Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/wri7xNQ8Zz66DbwN6J_qLwSgSgw.roa
File: wri7xNQ8Zz66DbwN6J_qLwSgSgw.roa (raw, json)
Hash identifier: xFvMLfNEdy54cOsVvaoyO2/PMzpQX0ARTqV7Da3rbY4=
Subject key identifier: C2:B8:BB:C4:D4:3C:67:3E:BA:0D:BC:0D:E8:9F:EA:2F:04:A0:4A:0C
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01880A98DAC0D29E4469446F327576D2A13B
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/wri7xNQ8Zz66DbwN6J_qLwSgSgw.roa
Signing time: Thu 11 May 2023 11:36:09 +0000
ROA not before: Thu 11 May 2023 11:36:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206424
IP address blocks: 193.233.105.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0a:98:da:c0:d2:9e:44:69:44:6f:32:75:76:d2:a1:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: May 11 11:36:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2b8bbc4d43c673eba0dbc0de89fea2f04a04a0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:55:57:8e:19:83:54:a7:a6:4b:e7:71:5b:6e:
d9:54:45:59:0d:1f:e3:6e:b8:50:78:d3:35:a0:af:
ec:32:8a:78:d1:07:6c:3a:76:69:1b:dc:a6:db:28:
25:b5:dc:e6:90:00:61:c1:5a:93:fd:c0:b7:e5:df:
23:76:ed:9d:1e:83:1b:d8:f5:6e:5f:45:1b:07:f1:
39:ab:92:06:30:31:a5:e7:50:04:40:33:09:e1:2e:
7f:86:a8:f4:e5:de:9b:d4:c0:d1:b8:6b:53:6e:c0:
4b:51:69:9a:6c:a9:55:34:c6:3b:d5:e8:15:06:41:
4e:79:37:2f:42:07:2a:fe:04:e9:1f:31:6a:0b:10:
cb:2e:ee:e4:03:1d:de:fa:53:7e:b6:98:e9:36:79:
08:91:a5:5c:a8:0a:fd:4b:23:6c:0f:d7:c6:0b:fc:
bb:45:e4:78:01:14:c5:15:70:e1:19:c7:a3:c4:d4:
7d:8e:68:11:db:dc:86:f2:7c:bf:0b:91:bb:83:52:
9f:68:9c:62:8a:fc:97:de:55:a8:e8:85:c6:ae:00:
a1:36:80:7e:28:70:30:52:6a:3a:20:9e:b9:13:c8:
09:36:fc:26:74:a8:d2:92:ee:52:be:eb:65:6f:46:
e9:4a:35:eb:09:08:fb:42:d2:d9:9e:3c:e0:1c:33:
c1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B8:BB:C4:D4:3C:67:3E:BA:0D:BC:0D:E8:9F:EA:2F:04:A0:4A:0C
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/wri7xNQ8Zz66DbwN6J_qLwSgSgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.105.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:10:55:d6:54:0d:e7:5b:e8:46:5f:cf:f1:5d:8c:2c:92:c1:
bc:59:3c:70:62:dc:f1:57:0d:15:33:52:c8:3f:da:db:6b:47:
c4:04:7b:d1:c0:ca:f5:0b:43:f3:f6:bb:b4:32:ad:0e:91:8f:
0f:68:54:a1:ab:bd:a3:96:d2:31:1e:40:04:21:96:5f:ac:ce:
08:94:48:0f:69:92:c9:a3:54:9f:17:b1:16:1c:b0:ea:61:c0:
54:0a:5a:60:84:e5:01:4c:1d:7e:72:ec:0d:ee:0d:a8:07:b8:
9a:bb:b5:57:24:94:f4:04:6b:5e:72:7e:92:49:5d:5d:1e:b7:
f1:a3:7c:29:e4:dc:15:f8:e0:98:3e:ad:15:34:d3:26:ec:19:
10:ae:0e:8a:fe:66:f2:a9:97:59:b0:8a:23:63:e4:3e:e0:ef:
46:f8:d9:d8:fd:24:00:2d:8c:a1:93:6c:28:2b:1e:44:75:98:
55:ce:27:f6:e4:54:60:ba:08:56:d5:41:cb:89:5d:db:6b:1a:
b4:56:77:fa:7b:b4:53:a1:b6:9f:95:b1:73:31:4a:d2:7b:c1:
ee:f2:0c:48:32:dd:57:2c:db:1e:aa:4e:be:bb:99:1f:be:d3:
64:5d:be:aa:73:ff:2e:fe:03:c9:87:3a:fd:bd:55:37:fd:22:
9d:f2:03:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:05 2024 by rpki-client on console-fra.rpki-client.org