Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/o2jpc_dR9hGFz45PB-oZZQwuoso.roa
File: o2jpc_dR9hGFz45PB-oZZQwuoso.roa (raw, json)
Hash identifier: JkHG4ZN9ibyHtJyBfCK6zw8LXmF+pBgME3xZGUJk2q4=
Subject key identifier: A3:68:E9:73:F7:51:F6:11:85:CF:8E:4F:07:EA:19:65:0C:2E:A2:CA
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01856F26EC9D67E4129B0378FAC2875F9407
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/o2jpc_dR9hGFz45PB-oZZQwuoso.roa
Signing time: Sun 01 Jan 2023 21:05:00 +0000
ROA not before: Sun 01 Jan 2023 21:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203163
IP address blocks: 193.233.155.0/24 maxlen: 24
193.233.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 08:23:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:ec:9d:67:e4:12:9b:03:78:fa:c2:87:5f:94:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 21:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a368e973f751f61185cf8e4f07ea19650c2ea2ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:24:89:c1:08:12:d7:a6:86:75:82:03:e2:09:
be:18:6f:c1:7d:79:e7:8f:c7:81:7a:f6:8e:e3:49:
35:b6:c2:35:c2:94:e7:30:fe:88:63:4d:5c:3a:d3:
af:21:29:9c:12:e9:1b:7e:61:89:c4:b7:f7:a4:98:
b3:7b:c6:6e:e5:ae:0c:21:e0:77:bb:89:46:08:98:
4d:6b:62:ab:66:a5:85:f6:19:d9:d4:65:7f:f6:cb:
0d:04:ac:6e:2c:65:63:c1:8f:13:73:91:e9:d9:a8:
c1:09:0b:99:26:55:cc:6a:5d:1e:4a:f5:86:86:b0:
87:80:68:ef:f9:30:a5:0f:e9:54:6c:db:30:09:f3:
31:06:e1:f5:bf:21:5c:f3:c1:77:f3:ec:1b:27:7b:
e0:7f:93:a5:44:0d:18:cc:5e:da:70:81:e6:b8:24:
00:98:1b:f7:0e:7a:58:c8:be:da:13:59:80:f4:2c:
84:1d:9f:29:a2:c9:66:06:16:14:3f:af:15:b0:08:
ef:49:e8:20:ce:df:01:2f:22:5c:86:cf:d8:19:e2:
ac:a8:d8:52:71:b3:b2:2c:2b:f9:c5:1a:69:9b:9d:
92:c5:43:ba:a1:a4:c6:c6:47:34:db:e6:12:29:a7:
d1:92:42:91:54:db:9f:63:59:50:2e:0b:95:02:26:
f5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:68:E9:73:F7:51:F6:11:85:CF:8E:4F:07:EA:19:65:0C:2E:A2:CA
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/o2jpc_dR9hGFz45PB-oZZQwuoso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.155.0-193.233.156.255
Signature Algorithm: sha256WithRSAEncryption
27:76:c8:68:53:47:0f:27:56:19:a8:ec:08:1a:47:e6:e8:29:
95:b6:4e:aa:1d:1a:b6:ac:97:95:b2:3a:4d:92:18:35:88:ed:
69:26:32:33:43:21:a1:a6:c7:28:48:5b:58:98:63:a0:db:b8:
6f:2a:8e:8a:64:84:a3:16:3c:80:07:06:72:83:c7:d6:3c:e8:
41:fd:aa:b9:48:dc:52:f3:64:b8:29:e6:e5:10:26:e0:0e:21:
a3:df:93:a0:1b:06:45:b0:a8:b0:78:a3:ea:06:38:dc:ea:3d:
ce:fb:fa:cc:7f:e3:ca:a4:5f:0d:5e:dd:d5:64:c7:b1:62:f7:
61:7d:86:86:de:26:c1:65:c7:38:7c:29:8e:32:e3:f1:c8:30:
c3:46:e5:3e:3c:2c:a6:81:61:7d:47:b5:cc:f8:cf:9d:f6:c0:
bb:f6:17:13:bd:8a:c9:d6:fb:41:45:57:2d:1e:f3:7b:96:6c:
3c:fc:ff:b1:26:8d:17:46:eb:b6:29:4f:37:0c:aa:29:ff:9f:
03:bf:6f:df:3f:52:eb:10:dd:a5:b0:67:0b:60:b7:ca:d3:87:
f4:da:9e:03:fc:1c:ed:58:56:02:10:de:4a:e9:0e:d9:7f:ca:
0b:a9:fd:e0:71:bc:a6:ba:8e:24:e5:23:42:e1:ee:46:0d:1c:
d2:6c:11:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org