Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0c4392-2754-4e33-a02f-7bfb4381ab54/1/JZhQ2P0I3hwGKzXNbG-hYQ8leQo.roa
File: JZhQ2P0I3hwGKzXNbG-hYQ8leQo.roa (raw, json)
Hash identifier: pQG+ir8+IcjTwbEBwn9NR6DIBCOqH74ilUtQVoypLVI=
Subject key identifier: 25:98:50:D8:FD:08:DE:1C:06:2B:35:CD:6C:6F:A1:61:0F:25:79:0A
Certificate issuer: /CN=bde636ff523e5f3734227f33c44c2e50ff8d1ee2
Certificate serial: 0186406E2A3015EDD1FBC6251AB24B972A9A
Authority key identifier: BD:E6:36:FF:52:3E:5F:37:34:22:7F:33:C4:4C:2E:50:FF:8D:1E:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/veY2_1I-Xzc0In8zxEwuUP-NHuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0c4392-2754-4e33-a02f-7bfb4381ab54/1/JZhQ2P0I3hwGKzXNbG-hYQ8leQo.roa
Signing time: Sat 11 Feb 2023 12:23:26 +0000
ROA not before: Sat 11 Feb 2023 12:23:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33965
IP address blocks: 193.228.197.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:40:6e:2a:30:15:ed:d1:fb:c6:25:1a:b2:4b:97:2a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde636ff523e5f3734227f33c44c2e50ff8d1ee2
Validity
Not Before: Feb 11 12:23:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=259850d8fd08de1c062b35cd6c6fa1610f25790a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1e:bc:ed:e2:c7:e2:c3:2d:a0:a5:92:8d:a1:
90:9f:31:8a:7b:c9:ae:75:2e:41:15:ba:aa:48:5e:
85:22:ac:9f:84:a5:a8:e4:5a:ac:ea:90:a5:97:24:
84:a3:50:c4:08:32:c8:4b:32:76:f9:8d:5e:55:de:
da:76:07:57:0d:20:ce:e7:cd:1d:c4:9a:e9:62:e2:
5f:6c:0f:1e:81:98:08:46:b7:0c:de:a1:0c:70:28:
30:95:ee:7e:cc:ae:03:c2:35:17:51:59:9a:7c:8f:
1e:87:e2:9d:24:81:7b:56:a2:c7:41:61:32:31:69:
e3:56:60:d2:5f:f3:2d:fc:a2:42:45:2b:0c:9f:6d:
bf:87:0b:4b:2e:87:14:4d:98:73:59:04:ea:a3:00:
bb:d1:57:a6:c7:f8:73:93:ba:3d:e0:4a:91:0a:fe:
fc:53:60:8f:f3:1c:5b:29:2f:9f:81:de:c5:b3:cd:
65:8d:f2:ba:09:de:8d:fd:ae:d5:42:54:23:76:a9:
ab:83:be:6e:82:e5:da:3b:8e:fd:7c:2a:4c:68:01:
76:d9:66:b3:8a:60:1c:9b:e5:35:1b:8c:62:76:94:
5c:fe:12:26:64:bd:42:91:8b:17:2e:c7:73:3b:51:
2a:9a:dc:1a:28:e2:8a:85:f3:1c:3d:b8:cd:aa:25:
da:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:98:50:D8:FD:08:DE:1C:06:2B:35:CD:6C:6F:A1:61:0F:25:79:0A
X509v3 Authority Key Identifier:
keyid:BD:E6:36:FF:52:3E:5F:37:34:22:7F:33:C4:4C:2E:50:FF:8D:1E:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/veY2_1I-Xzc0In8zxEwuUP-NHuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0c4392-2754-4e33-a02f-7bfb4381ab54/1/JZhQ2P0I3hwGKzXNbG-hYQ8leQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0c4392-2754-4e33-a02f-7bfb4381ab54/1/veY2_1I-Xzc0In8zxEwuUP-NHuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.197.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:c5:35:d9:06:18:07:4b:82:64:c1:f1:05:0d:b3:9b:03:06:
0a:71:db:91:84:93:86:1e:ea:40:41:d5:bb:5b:f6:92:9f:f4:
84:04:61:f6:27:0e:d9:78:6d:a2:8e:fc:1b:66:f0:fb:2d:41:
7f:63:88:1a:5e:9f:e5:1a:2e:29:37:12:97:11:41:9d:12:20:
e3:99:0c:99:46:b0:74:3b:44:75:70:38:1f:dc:f4:14:52:05:
d1:85:24:9b:8f:3a:e3:dd:1d:09:c0:67:02:78:81:03:88:14:
1a:4e:3c:60:a6:ab:f2:9b:6f:a6:bc:e9:2c:4c:b0:9b:fe:6a:
2d:82:88:2d:f8:8b:f0:e4:65:f5:5f:8c:1b:a4:b0:7e:62:15:
a4:71:c0:9a:cb:70:5e:26:b3:62:e1:e7:b2:89:a7:85:f1:7a:
54:ad:0d:a5:45:06:c0:07:f5:2c:bc:e0:05:f3:f3:f6:d0:03:
ef:34:fc:5d:a9:97:dc:e6:91:06:f6:f3:27:af:de:e7:7d:73:
5c:ad:4c:c4:ec:d4:e5:7b:16:a3:e7:bb:53:67:c1:35:20:4d:
40:ce:73:df:3f:63:12:96:67:1b:22:16:ed:2c:b2:06:6c:cd:
be:eb:04:16:87:60:5f:27:96:9b:1e:5f:3f:11:c4:a7:59:db:
fe:7d:af:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:55 2024 by rpki-client on console-ams.rpki-client.org