Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/o7M-NaKyP7rAbZyMZtRUUrHsCEU.roa
File: o7M-NaKyP7rAbZyMZtRUUrHsCEU.roa (raw, json)
Hash identifier: UG1ttdrLzJ6iihUOfUhHk1iV/mklDWBavOqgnppCDd0=
Subject key identifier: A3:B3:3E:35:A2:B2:3F:BA:C0:6D:9C:8C:66:D4:54:52:B1:EC:08:45
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018752B9B46D2774C971388A813C1D012C01
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/o7M-NaKyP7rAbZyMZtRUUrHsCEU.roa
Signing time: Wed 05 Apr 2023 18:41:54 +0000
ROA not before: Wed 05 Apr 2023 18:41:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56690
IP address blocks: 193.233.150.0/24 maxlen: 24
193.233.166.0/23 maxlen: 23
193.233.168.0/23 maxlen: 23
193.233.73.0/24 maxlen: 24
193.233.92.0/22 maxlen: 22
193.233.12.0/23 maxlen: 23
193.233.24.0/23 maxlen: 23
193.233.240.0/22 maxlen: 22
193.233.26.0/23 maxlen: 23
193.233.28.0/23 maxlen: 23
193.233.254.0/23 maxlen: 23
193.233.54.0/23 maxlen: 23
193.233.176.0/20 maxlen: 20
193.233.212.0/22 maxlen: 22
193.233.224.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:52:b9:b4:6d:27:74:c9:71:38:8a:81:3c:1d:01:2c:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Apr 5 18:41:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3b33e35a2b23fbac06d9c8c66d45452b1ec0845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:15:0e:1f:ac:ee:fa:5c:8d:5b:a8:86:e0:44:
05:91:d5:d9:1f:f6:3a:81:e5:d6:4e:b0:7d:08:0d:
b3:00:00:19:8b:0c:32:74:5a:db:1c:99:db:8e:ce:
26:6c:3f:ba:dc:a5:79:80:a3:25:63:15:76:cd:d1:
c2:63:15:22:83:3b:ae:77:2b:74:79:9a:a3:79:b7:
0a:2e:b4:4d:a0:5b:d3:71:a4:b6:6f:17:fd:7a:6f:
67:c1:96:82:a6:22:ba:fc:15:4f:45:ad:95:f9:31:
f2:b1:7a:b0:f3:e9:41:8f:43:45:49:c0:88:7a:84:
52:b5:b8:ee:da:fe:67:34:61:4c:f1:35:3d:c6:e0:
fd:17:28:62:68:be:94:65:be:50:4c:b0:fc:72:46:
3c:83:93:b7:65:fb:64:c7:af:7e:f3:06:4f:89:92:
39:60:ee:dd:2d:81:19:74:0e:55:d6:5e:53:28:e1:
b2:ab:a3:90:9e:f6:ba:69:fa:63:57:13:a0:97:a9:
a8:41:69:83:d8:6b:5f:cf:6c:45:c2:38:96:c1:cb:
2a:ea:2c:1f:3f:51:ae:3d:14:90:74:59:5b:e0:f0:
6b:ec:57:8e:92:2d:21:74:39:3d:78:68:38:20:93:
c8:04:22:61:e0:f1:93:92:17:71:6c:0c:49:7c:c4:
13:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B3:3E:35:A2:B2:3F:BA:C0:6D:9C:8C:66:D4:54:52:B1:EC:08:45
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/o7M-NaKyP7rAbZyMZtRUUrHsCEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.12.0/23
193.233.24.0-193.233.29.255
193.233.54.0/23
193.233.73.0/24
