Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/zCpyPNZtx3etLLdumA21zU44xHc.roa
File: zCpyPNZtx3etLLdumA21zU44xHc.roa (raw, json)
Hash identifier: EYfz0B2vevWTkVBq9C3Kzb+NEq1pzpszyq77HD/QpgI=
Subject key identifier: CC:2A:72:3C:D6:6D:C7:77:AD:2C:B7:6E:98:0D:B5:CD:4E:38:C4:77
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01856F26F307A562ADC5FA60CE80193FE8DD
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/zCpyPNZtx3etLLdumA21zU44xHc.roa
Signing time: Sun 01 Jan 2023 21:05:01 +0000
ROA not before: Sun 01 Jan 2023 21:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209371
IP address blocks: 193.233.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 May 2023 15:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:f3:07:a5:62:ad:c5:fa:60:ce:80:19:3f:e8:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 21:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc2a723cd66dc777ad2cb76e980db5cd4e38c477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ce:a2:da:e0:a6:ab:be:8d:1f:f0:87:aa:f3:
c5:03:e3:66:f5:c5:ec:5c:b4:48:73:f2:5b:67:a8:
e8:0a:aa:68:63:89:68:b3:0a:bb:7a:13:08:c7:9a:
fd:0e:cc:19:3b:b6:ff:7d:fd:8b:cb:a5:49:06:4c:
d4:16:52:d5:48:c2:d4:97:61:fc:48:98:6f:4e:78:
15:2b:80:ed:9d:63:f2:68:3a:48:c8:d9:8a:0d:9e:
76:5e:fb:83:12:f2:21:ab:a1:c0:a9:6b:09:45:a0:
32:19:a8:a1:87:b1:96:d6:7a:11:79:a8:24:45:75:
84:eb:28:66:c9:b8:32:63:76:74:a7:16:f8:ed:db:
d8:5f:cc:23:36:37:81:30:67:b2:74:39:d8:fb:d6:
39:13:5e:ad:60:3f:f2:32:a4:bf:a4:7f:9a:a5:ad:
e5:3a:7e:cc:44:0c:f5:5e:aa:c2:f3:cc:62:04:ef:
ba:d0:fa:55:20:75:b7:57:05:bf:dc:4e:bb:7f:c7:
53:8c:f9:9d:62:17:00:fe:74:42:bf:94:b0:c3:a0:
1a:86:7c:b6:ec:7a:9d:12:d0:b0:ef:9c:cd:1a:2b:
2a:60:ef:3e:16:9d:7d:24:5f:a2:72:50:b9:6a:67:
b4:02:01:d5:67:74:a2:d3:14:14:6a:ef:5a:7c:46:
9a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:2A:72:3C:D6:6D:C7:77:AD:2C:B7:6E:98:0D:B5:CD:4E:38:C4:77
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/zCpyPNZtx3etLLdumA21zU44xHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.61.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:c4:bc:07:4c:af:ff:95:7e:e4:87:8a:c6:b4:72:57:4d:09:
9d:17:6f:56:49:83:47:af:22:b9:e5:24:4c:bf:9f:40:17:47:
cb:7f:91:81:86:c6:2b:f6:66:9d:7b:4a:16:62:90:f3:87:ae:
37:36:e8:27:c3:ec:b8:f6:45:c5:32:83:a5:b8:f5:a4:76:a0:
00:f4:f5:e7:24:18:dc:1f:50:d4:5c:c4:d7:49:bf:80:d0:84:
91:01:90:1b:28:fe:3e:47:37:ce:e4:28:de:32:84:78:1b:76:
79:db:6e:28:80:4c:13:97:24:e4:6a:65:61:64:a1:84:2d:3d:
f2:bf:a9:d0:40:9f:9a:32:52:ff:8e:ba:cd:dd:31:6e:ae:68:
05:e6:f9:1a:db:3c:47:f7:e0:f1:92:4d:e3:2a:21:bb:fd:28:
bf:90:18:63:7c:35:73:4a:57:62:da:e6:29:03:ae:ef:3b:ef:
63:d1:88:97:8f:b1:be:a2:8d:c1:93:44:95:56:f2:e1:be:09:
d6:5a:49:42:d8:9f:9a:3e:6f:80:34:b1:c9:53:a4:71:ae:c7:
38:1c:1e:c4:e3:77:5d:6c:99:1e:82:fc:76:59:72:7b:56:f5:
13:5a:f2:04:9d:d9:3c:2b:5e:8b:57:18:f9:37:4c:0e:a9:bc:
5f:15:3a:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:33 2024 by rpki-client on console-ams.rpki-client.org