Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/n9i_O3jxzqxuwAvvrB-VoKHelmI.roa
File: n9i_O3jxzqxuwAvvrB-VoKHelmI.roa (raw, json)
Hash identifier: x0RUqt8NXY60HC02fc1eUF3RIk/doPUtNddMPglVEeE=
Subject key identifier: 9F:D8:BF:3B:78:F1:CE:AC:6E:C0:0B:EF:AC:1F:95:A0:A1:DE:96:62
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0186EAFBAC00FF72B5D2D150B45AAE949A00
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/n9i_O3jxzqxuwAvvrB-VoKHelmI.roa
Signing time: Thu 16 Mar 2023 15:13:27 +0000
ROA not before: Thu 16 Mar 2023 15:13:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202973
IP address blocks: 193.233.20.0/24 maxlen: 24
193.233.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Apr 2023 08:23:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:fb:ac:00:ff:72:b5:d2:d1:50:b4:5a:ae:94:9a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Mar 16 15:13:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fd8bf3b78f1ceac6ec00befac1f95a0a1de9662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:40:2d:8b:50:4c:4a:4b:80:47:0f:a7:25:40:
5b:77:51:01:c5:0e:49:1f:9e:e7:ae:88:81:52:bc:
70:c3:9a:23:ac:fe:7c:ce:e0:ef:de:b6:92:0d:dd:
23:91:ac:8b:70:d7:62:fe:9b:22:d2:bd:5e:3b:a0:
d1:c4:2d:7f:d3:ae:c9:fb:27:f4:f7:02:c9:9e:83:
80:78:a8:e8:d3:26:b8:b7:79:65:a6:ce:da:b4:fa:
e3:48:73:70:0d:55:fc:be:15:30:f5:ac:22:9a:c3:
9b:67:c4:02:a4:c4:f9:36:ba:c6:2f:6d:ee:10:0f:
78:58:64:e3:49:85:1e:10:17:bc:3a:96:06:1f:14:
3b:62:61:04:f0:61:93:58:2a:7c:dd:8b:d1:73:58:
b5:75:1f:f0:ed:82:a2:ca:30:24:36:63:1a:93:63:
0e:c3:9a:e7:6c:03:49:ba:a4:52:2a:63:0d:ba:7b:
b9:e7:82:5b:e6:50:03:f2:d1:a8:8c:0d:1b:60:70:
08:db:c6:47:a8:4b:95:5a:9b:b6:a8:b7:b7:47:7e:
b8:6d:9c:b0:af:42:30:f2:02:76:53:77:4f:93:c7:
e8:11:68:f5:d6:e3:84:31:b4:3b:9f:52:cc:4e:91:
0f:fb:62:5c:00:73:ef:14:b3:f6:52:e6:a6:af:2d:
19:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:D8:BF:3B:78:F1:CE:AC:6E:C0:0B:EF:AC:1F:95:A0:A1:DE:96:62
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/n9i_O3jxzqxuwAvvrB-VoKHelmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.20.0/24
193.233.134.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:76:06:36:49:63:f5:25:ed:bc:ae:df:13:8a:85:fd:cb:eb:
1d:f6:07:7f:20:c9:6a:7b:22:4d:ea:8f:19:61:a0:20:0b:e6:
0a:0f:62:43:e9:fc:9e:94:d9:75:85:f2:fc:43:6b:ed:b3:69:
60:0f:4c:47:aa:18:ca:7a:d3:c4:2d:10:e1:06:1e:cf:fb:22:
c1:84:a4:0b:33:ef:2e:bb:5c:6c:d4:d0:d3:4b:d9:64:5e:b9:
af:9f:83:03:78:67:2d:24:16:ad:15:d3:da:f7:97:22:5b:85:
21:2f:4d:bf:ca:39:99:b7:0e:28:dc:ac:8c:bf:c3:40:f5:bd:
a7:bb:db:2c:e1:f0:fc:80:10:c2:9d:0c:f7:14:28:23:c8:9d:
bf:cd:47:29:5b:44:0a:a0:ab:17:e7:7a:84:f9:e8:05:60:d2:
27:7e:cf:31:79:c2:aa:96:16:e6:25:ad:d9:83:eb:b7:49:98:
a3:0a:94:62:18:98:a1:e8:a9:79:0c:44:51:4c:80:9a:2a:48:
1d:70:b6:76:bb:8d:a0:ae:57:35:37:35:09:e6:57:40:21:9a:
88:ed:ac:e0:5b:72:95:18:ef:e1:58:41:22:45:76:64:e4:c5:
87:30:ee:0b:bb:2f:20:47:23:fc:d3:09:ce:de:ee:50:2e:34:
89:e3:e0:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:33 2024 by rpki-client on console-ams.rpki-client.org