193.233.92.0/22
193.233.150.0/24
193.233.166.0-193.233.169.255
193.233.176.0/20
193.233.212.0/22
193.233.224.0/22
193.233.240.0/22
193.233.254.0/23
Signature Algorithm: sha256WithRSAEncryption
98:bb:bc:0e:a3:98:6f:1e:56:49:55:06:f9:06:98:c8:aa:d7:
05:5f:90:4b:ec:9f:13:20:fd:b1:b6:2b:22:ea:91:9b:b6:1f:
d9:9a:5d:1f:6a:53:62:fa:a2:99:1c:97:e4:df:e0:90:c7:ef:
36:55:27:0a:08:d3:70:20:00:5d:4a:3b:1b:40:8a:c6:22:5d:
74:3a:5d:f9:9f:6b:b7:b9:b1:77:86:f2:81:43:bf:79:9b:46:
53:72:ea:76:9d:5e:02:2b:32:ba:75:62:d5:f2:7f:d1:a6:b9:
7e:33:05:4e:bb:1b:58:98:ab:e9:af:e9:93:e1:9b:f3:a6:59:
f6:dd:5a:ad:53:11:b0:b2:0f:3b:25:b5:8e:6b:46:00:7e:ee:
0c:d0:38:b6:7d:24:7a:f5:7e:d0:05:9d:a4:92:12:f3:ea:41:
a3:11:bb:cc:9f:58:a6:9d:54:b0:39:ba:3f:6c:29:ce:5e:a9:
1a:d2:4c:8f:10:4c:65:25:76:a3:54:45:13:e4:6a:6e:5c:5d:
3e:49:14:73:f7:e5:ed:9b:b9:65:f9:e6:a9:33:1d:74:33:3a:
86:8c:48:90:04:87:5f:1d:a3:de:75:97:90:61:c0:ea:fb:ab:
ad:e5:ce:4d:db:5b:ca:d6:25:7d:df:b3:b8:56:05:7e:2b:6a:
ea:0b:fb:ce
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgISAYdSubRtJ3TJcTiKgTwdASwBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjMwNDA1MTg0MTU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhM2IzM2UzNWEyYjIzZmJhYzA2ZDljOGM2NmQ0NTQ1MmIxZWMwODQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhUOH6zu+lyNW6iG4EQFkdXZH/Y6
geXWTrB9CA2zAAAZiwwydFrbHJnbjs4mbD+63KV5gKMlYxV2zdHCYxUigzuudyt0
eZqjebcKLrRNoFvTcaS2bxf9em9nwZaCpiK6/BVPRa2V+THysXqw8+lBj0NFScCI
eoRStbju2v5nNGFM8TU9xuD9FyhiaL6UZb5QTLD8ckY8g5O3Zftkx69+8wZPiZI5
YO7dLYEZdA5V1l5TKOGyq6OQnva6afpjVxOgl6moQWmD2Gtfz2xFwjiWwcsq6iwf
P1GuPRSQdFlb4PBr7FeOki0hdDk9eGg4IJPIBCJh4PGTkhdxbAxJfMQThwIDAQAB
o4ICWzCCAlcwHQYDVR0OBBYEFKOzPjWisj+6wG2cjGbUVFKx7AhFMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvbzdNLU5hS3lQN3JBYlp5TVp0UlVVckhzQ0VVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHEGCCsGAQUFBwEHAQH/BGIwYDBeBAIAATBYAwQBwekMMAwD
BAPB6RgDBAHB6RwDBAHB6TYDBADB6UkDBALB6VwDBADB6ZYwDAMEAcHppgMEAcHp
qAMEBMHpsAMEAsHp1AMEAsHp4AMEAsHp8AMEAcHp/jANBgkqhkiG9w0BAQsFAAOC
AQEAmLu8DqOYbx5WSVUG+QaYyKrXBV+QS+yfEyD9sbYrIuqRm7Yf2ZpdH2pTYvqi
mRyX5N/gkMfvNlUnCgjTcCAAXUo7G0CKxiJddDpd+Z9rt7mxd4bygUO/eZtGU3Lq
dp1eAisyunVi1fJ/0aa5fjMFTrsbWJir6a/pk+Gb86ZZ9t1arVMRsLIPOyW1jmtG
AH7uDNA4tn0kevV+0AWdpJIS8+pBoxG7zJ9Ypp1UsDm6P2wpzl6pGtJMjxBMZSV2
o1RFE+RqblxdPkkUc/fl7Zu5ZfnmqTMddDM6hoxIkASHXx2j3nWXkGHA6vurreXO
TdtbytYlfd+zuFYFfitq6gv7zg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-ams.rpki-client.org