Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/vzq0jDEXp-2LzQsaiHqQYBQqXWU.roa
File: vzq0jDEXp-2LzQsaiHqQYBQqXWU.roa (raw, json)
Hash identifier: ALOyB1HvSp1nn6dAeeSNXW19hxwnmg+cbTu92XZdHsA=
Subject key identifier: BF:3A:B4:8C:31:17:A7:ED:8B:CD:0B:1A:88:7A:90:60:14:2A:5D:65
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018862CE90DCB8D55FFDDDF6DE9A7820AD25
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/vzq0jDEXp-2LzQsaiHqQYBQqXWU.roa
Signing time: Sun 28 May 2023 14:41:24 +0000
ROA not before: Sun 28 May 2023 14:41:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61302
IP address blocks: 193.233.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Jun 2023 13:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:62:ce:90:dc:b8:d5:5f:fd:dd:f6:de:9a:78:20:ad:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: May 28 14:41:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf3ab48c3117a7ed8bcd0b1a887a9060142a5d65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:29:fa:dd:d1:a2:80:94:4e:56:f5:b6:0d:e9:
53:99:82:9d:24:90:f0:04:f5:69:82:18:a6:cd:b5:
a6:15:5f:a6:85:6b:2d:54:77:48:0f:e8:52:ad:fc:
d3:60:7f:a9:89:5d:b2:83:f5:91:ca:b6:25:48:95:
a1:c8:0c:cb:44:94:8d:1f:e7:c7:f1:09:7f:87:99:
1e:f2:81:e4:c4:0f:d2:20:00:50:db:f9:f0:1a:cd:
30:09:55:f3:1d:3e:20:1b:7f:df:d0:13:36:7e:fd:
95:9a:f9:0f:45:16:51:7d:10:a1:74:ba:5e:5d:44:
33:e3:4a:e9:46:e1:1a:fb:a4:fc:a1:67:7f:db:ed:
02:93:8e:32:a2:cf:b4:69:32:5a:45:c6:bf:00:ee:
95:c8:90:a4:eb:00:71:44:db:eb:83:70:89:67:e9:
8e:f1:f3:b3:8e:32:6c:6d:03:4d:8a:b9:88:c4:1f:
f4:7c:05:3c:d8:58:88:a0:93:7f:64:eb:29:57:53:
65:1a:94:83:cb:a3:c5:27:e3:12:3e:01:7d:dc:c8:
a4:49:60:f0:6d:50:28:46:9d:b4:d1:67:af:ca:68:
ac:fa:e5:90:92:c4:d3:0d:cb:a0:0f:7f:89:d3:4c:
68:82:08:98:f3:43:8e:f2:9b:8e:5e:77:8c:ad:d5:
ef:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:3A:B4:8C:31:17:A7:ED:8B:CD:0B:1A:88:7A:90:60:14:2A:5D:65
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/vzq0jDEXp-2LzQsaiHqQYBQqXWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.18.0/24
Signature Algorithm: sha256WithRSAEncryption
65:14:f1:3a:d0:a7:1f:d2:0e:b0:a5:70:03:f5:1f:ab:13:c2:
30:b0:f1:d9:74:ce:66:eb:a8:b0:b9:bd:30:a4:20:70:91:0a:
bc:f6:ab:0a:7a:8d:c9:ae:38:93:72:ea:d6:6c:05:ad:34:f6:
66:e1:95:8e:6e:bf:a2:d7:a6:72:ed:80:31:ba:b1:3b:cd:d9:
ea:1b:43:a3:a8:46:73:ef:b7:51:44:93:01:f9:5a:a0:ea:38:
b0:97:44:a4:db:28:53:79:d1:74:c1:6e:2a:a3:d1:43:83:77:
76:2b:79:c0:1b:e6:bc:0e:55:0a:e1:7e:bf:e1:a0:ed:11:47:
ae:c3:96:9e:2e:bf:c6:1c:d8:47:45:70:63:d3:4b:3d:32:de:
47:29:b7:2a:d1:8d:fe:69:ef:06:64:0c:42:26:7d:8e:5f:71:
04:e7:9d:e6:99:0b:36:16:d1:e9:42:a6:6c:e5:64:85:4d:53:
d6:ed:75:1d:af:1e:c4:b8:2e:92:68:ce:10:fa:39:1c:ba:1e:
9c:74:77:14:d1:c5:8b:e8:94:3f:a9:b5:49:a2:52:50:31:8a:
23:87:fa:a0:69:31:17:66:2d:6b:ef:51:59:86:44:b3:e1:8b:
5f:f5:26:27:38:24:69:92:96:a7:c3:03:66:bf:fe:9e:25:2c:
f2:02:3e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:33 2024 by rpki-client on console-ams.rpki-client.org