Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/m5gS4IQdCMfg5BFmksQW_jZ4-E8.roa
File: m5gS4IQdCMfg5BFmksQW_jZ4-E8.roa (raw, json)
Hash identifier: 6qmI28yAKB9RslZHam7U8bF9r7Tu2EftBDxOCNw98jk=
Subject key identifier: 9B:98:12:E0:84:1D:08:C7:E0:E4:11:66:92:C4:16:FE:36:78:F8:4F
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01856F26F01471D0C2B67281A2EAFC238F1F
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/m5gS4IQdCMfg5BFmksQW_jZ4-E8.roa
Signing time: Sun 01 Jan 2023 21:05:00 +0000
ROA not before: Sun 01 Jan 2023 21:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205628
IP address blocks: 193.233.148.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:f0:14:71:d0:c2:b6:72:81:a2:ea:fc:23:8f:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 21:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b9812e0841d08c7e0e4116692c416fe3678f84f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:28:72:d8:76:29:c1:b6:d2:2f:34:0e:ac:98:
a6:92:3d:e8:dd:96:d6:b4:4a:8f:f4:e5:1a:ac:d5:
10:0f:13:4b:25:79:ae:b8:4f:c9:48:4f:44:1a:66:
dd:f7:cc:31:dd:92:19:f0:1f:76:a6:25:7d:4d:ef:
a3:e7:d7:22:ef:46:9c:b7:1f:20:3c:69:49:50:c3:
bc:e0:ef:d0:23:16:08:78:04:58:8c:72:e3:97:82:
15:ef:c5:f8:29:99:97:a0:8a:67:b8:35:af:c8:fa:
ff:30:8d:11:9b:11:3e:d6:74:b8:d4:76:0d:46:07:
ef:46:43:f4:07:82:8b:12:36:1e:4c:72:36:f8:49:
f4:ad:f3:ab:ed:e4:8e:a5:d9:47:97:40:59:95:29:
06:a3:25:45:9b:13:24:35:98:c8:5a:29:e3:f2:f7:
be:05:88:ef:a9:23:91:0e:4b:44:99:ea:bd:39:da:
38:f8:83:4e:b1:66:1d:50:e6:0d:da:f8:35:88:79:
39:8f:71:b9:d2:80:54:16:ae:88:b1:4b:c2:e2:9c:
8a:2b:b2:f8:3f:0a:9c:db:39:55:ee:13:dc:d4:6a:
e4:c6:82:6e:b3:b2:0f:6a:69:dd:03:e0:52:7e:9a:
81:a5:6c:37:95:77:3b:df:56:9c:88:75:39:60:d4:
a3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:98:12:E0:84:1D:08:C7:E0:E4:11:66:92:C4:16:FE:36:78:F8:4F
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/m5gS4IQdCMfg5BFmksQW_jZ4-E8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.148.0/24
Signature Algorithm: sha256WithRSAEncryption
64:61:77:dc:ad:0b:47:9e:57:e2:b7:2f:fb:38:ee:ee:a9:f6:
3a:16:1d:35:e8:a7:4f:fb:ee:c2:46:2a:13:93:93:17:3c:b6:
0f:74:c7:70:ca:3e:ad:ea:19:85:d5:46:d2:45:94:f2:a3:80:
a7:a7:10:df:30:c8:5d:6c:56:a5:fe:d0:44:63:58:56:3c:75:
80:77:5f:c1:57:42:22:4f:c9:c7:37:30:ac:b6:1f:fb:5a:08:
08:79:fc:11:21:08:f2:80:2e:2d:9d:64:79:f0:cf:da:40:ff:
28:93:97:51:4d:ad:80:72:ff:cc:5f:26:57:cb:d8:f9:33:72:
b2:74:71:b7:bd:29:b9:fd:2f:6b:4d:e8:a6:29:33:2e:c7:83:
39:15:7c:94:21:7a:3d:4f:e4:04:16:16:e2:0f:7d:f1:fd:9b:
05:20:3a:a6:01:a7:ba:e1:4c:3b:9b:f2:b7:ec:61:f5:b4:ee:
9b:de:d2:8d:d7:b9:a2:d1:1a:4b:ae:af:d6:50:4e:ed:e8:6b:
c7:e3:a5:0b:41:b9:89:5e:ce:b2:1c:58:fc:ec:66:4c:42:fb:
52:dd:3f:2f:32:a2:03:f7:c1:1a:e9:1d:b3:de:9f:41:ff:62:
6a:56:02:3d:c5:92:18:6f:8e:d6:e2:28:cd:d9:14:c8:c4:fb:
83:8b:37:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvJvAUcdDCtnKBour8I48fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjMwMTAxMjEwNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Yjk4MTJlMDg0MWQwOGM3ZTBlNDExNjY5MmM0MTZmZTM2NzhmODRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArChy2HYpwbbSLzQOrJimkj3o3ZbW
tEqP9OUarNUQDxNLJXmuuE/JSE9EGmbd98wx3ZIZ8B92piV9Te+j59ci70actx8g
PGlJUMO84O/QIxYIeARYjHLjl4IV78X4KZmXoIpnuDWvyPr/MI0RmxE+1nS41HYN
RgfvRkP0B4KLEjYeTHI2+En0rfOr7eSOpdlHl0BZlSkGoyVFmxMkNZjIWinj8ve+
BYjvqSORDktEmeq9Odo4+INOsWYdUOYN2vg1iHk5j3G50oBUFq6IsUvC4pyKK7L4
Pwqc2zlV7hPc1GrkxoJus7IPamndA+BSfpqBpWw3lXc731aciHU5YNSjKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJuYEuCEHQjH4OQRZpLEFv42ePhPMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvbTVnUzRJUWRDTWZnNUJGbWtzUVdfalo0LUU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwemUMA0G
CSqGSIb3DQEBCwUAA4IBAQBkYXfcrQtHnlfity/7OO7uqfY6Fh016KdP++7CRioT
k5MXPLYPdMdwyj6t6hmF1UbSRZTyo4CnpxDfMMhdbFal/tBEY1hWPHWAd1/BV0Ii
T8nHNzCsth/7WggIefwRIQjygC4tnWR58M/aQP8ok5dRTa2Acv/MXyZXy9j5M3Ky
dHG3vSm5/S9rTeimKTMux4M5FXyUIXo9T+QEFhbiD33x/ZsFIDqmAae64Uw7m/K3
7GH1tO6b3tKN17mi0RpLrq/WUE7t6GvH46ULQbmJXs6yHFj87GZMQvtS3T8vMqID
98Ea6R2z3p9B/2JqVgI9xZIYb47W4ijN2RTIxPuDizdM
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:05 2024 by rpki-client on console-fra.rpki-client.org