Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/zX5_C0UZs3SJRGDu1tD0W2gfFnM.roa
File: zX5_C0UZs3SJRGDu1tD0W2gfFnM.roa (raw, json)
Hash identifier: b1T4Z3LCHCdCATSKLrucR6pgcbRmbqR5R9+vVm83fXk=
Subject key identifier: CD:7E:7F:0B:45:19:B3:74:89:44:60:EE:D6:D0:F4:5B:68:1F:16:73
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018CC795368BC3811AF106D0EBFE8153F945
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/zX5_C0UZs3SJRGDu1tD0W2gfFnM.roa
Signing time: Tue 02 Jan 2024 00:31:33 +0000
ROA not before: Tue 02 Jan 2024 00:31:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209759
IP address blocks: 193.233.244.0/22 maxlen: 22
193.233.198.0/23 maxlen: 23
193.233.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 May 2024 11:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:36:8b:c3:81:1a:f1:06:d0:eb:fe:81:53:f9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 2 00:31:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd7e7f0b4519b374894460eed6d0f45b681f1673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:14:56:57:be:b6:22:dc:f1:2c:77:be:a1:6c:
df:bd:a6:e7:9b:8f:60:d4:c3:30:45:ce:b1:16:21:
7d:79:95:b4:30:a2:07:c7:d5:f1:69:35:26:81:25:
40:23:0a:a7:f2:6c:07:27:af:f9:e2:28:e4:7b:3f:
b6:11:8e:0d:52:69:9f:be:33:dd:38:d8:59:81:97:
f5:11:e5:7a:7f:08:92:8e:fa:14:75:4b:3f:4b:c2:
d1:61:5e:2f:38:92:39:06:6d:13:82:71:7a:62:b4:
4a:36:03:9b:34:c8:59:90:f5:b5:e9:77:f4:6f:fe:
49:2f:d7:b8:62:d0:f8:69:4c:85:5b:42:fb:4c:bb:
ec:07:b5:79:a6:5c:92:be:bc:bf:cf:e4:eb:68:a7:
bb:03:8f:1e:41:98:c7:66:84:fc:a9:8d:2a:c7:44:
35:fe:77:05:28:02:2b:63:b8:dc:6d:b6:58:b7:9d:
d9:94:eb:84:f5:60:6a:7a:d5:e9:4a:b5:e1:64:9e:
8f:c6:c0:8a:e8:02:2b:fc:4e:31:bf:04:09:04:bd:
2b:1f:af:bd:b7:2a:26:b4:34:77:1e:18:1b:5a:ca:
e3:fa:8e:ba:26:c2:e3:d5:c6:77:e4:4c:03:8a:21:
71:1a:80:57:af:e9:ea:ec:f7:da:d0:c3:4e:5b:6c:
cc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:7E:7F:0B:45:19:B3:74:89:44:60:EE:D6:D0:F4:5B:68:1F:16:73
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/zX5_C0UZs3SJRGDu1tD0W2gfFnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.198.0/23
193.233.201.0/24
193.233.244.0/22
Signature Algorithm: sha256WithRSAEncryption
86:1b:d2:ec:54:8b:d3:c9:e9:4f:ba:a2:47:0c:68:b5:cf:28:
4a:4a:ed:d0:32:ea:b1:d1:95:5a:de:9c:bc:db:76:f2:2d:74:
fb:e5:27:55:e0:70:80:5d:cb:1b:a2:64:86:48:2a:ae:7b:72:
08:3c:48:2e:89:7e:5a:3f:f2:84:12:39:7d:9a:bf:3a:d8:aa:
09:00:70:46:98:31:e8:23:5e:df:79:a7:d2:f1:8b:8b:3e:86:
de:b2:36:ac:e4:00:da:1d:b9:d2:80:c9:43:88:ae:f6:6a:cf:
6f:5b:d9:50:8d:ee:2c:d0:d8:03:46:1c:74:a9:26:95:f6:e1:
48:f2:d1:94:82:6b:b2:cd:3f:b0:ad:b2:3e:9a:4e:19:b8:a0:
61:95:28:c7:a0:84:ed:8e:b8:f0:b3:8e:42:d2:b4:2a:67:22:
ab:30:3c:08:f7:97:91:60:21:d9:32:e2:f0:02:d2:10:db:8c:
09:31:aa:cb:d0:37:cd:c0:db:82:03:4e:15:12:11:50:80:0d:
3f:6d:1a:be:9f:1c:7a:2a:d4:e5:91:72:42:e6:d2:b7:aa:a9:
8f:62:e7:1c:c3:e0:99:bb:25:2c:9c:8b:26:13:fe:33:f5:e9:
d3:c2:8a:65:80:c5:96:71:d5:51:d4:e4:fe:ed:95:35:33:90:
d1:3f:a8:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:33 2024 by rpki-client on console-ams.rpki-client.org