Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/lQN0e3JP3UnCbvfPetsTnYFichs.roa
File: lQN0e3JP3UnCbvfPetsTnYFichs.roa (raw, json)
Hash identifier: s32PxuODxcrl2v2uZ8YfjQ0q+WAqHCiWmctSDtMI9gQ=
Subject key identifier: 95:03:74:7B:72:4F:DD:49:C2:6E:F7:CF:7A:DB:13:9D:81:62:72:1B
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0186360DF58E52C94C6343AF496F57132FFB
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/lQN0e3JP3UnCbvfPetsTnYFichs.roa
Signing time: Thu 09 Feb 2023 12:02:09 +0000
ROA not before: Thu 09 Feb 2023 12:02:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44834
IP address blocks: 193.233.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:36:0d:f5:8e:52:c9:4c:63:43:af:49:6f:57:13:2f:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Feb 9 12:02:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9503747b724fdd49c26ef7cf7adb139d8162721b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5e:55:de:22:06:3f:b2:65:87:2f:a4:d2:14:
e2:21:0d:9c:53:f2:ab:15:60:0e:b5:f6:d7:92:9f:
8d:30:e5:d1:42:27:74:8b:9f:87:b9:91:ab:31:71:
35:5a:a5:ee:92:4b:41:8e:cf:90:91:e1:2e:53:bc:
af:4f:6d:9e:10:0c:a3:4e:38:20:5a:e9:f8:ca:e7:
b7:c4:27:da:31:4d:ca:cf:b2:2d:73:8c:e2:6c:6c:
42:fd:c9:35:df:dd:df:c1:f6:b4:bf:f5:0c:65:d4:
3e:7f:c8:86:60:f3:27:d2:7a:d4:a7:d7:b2:f5:38:
91:47:91:b0:ad:e1:13:a7:64:93:ff:6c:56:03:43:
95:d1:ef:85:84:ce:91:ef:7e:c2:4d:14:1d:96:e8:
e8:b2:e6:be:86:9c:4c:54:ec:25:44:b7:dd:b7:e0:
fa:18:2d:b8:66:20:eb:b4:cb:c9:e8:b3:d8:d6:0a:
a6:2f:04:41:45:48:c7:6c:ce:bd:b3:40:af:0c:d4:
ad:1e:85:7c:92:c8:63:48:eb:10:e9:b0:a5:de:73:
8c:34:44:d0:7a:42:dd:15:f3:b9:d2:27:b8:f6:94:
ad:f8:65:c2:8c:d3:26:31:74:1c:f7:10:9f:b7:ca:
ef:65:ad:fd:2b:db:fe:2f:89:27:12:8b:f4:9a:13:
66:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:03:74:7B:72:4F:DD:49:C2:6E:F7:CF:7A:DB:13:9D:81:62:72:1B
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/lQN0e3JP3UnCbvfPetsTnYFichs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.104.0/24
Signature Algorithm: sha256WithRSAEncryption
93:f2:09:9c:61:8d:54:3c:20:c5:2d:6f:22:0b:43:be:28:36:
ae:f3:8e:69:4a:46:b8:26:04:f1:e0:ef:00:7e:42:77:88:02:
a0:07:4f:86:a2:7a:88:bf:47:b6:f2:b1:ec:40:cf:bf:a9:76:
5b:90:e6:94:81:06:96:a3:1d:2e:ee:0d:f6:96:0f:fc:38:dd:
5f:ef:d8:14:e8:c6:2f:36:dd:09:5e:a3:a0:42:ce:55:90:18:
a3:ce:74:c8:2c:1c:cf:42:77:4c:cf:c3:ee:01:c4:2e:25:03:
30:e8:93:76:1a:b6:91:ac:80:33:7d:21:fb:cb:77:15:47:22:
d7:c8:b5:8a:7a:fa:64:a6:e1:e8:16:cc:9f:90:aa:8c:13:3e:
5e:94:d5:ab:42:95:a9:25:44:97:16:54:5c:a2:db:eb:5b:d7:
36:aa:b9:0c:88:7d:db:c7:35:8d:0f:0b:d2:95:41:09:b2:9b:
e2:89:c8:f0:a4:57:26:0d:24:50:12:3d:45:00:7d:42:26:0b:
e7:b8:17:90:04:a7:85:05:b8:7f:e0:4e:76:95:6e:ed:d3:d4:
bb:68:1b:33:db:90:db:7b:6e:45:83:ff:90:93:6b:2b:b8:f1:
3d:99:8b:07:d6:86:aa:48:f5:bc:c1:ec:c6:9c:b6:d8:05:dd:
1b:30:f9:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org