Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/qic2ZWWLBDDwV-mBaS7FmkCHmD0.roa
File: qic2ZWWLBDDwV-mBaS7FmkCHmD0.roa (raw, json)
Hash identifier: qNm++ylq0I+kX/W9FOLLlOh2wg6Cz/gsxiuJ3iKpiA8=
Subject key identifier: AA:27:36:65:65:8B:04:30:F0:57:E9:81:69:2E:C5:9A:40:87:98:3D
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018828EF09300A7FD450B5901624AE7CA02E
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/qic2ZWWLBDDwV-mBaS7FmkCHmD0.roa
Signing time: Wed 17 May 2023 08:58:54 +0000
ROA not before: Wed 17 May 2023 08:58:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34665
IP address blocks: 193.233.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Jun 2023 21:46:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:28:ef:09:30:0a:7f:d4:50:b5:90:16:24:ae:7c:a0:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: May 17 08:58:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa273665658b0430f057e981692ec59a4087983d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4b:6c:63:14:cf:4e:79:fe:23:68:9d:d1:11:
59:d4:91:88:6c:01:b4:32:72:5a:22:b2:48:02:3f:
a7:c1:d6:43:8d:a4:41:ac:9c:fe:4d:7e:30:98:85:
bc:d3:e3:bf:58:55:8b:f1:9d:69:5e:d7:73:8d:32:
c5:04:36:98:71:e9:77:2c:63:22:90:cd:ac:c4:d7:
d5:9d:fd:37:21:80:18:07:db:95:e3:5d:ca:21:65:
cc:23:90:1f:c8:a2:4e:af:4f:85:e2:05:db:34:da:
10:df:c3:bc:55:b6:d3:8a:11:7f:61:ca:58:fc:f7:
50:57:4a:c1:9e:15:1a:4e:73:ae:5e:60:75:d1:16:
39:bd:b2:01:76:5e:45:a0:5b:d4:b6:76:35:e1:54:
42:f7:96:31:7d:86:cb:ca:3e:09:07:3b:b4:62:29:
34:97:6c:c7:95:59:3a:0d:91:4f:80:28:b5:63:1b:
d7:48:c5:54:bd:14:3d:49:4b:01:c7:70:74:40:9b:
f6:0f:b2:7f:f3:d3:57:65:2f:61:6a:b9:7c:ac:65:
e2:8a:72:78:e2:31:82:a9:d7:db:87:64:42:ec:86:
54:70:7a:84:6d:9f:7f:05:b1:19:d7:d6:5a:8d:93:
35:2f:d4:3d:0e:49:4c:67:5c:d0:94:8c:33:a3:33:
51:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:27:36:65:65:8B:04:30:F0:57:E9:81:69:2E:C5:9A:40:87:98:3D
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/qic2ZWWLBDDwV-mBaS7FmkCHmD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.234.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:21:c7:55:3d:d9:c3:17:d9:fd:37:66:f7:09:6c:00:10:61:
8d:8c:58:1c:3b:82:6d:00:10:e8:39:b8:25:47:92:0d:a1:9f:
a8:81:b2:c6:66:45:c1:31:da:28:85:43:b0:42:49:5b:b0:d9:
99:d8:2b:82:32:79:39:47:9e:df:ef:43:80:da:6b:96:0b:c0:
b3:76:fb:5b:63:95:00:18:8a:26:1e:01:d3:e7:24:c0:db:06:
88:11:70:dc:4a:87:92:f6:3f:38:0a:61:09:81:8b:07:bd:15:
8e:99:2c:d5:b4:62:2b:8c:b9:3d:cc:98:ef:ae:5a:22:0d:fa:
df:93:df:42:50:e0:5d:e0:d3:6c:22:ff:ee:08:f4:bf:49:4a:
6c:2f:cc:6e:13:1e:da:1f:4e:e7:2c:31:ec:c3:50:99:f7:46:
75:44:bd:6c:4b:b5:fb:8f:88:7b:f7:0d:f9:09:5a:9a:0e:a8:
63:2f:03:d4:db:9d:40:62:24:92:1e:70:9b:80:1e:c1:dc:27:
2b:b9:a4:a7:51:8e:97:4a:e6:a1:4c:7e:aa:7d:1b:3a:9e:cc:
77:c3:48:3d:f3:d4:86:1a:33:14:cc:be:44:0c:d2:3d:2a:1e:
cd:c1:24:03:e1:83:cc:61:e7:d0:a3:cd:32:ab:9e:62:e9:e3:
80:ab:ac:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:33 2024 by rpki-client on console-ams.rpki-client.org