Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/wLj2VXWidHf-YFMAQLgnrux0ISk.roa
File: wLj2VXWidHf-YFMAQLgnrux0ISk.roa (raw, json)
Hash identifier: HxJV2fFnuR7BssRokiEZG97GzI3YKMkLVo85FemSvCE=
Subject key identifier: C0:B8:F6:55:75:A2:74:77:FE:60:53:00:40:B8:27:AE:EC:74:21:29
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018EA3248CB64067B0B0403C79AE09E978D9
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/wLj2VXWidHf-YFMAQLgnrux0ISk.roa
Signing time: Wed 03 Apr 2024 08:47:45 +0000
ROA not before: Wed 03 Apr 2024 08:47:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215281
IP address blocks: 193.233.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 10:23:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a3:24:8c:b6:40:67:b0:b0:40:3c:79:ae:09:e9:78:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Apr 3 08:47:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0b8f65575a27477fe60530040b827aeec742129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:78:07:b6:dc:7a:33:1b:a1:0e:47:4f:b3:98:
a7:16:4c:f2:63:32:0b:27:35:96:f0:f0:aa:c5:ae:
77:10:c5:c6:c8:9d:a3:16:a2:98:02:9f:7c:8f:5c:
86:ad:67:1b:06:c1:38:8a:63:11:46:28:f3:4c:5e:
a1:e7:a7:48:07:49:19:ad:57:46:5a:3e:ca:c0:e0:
ce:d2:f0:1a:09:bd:82:8a:e2:b7:1c:3a:71:44:fa:
96:96:04:d7:91:a0:ab:d6:df:7b:7e:f6:fc:2e:6a:
d0:fa:68:31:b1:78:89:4d:01:33:47:68:55:ca:22:
d3:17:04:6b:c2:6a:11:ae:f0:33:23:ab:63:c8:e3:
51:ba:99:27:bf:06:64:f7:67:d6:c1:4e:f2:bf:43:
b1:12:74:6c:dc:25:82:5b:5f:70:10:4f:12:b7:1e:
2f:0b:b9:23:3c:98:43:c6:38:7b:c9:a0:b2:98:1c:
a0:f6:13:79:37:12:7a:0b:41:f9:b6:c0:3d:d6:e5:
7c:0c:83:b7:38:39:e0:39:1f:46:f8:90:ae:1b:98:
a1:c0:ae:d7:4b:44:6a:ff:33:a8:83:d5:7a:86:6d:
79:b2:20:f2:72:a4:c0:0e:1f:ec:9a:b4:01:56:d3:
6d:b6:21:2e:ad:bf:e0:3e:13:23:af:70:09:03:a1:
09:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B8:F6:55:75:A2:74:77:FE:60:53:00:40:B8:27:AE:EC:74:21:29
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/wLj2VXWidHf-YFMAQLgnrux0ISk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.252.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:94:3e:e9:f7:1c:0d:0d:c0:33:3b:0a:dd:74:5a:2b:2c:ff:
99:0c:c4:2a:7f:cc:4b:2e:e2:12:8e:c6:05:d5:14:7b:13:d0:
80:ae:ee:76:45:ea:39:0f:83:b4:74:c7:42:7e:be:af:87:25:
cf:7f:da:d3:b9:b4:0d:a7:dd:03:50:5e:45:fb:ef:ab:d9:f7:
32:b3:46:d5:15:6c:3b:ac:73:8c:e6:94:d8:fb:49:3c:20:ea:
36:5c:17:2b:82:99:bc:a7:64:d1:b2:87:78:0a:0e:f3:03:1e:
52:b9:1f:a9:ac:9b:2c:e4:45:47:a2:76:dd:00:90:10:8a:36:
ad:f1:fd:4e:17:42:98:8b:99:59:c1:1d:88:a3:f7:ef:99:1c:
2c:68:fe:6f:8c:a0:28:ed:9d:b7:3e:1a:82:9b:7e:23:fd:75:
2b:5f:4f:bd:66:3f:94:e7:8e:f1:02:f8:b2:85:d4:17:a5:3c:
b0:0a:b0:57:ba:99:ef:53:9b:11:69:76:c3:ac:74:4a:35:dc:
3a:f2:3d:76:6d:a6:96:ad:7c:7a:3d:ab:c6:16:f7:6c:b1:7a:
21:03:a0:e6:66:13:da:77:21:d0:2f:f0:19:91:20:f1:ad:7e:
7d:0a:ed:a3:3a:0c:e5:41:35:62:e6:2f:2d:99:08:b2:a8:c2:
17:05:03:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 13:57:57 2024 by rpki-client on console-ams.rpki-client.org