Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/wM2EppAdiRgVLgMqNI6OJ8-5pvg.roa
File: wM2EppAdiRgVLgMqNI6OJ8-5pvg.roa (raw, json)
Hash identifier: IYfRUDqoxOMquMeHlrvucgY/U9laSTqnGvvQvcgoO8A=
Subject key identifier: C0:CD:84:A6:90:1D:89:18:15:2E:03:2A:34:8E:8E:27:CF:B9:A6:F8
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01869ED2A127A77BAE2389C4D9CE62664E31
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/wM2EppAdiRgVLgMqNI6OJ8-5pvg.roa
Signing time: Wed 01 Mar 2023 20:17:29 +0000
ROA not before: Wed 01 Mar 2023 20:17:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56690
IP address blocks: 193.233.150.0/24 maxlen: 24
193.233.166.0/23 maxlen: 23
193.233.168.0/23 maxlen: 23
193.233.73.0/24 maxlen: 24
193.233.92.0/24 maxlen: 24
193.233.94.0/24 maxlen: 24
193.233.12.0/23 maxlen: 23
193.233.240.0/23 maxlen: 23
193.233.24.0/23 maxlen: 23
193.233.243.0/24 maxlen: 24
193.233.26.0/23 maxlen: 23
193.233.28.0/23 maxlen: 23
193.233.254.0/23 maxlen: 23
193.233.54.0/23 maxlen: 23
193.233.176.0/20 maxlen: 20
193.233.212.0/22 maxlen: 22
193.233.224.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9e:d2:a1:27:a7:7b:ae:23:89:c4:d9:ce:62:66:4e:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Mar 1 20:17:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0cd84a6901d8918152e032a348e8e27cfb9a6f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e5:7d:44:eb:a8:96:ff:8e:c3:bc:29:59:a3:
df:25:2e:1c:eb:35:d9:18:b7:23:e4:13:a9:78:4a:
c6:9f:fa:29:5b:95:c5:be:22:b7:5c:7a:b7:5e:6f:
2b:19:b3:d3:f1:fe:f9:87:f9:83:a1:ad:2b:3e:85:
bb:e9:58:f1:8c:5d:0f:da:40:1c:e8:72:c0:10:09:
2d:61:a2:4b:df:6c:d5:4e:ae:fb:9d:bd:29:fc:49:
c0:69:d7:03:4e:62:e4:3f:e7:1b:d5:3f:bf:ac:ba:
85:c1:1a:0c:a3:aa:83:c3:86:3f:ed:f7:32:50:1d:
cb:f7:74:b4:e6:d3:d5:dd:82:01:ff:2c:71:b1:43:
3f:48:c7:df:88:b3:e6:f1:37:0f:ea:aa:60:1c:53:
99:c6:b4:bf:df:ee:c6:d9:88:1d:9d:dc:40:d5:fd:
33:7c:6b:4b:06:e2:4b:33:8c:18:69:70:9f:1a:5c:
19:cd:64:32:72:d5:36:3b:93:f1:1d:9c:1c:95:d2:
29:b1:47:a2:a2:4e:14:65:25:49:2a:2d:08:0f:6c:
1e:af:68:70:22:04:44:21:83:45:2d:e3:10:f7:11:
f4:8d:25:98:11:cb:ad:4a:57:f9:1a:00:13:00:09:
2a:bd:16:63:b2:93:b6:92:b6:c2:d2:1e:43:8a:a1:
e2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:CD:84:A6:90:1D:89:18:15:2E:03:2A:34:8E:8E:27:CF:B9:A6:F8
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/wM2EppAdiRgVLgMqNI6OJ8-5pvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.12.0/23
193.233.24.0-193.233.29.255
193.233.54.0/23
193.233.73.0/24
193.233.92.0/24
193.233.94.0/24
193.233.150.0/24
193.233.166.0-193.233.169.255
193.233.176.0/20
193.233.212.0/22
193.233.224.0/22
193.233.240.0/23
193.233.243.0/24
193.233.254.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:66:c8:ca:e6:a7:c0:4a:f4:62:5e:65:1a:02:0d:a2:77:ee:
6a:d2:ea:58:e3:c7:a7:53:39:be:95:b7:c7:a2:56:51:05:b2:
36:c9:61:0b:73:56:3f:b9:e4:fc:4a:63:e1:44:4c:27:13:22:
a5:08:39:43:f7:76:fe:2c:b0:23:e3:b7:ea:08:5b:99:48:bd:
d8:88:60:d9:e4:ff:d1:28:7b:d0:ab:c6:1f:0d:00:2c:f7:a3:
9c:ea:32:e8:c9:17:79:c6:eb:9b:31:d8:da:d5:a3:6e:78:c7:
52:39:9c:4d:17:0d:cc:cf:a8:4d:b0:60:30:d7:3d:e1:12:35:
18:bc:03:fe:d5:fb:15:34:ae:77:aa:a9:99:96:a2:92:11:2f:
8f:8a:a0:bd:77:08:da:ee:10:80:6e:65:9d:a9:fd:b8:28:dc:
e6:96:ca:d6:ec:cb:78:84:10:5b:83:bb:51:75:b2:9f:eb:9e:
d3:ee:1c:06:90:d9:54:14:04:6c:42:74:1f:96:15:09:b0:77:
b3:fc:ef:ff:10:57:66:6f:01:d6:1c:53:b0:79:8f:61:1c:81:
e4:d0:6f:75:08:1d:0d:56:51:b7:11:d3:9e:3b:e5:5d:66:49:
e0:d0:2d:ae:a2:ab:a9:d7:3b:20:fa:1c:d3:a6:12:28:9d:46:
3a:7a:fb:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-ams.rpki-client.org