Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/sv4LSTuOi8lCN5cWavHUgeX_LZA.roa
File: sv4LSTuOi8lCN5cWavHUgeX_LZA.roa (raw, json)
Hash identifier: RWU/LrklTOOwBqiq0/TGHKldpwtzmWBzsV/TEEglPjk=
Subject key identifier: B2:FE:0B:49:3B:8E:8B:C9:42:37:97:16:6A:F1:D4:81:E5:FF:2D:90
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0186B859398EF4280318BCEF2E5AB4254DFF
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/sv4LSTuOi8lCN5cWavHUgeX_LZA.roa
Signing time: Mon 06 Mar 2023 19:15:00 +0000
ROA not before: Mon 06 Mar 2023 19:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56690
IP address blocks: 193.233.150.0/24 maxlen: 24
193.233.164.0/24 maxlen: 24
193.233.166.0/23 maxlen: 23
193.233.168.0/23 maxlen: 23
193.233.73.0/24 maxlen: 24
193.233.92.0/24 maxlen: 24
193.233.93.0/24 maxlen: 24
193.233.94.0/24 maxlen: 24
193.233.95.0/24 maxlen: 24
193.233.12.0/23 maxlen: 23
193.233.240.0/23 maxlen: 23
193.233.24.0/23 maxlen: 23
193.233.242.0/24 maxlen: 24
193.233.243.0/24 maxlen: 24
193.233.26.0/23 maxlen: 23
193.233.28.0/23 maxlen: 23
193.233.254.0/23 maxlen: 23
193.233.54.0/23 maxlen: 23
193.233.176.0/20 maxlen: 20
193.233.212.0/22 maxlen: 22
193.233.224.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b8:59:39:8e:f4:28:03:18:bc:ef:2e:5a:b4:25:4d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Mar 6 19:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2fe0b493b8e8bc9423797166af1d481e5ff2d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:07:6a:3d:0c:a3:b0:39:e0:bd:45:40:f3:ea:
92:62:73:a9:c6:72:1a:24:ab:4c:ce:d0:d2:84:67:
83:52:c2:af:e7:cf:6f:cf:e6:05:31:d2:95:1f:08:
57:de:7e:6c:8c:22:80:c8:76:ad:4a:fa:f2:cb:50:
20:44:a0:13:92:3e:cc:10:17:02:66:cc:12:23:3d:
33:5a:99:a7:df:ee:35:cf:e6:c0:bb:22:ac:15:a8:
d6:a6:a0:8c:43:04:11:fc:03:bf:20:96:d5:ed:38:
cb:91:8e:bc:0b:05:24:a1:82:b0:13:d8:34:81:ef:
f0:29:3e:94:97:f5:eb:9d:b2:e4:04:30:d7:92:9e:
b7:45:f3:26:20:57:2f:31:ec:ff:fe:4a:14:74:88:
6e:6a:de:ac:dc:89:7b:26:5f:f7:be:b9:8f:4a:4f:
dc:8c:ff:53:0d:02:10:aa:6e:16:6b:40:8d:ec:8e:
4e:31:20:b5:b0:33:d8:cb:46:e0:71:3d:f9:d6:bc:
f9:b8:c8:6d:1e:6b:6a:61:84:24:c2:66:29:ad:31:
ae:8c:fc:22:53:2d:45:bf:38:3c:42:bd:b1:ba:f1:
33:d4:ce:13:33:e9:6b:cd:e8:ed:85:74:ca:1e:99:
bc:10:f9:c2:83:a2:2d:20:01:f0:a8:69:da:fc:af:
e7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FE:0B:49:3B:8E:8B:C9:42:37:97:16:6A:F1:D4:81:E5:FF:2D:90
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/sv4LSTuOi8lCN5cWavHUgeX_LZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.12.0/23
193.233.24.0-193.233.29.255
193.233.54.0/23
193.233.73.0/24
193.233.92.0/22
193.233.150.0/24
193.233.164.0/24
193.233.166.0-193.233.169.255
193.233.176.0/20
193.233.212.0/22
193.233.224.0/22
193.233.240.0/22
193.233.254.0/23
Signature Algorithm: sha256WithRSAEncryption
00:b7:79:75:ba:37:bb:75:e0:c4:27:95:57:d5:bd:d3:d3:e2:
37:fa:9f:4c:4e:79:ab:c3:cb:16:a5:4c:c5:eb:b5:e2:1a:4b:
f4:cb:11:2f:d8:83:50:99:4f:2e:8f:4c:8d:dc:5f:74:84:16:
b6:7e:32:cc:d8:d6:78:18:1b:ea:53:28:3e:55:70:c9:01:a9:
61:ff:6b:d5:35:13:5f:c1:c6:91:0f:7b:ff:f3:fb:a8:77:ff:
93:a4:7a:07:a2:6b:1d:26:0d:c1:c1:40:30:9e:9f:c4:99:ef:
8f:23:66:f8:70:20:84:43:05:f6:1e:28:95:80:ff:6c:13:ae:
ed:8e:f9:b7:d2:76:44:a7:d7:3f:08:fa:a1:92:2e:8d:65:af:
eb:c6:83:de:a2:de:20:60:96:66:0d:e8:e8:83:13:38:85:5b:
3d:5b:e9:67:b9:a7:3a:2d:42:51:1b:d8:e1:21:89:d8:b6:0a:
90:9a:5c:d0:9b:c3:d0:e0:f0:7d:54:3a:29:25:e8:41:80:fb:
34:05:c8:c4:f1:db:b9:61:d0:64:a1:19:e0:08:7d:f6:d6:d8:
2d:41:a4:7b:83:5e:f8:af:46:0a:4e:85:af:49:0f:3c:97:a6:
5b:e7:30:00:92:c1:46:65:6f:fc:1a:25:3b:53:9b:3d:e2:35:
9a:35:fe:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:39 2023 by rpki-client on console-fra.rpki-client.org