Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/mykT_5wj0Y6FoGVFJ4Tct02mP1w.roa
File: mykT_5wj0Y6FoGVFJ4Tct02mP1w.roa (raw, json)
Hash identifier: jH8QWaxzBdbGT4WFL2CVTjqjoLDStNZpmL2cvbSjdkA=
Subject key identifier: 9B:29:13:FF:9C:23:D1:8E:85:A0:65:45:27:84:DC:B7:4D:A6:3F:5C
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018ACC15866E1434E986A45DA1F2A7C6B183
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/mykT_5wj0Y6FoGVFJ4Tct02mP1w.roa
Signing time: Mon 25 Sep 2023 11:24:37 +0000
ROA not before: Mon 25 Sep 2023 11:24:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216319
IP address blocks: 193.233.132.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cc:15:86:6e:14:34:e9:86:a4:5d:a1:f2:a7:c6:b1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Sep 25 11:24:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b2913ff9c23d18e85a065452784dcb74da63f5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:71:e9:91:e9:c4:85:5d:7c:a0:bd:8d:05:28:
7d:aa:ee:c1:79:65:e1:49:fd:b4:98:f2:ee:fe:1a:
d4:4b:fb:b6:80:1f:96:e8:bc:7a:98:17:02:af:b1:
42:d8:4a:96:2e:06:3f:f0:d5:44:c7:c9:56:a4:40:
c6:c9:b0:20:ed:6e:68:34:1b:82:e1:a6:0e:2b:a8:
62:26:ef:15:f4:2a:95:12:db:f0:ea:66:f5:97:83:
bd:2a:af:4b:6f:66:c9:2c:ff:8a:29:ce:5c:87:fb:
07:2c:54:c2:1b:0b:70:6e:f8:d2:c8:8a:7f:8d:9b:
e8:ed:55:d3:01:7c:e2:f4:f1:4e:c4:23:2d:a4:9e:
97:6f:6a:3b:3f:6d:72:31:78:0e:3d:ee:30:d8:bc:
66:94:e1:52:c1:e4:59:bb:66:c4:7f:a6:6c:1a:fa:
dc:78:04:52:71:45:a7:5c:9d:01:33:72:5c:15:33:
cd:66:6d:87:5d:15:08:4b:c0:bb:4c:54:82:32:72:
d6:7e:ab:3c:a8:cd:49:e8:92:4f:99:2f:f6:4d:07:
55:f8:8b:ac:8a:40:99:89:91:a1:03:00:23:d4:8d:
d2:3b:9f:a7:86:3e:aa:f5:8c:8e:78:61:26:71:e7:
8c:7c:a7:c3:69:e4:8d:58:92:12:04:f9:1f:0b:e1:
f7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:29:13:FF:9C:23:D1:8E:85:A0:65:45:27:84:DC:B7:4D:A6:3F:5C
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/mykT_5wj0Y6FoGVFJ4Tct02mP1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.132.0/24
Signature Algorithm: sha256WithRSAEncryption
98:ef:e7:aa:02:dd:86:1c:15:26:b0:f6:07:7e:f1:57:99:43:
46:64:ae:fe:f7:1c:70:c1:4e:a2:89:80:7d:5e:07:1b:11:cc:
b5:0f:dc:21:fa:7e:0b:ba:bb:79:91:da:63:86:01:55:2d:22:
fc:24:f7:ae:aa:57:21:53:bc:10:36:47:ea:82:c5:d9:b5:a7:
86:f5:65:c7:9b:1e:52:62:11:40:ef:8b:d4:71:e0:44:f3:41:
90:ee:ed:9d:d2:31:81:ee:4d:91:78:2c:e0:37:56:66:f5:07:
21:09:1f:a2:35:e5:38:ed:cb:57:57:ef:a5:5b:ca:d4:0e:48:
ef:76:7f:9b:8e:23:59:1c:83:9c:f0:da:d9:d9:82:d8:29:87:
42:a5:3c:a4:27:70:43:6f:4c:bd:18:d6:8d:b5:88:9c:7f:b5:
bf:11:3c:75:95:01:23:21:89:4c:c7:6b:52:3e:67:3f:0e:a5:
71:50:0d:dc:0f:31:85:ba:89:c9:ea:17:ef:56:9e:bb:b0:fb:
46:3b:8e:a6:fb:bd:32:b4:d3:db:75:14:7d:01:ac:60:e1:0c:
10:81:ff:17:b5:f0:5d:1c:65:55:fd:5b:0b:23:08:95:e0:fd:
d0:fd:74:85:75:8d:78:d1:c9:b2:59:a2:a7:79:2d:e5:ab:e8:
d2:c9:23:f5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrMFYZuFDTphqRdofKnxrGDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjMwOTI1MTEyNDM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjI5MTNmZjljMjNkMThlODVhMDY1NDUyNzg0ZGNiNzRkYTYzZjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHHpkenEhV18oL2NBSh9qu7BeWXh
Sf20mPLu/hrUS/u2gB+W6Lx6mBcCr7FC2EqWLgY/8NVEx8lWpEDGybAg7W5oNBuC
4aYOK6hiJu8V9CqVEtvw6mb1l4O9Kq9Lb2bJLP+KKc5ch/sHLFTCGwtwbvjSyIp/
jZvo7VXTAXzi9PFOxCMtpJ6Xb2o7P21yMXgOPe4w2LxmlOFSweRZu2bEf6ZsGvrc
eARScUWnXJ0BM3JcFTPNZm2HXRUIS8C7TFSCMnLWfqs8qM1J6JJPmS/2TQdV+Ius
ikCZiZGhAwAj1I3SO5+nhj6q9YyOeGEmceeMfKfDaeSNWJISBPkfC+H3ZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJspE/+cI9GOhaBlRSeE3LdNpj9cMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvbXlrVF81d2owWTZGb0dWRko0VGN0MDJtUDF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwemEMA0G
CSqGSIb3DQEBCwUAA4IBAQCY7+eqAt2GHBUmsPYHfvFXmUNGZK7+9xxwwU6iiYB9
XgcbEcy1D9wh+n4Lurt5kdpjhgFVLSL8JPeuqlchU7wQNkfqgsXZtaeG9WXHmx5S
YhFA74vUceBE80GQ7u2d0jGB7k2ReCzgN1Zm9QchCR+iNeU47ctXV++lW8rUDkjv
dn+bjiNZHIOc8NrZ2YLYKYdCpTykJ3BDb0y9GNaNtYicf7W/ETx1lQEjIYlMx2tS
Pmc/DqVxUA3cDzGFuonJ6hfvVp67sPtGO46m+70ytNPbdRR9Aaxg4QwQgf8XtfBd
HGVV/VsLIwiV4P3Q/XSFdY140cmyWaKneS3lq+jSySP1
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:05 2024 by rpki-client on console-fra.rpki-client.org