Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/tIn4Fsz4y2ZlI7R3R2J3psMAb2Y.roa
File: tIn4Fsz4y2ZlI7R3R2J3psMAb2Y.roa (raw, json)
Hash identifier: Ea5v20QzcQhI4XBGZWfS3hqhU/1TDuiW/tGrSkNZlq8=
Subject key identifier: B4:89:F8:16:CC:F8:CB:66:65:23:B4:77:47:62:77:A6:C3:00:6F:66
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01876B28664F54A652E31EB6A1D550F7DB9F
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/tIn4Fsz4y2ZlI7R3R2J3psMAb2Y.roa
Signing time: Mon 10 Apr 2023 12:33:42 +0000
ROA not before: Mon 10 Apr 2023 12:33:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50053
IP address blocks: 193.233.87.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6b:28:66:4f:54:a6:52:e3:1e:b6:a1:d5:50:f7:db:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Apr 10 12:33:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b489f816ccf8cb666523b477476277a6c3006f66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:62:48:f1:cf:fa:fb:69:61:4f:7d:ad:ad:17:
31:1b:47:f2:88:c4:ac:45:38:ce:58:54:28:a4:f8:
d5:05:f3:82:64:a4:0b:da:d3:5b:1c:09:21:d8:80:
ce:7d:d4:58:54:92:14:50:5c:4d:8d:fc:89:1b:bd:
3e:b7:17:d4:e3:d3:60:bb:e0:ea:eb:89:84:7c:d1:
54:63:95:5e:3f:05:dd:45:3e:e8:ec:dd:c7:a9:e9:
2c:e9:9a:60:67:01:99:cd:5b:0a:ca:43:e0:43:f5:
e8:df:8c:30:5d:26:1f:9d:8f:c7:36:c2:a1:5a:a1:
25:6d:0d:01:b9:df:c3:db:9c:a6:8b:42:c2:b6:98:
67:38:3f:e8:6a:6d:c1:c9:a0:0b:74:3e:f0:b4:b4:
b6:55:10:1a:6c:d2:ab:31:29:aa:fa:6c:c1:72:1f:
39:ea:63:49:56:ca:c7:7f:8f:fb:88:04:52:9e:27:
6a:b3:49:f0:1a:ad:fa:2b:30:a8:b9:2f:e7:c0:c7:
4f:f8:1e:2f:6a:01:12:82:18:bc:86:2b:12:fe:2d:
01:74:62:71:79:23:43:70:ec:a4:2c:6e:dc:13:56:
8d:eb:86:fe:ad:e3:3b:76:86:21:79:12:58:c8:98:
03:04:91:99:d9:3c:dd:b3:7d:66:cf:28:5c:15:83:
5d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:89:F8:16:CC:F8:CB:66:65:23:B4:77:47:62:77:A6:C3:00:6F:66
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/tIn4Fsz4y2ZlI7R3R2J3psMAb2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.87.0/24
Signature Algorithm: sha256WithRSAEncryption
85:15:a9:be:09:38:e4:ec:ad:71:c3:56:88:d8:17:e8:d2:3a:
cd:fd:1d:a8:53:30:68:cf:6a:fa:71:22:41:0f:28:f4:ef:10:
0c:45:5e:cc:81:a1:45:74:6f:d4:62:70:52:7c:70:a7:c0:02:
f9:73:80:ca:b5:15:47:b3:b9:38:77:b5:d8:ec:a8:ab:96:f8:
81:74:7b:90:11:55:4c:36:5f:b3:07:c8:ee:66:f0:1f:5a:c0:
2c:b0:5e:6c:90:ea:1c:72:b8:88:bc:f8:12:87:76:bc:be:bf:
64:0f:dc:6f:41:56:38:93:2e:09:57:f2:88:59:38:f1:ef:85:
19:57:9a:48:71:2e:07:cd:44:53:d1:59:a0:af:0b:ea:d3:95:
9e:7f:45:dd:a4:f1:0d:0e:5c:06:02:2a:4f:57:40:53:81:71:
f4:1d:43:29:54:44:c4:cb:4e:8d:cb:9f:7b:59:6a:2d:63:12:
5c:59:fd:20:1e:d8:6a:b1:aa:b7:05:18:bf:06:19:5f:61:11:
7c:6a:06:77:fe:00:f7:90:ad:b3:34:d1:6b:b0:79:4b:10:e0:
8a:bb:ac:df:ad:6e:2f:31:8c:89:5c:28:19:2c:52:df:99:d8:
d2:a9:0f:ab:ee:86:d0:ae:31:5f:f3:ef:b7:d2:aa:b0:48:d5:
8f:e9:33:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:05 2024 by rpki-client on console-fra.rpki-client.org