRoC1vBtsddeAxHY5I0ORTGJSOvpb5a88zKzIhjag5MoSJ/54MGKClPQj4
pNqWkj0y1CbprxyLwGohOUKTIHby7xblPehwj2nHgs8iCUYpoj6S5hWWFK3A9MHV
aoDRt/bhzLTdOz4JBX583flJlmYW8yn5I6pexGKhxo0gp6IxAzVC57+WGSCAowXG
1bzEAYvTjszznevjRNHASOMJDzkRIAuw/O2t2N7m+tpqbPtCSj9ITXhsxFBqxWw+
UYSOUMrAbf/QYwdo62AkURr1FtwO3JhDwP6vFew0PBZbtzutLSjZnaXqSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIZZlxG7w9oHlR4KQJgIbVNEcAoRMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvaGxtWEVidkQyZ2VWSGdwQW1BaHRVMFJ3Q2hFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwemHMA0G
CSqGSIb3DQEBCwUAA4IBAQBuM6AlNYbsczw8y9fOTZ54N/7hPqBbzaTXxBkEXAPr
P0ZaL4WJgCq3EZJbvVshsomxhdhmn2B05re3wHAz3qx5AHqtikb+aMPJg4J5ieMv
WF/KSDsmgc1+Zm546R3RvFlFEv5iqQys71cptrb+ZRO0FJpUg1IxTB7MUDcviguF
LwGH5Ufc3naPoEPV+r1o+QhKLMaD3qtRM1V/1iWuPvdBdiLVx89NipUhubblBAgp
esDoRF56TZmvIFO2XmtFpOFfC6j+BiEWDL3eQa0Zqn6sC3ED5I9zZnrbyBUWGdu/
XRoh7o7R7dwkL++Jt6g/nRjUvqChC6qbya3KqUVVpz9z
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:21 2024 by rpki-client on console-ams.rpki-client.org