Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/lkkY1WTEBBh8of2l_CBpTp2e1KI.roa
File: lkkY1WTEBBh8of2l_CBpTp2e1KI.roa (raw, json)
Hash identifier: GyQ8VnycnxfEnW1NzTGvHjVgPxJXqeSgIowFzwRRhmc=
Subject key identifier: 96:49:18:D5:64:C4:04:18:7C:A1:FD:A5:FC:20:69:4E:9D:9E:D4:A2
Certificate issuer: /CN=302d11e852615740076b3281b8aff0fac5ca2f33
Certificate serial: 01856F7961FC4142E19A15066B433579F431
Authority key identifier: 30:2D:11:E8:52:61:57:40:07:6B:32:81:B8:AF:F0:FA:C5:CA:2F:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MC0R6FJhV0AHazKBuK_w-sXKLzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/lkkY1WTEBBh8of2l_CBpTp2e1KI.roa
Signing time: Sun 01 Jan 2023 22:35:03 +0000
ROA not before: Sun 01 Jan 2023 22:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39212
IP address blocks: 185.182.26.0/24 maxlen: 24
2a0a:df80:26::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:61:fc:41:42:e1:9a:15:06:6b:43:35:79:f4:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=302d11e852615740076b3281b8aff0fac5ca2f33
Validity
Not Before: Jan 1 22:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=964918d564c404187ca1fda5fc20694e9d9ed4a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d5:4f:3c:ff:e7:52:32:af:cb:fe:d4:4c:f6:
ed:c7:5a:02:bf:6d:be:3d:d6:f3:36:97:4d:35:72:
89:46:31:25:8f:c9:be:a9:bf:80:36:f9:77:f5:0b:
6a:d8:a1:a0:59:f7:c0:b2:03:3a:4a:ad:4e:4a:6d:
d1:de:c4:37:6b:e3:1d:8a:f3:26:3e:ec:81:72:c3:
ce:51:8d:cc:fe:7c:9a:33:b5:50:e0:c1:f4:17:cf:
14:bb:df:b0:17:d8:e8:f6:1d:29:1b:de:2e:a3:56:
28:24:54:70:75:ab:f9:eb:74:d6:27:87:17:e6:a5:
54:78:d1:ac:3b:61:de:d7:17:82:c0:42:c6:22:56:
5f:14:17:eb:54:c2:24:fb:41:97:13:dc:47:b7:93:
74:8e:4e:0a:63:57:09:c2:b5:e3:16:d5:e9:73:10:
91:eb:7b:cd:79:3d:55:cd:8e:19:90:47:3b:a5:7a:
9d:73:5d:6f:fa:a7:af:8b:e4:86:6e:dc:6c:08:92:
15:6c:04:60:7d:c7:c4:12:8f:f0:db:1f:c1:bd:a5:
8c:54:59:da:70:b3:d8:c8:bb:1f:36:6e:aa:24:41:
38:2b:14:ff:d9:86:73:d7:55:50:ee:67:4d:16:0e:
c8:33:ea:8a:89:d0:2d:77:41:35:af:ab:33:70:81:
44:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:49:18:D5:64:C4:04:18:7C:A1:FD:A5:FC:20:69:4E:9D:9E:D4:A2
X509v3 Authority Key Identifier:
keyid:30:2D:11:E8:52:61:57:40:07:6B:32:81:B8:AF:F0:FA:C5:CA:2F:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MC0R6FJhV0AHazKBuK_w-sXKLzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/lkkY1WTEBBh8of2l_CBpTp2e1KI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/MC0R6FJhV0AHazKBuK_w-sXKLzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.26.0/24
IPv6:
2a0a:df80:26::/48
Signature Algorithm: sha256WithRSAEncryption
a4:e4:07:d0:d1:13:fb:e1:49:7b:fa:5b:25:4c:ec:5f:cc:b2:
69:0a:97:d7:f8:d2:13:da:a8:fd:b1:27:13:2b:d3:73:98:67:
8e:9f:ce:e0:13:52:8f:01:be:1e:79:3e:b4:90:1e:0b:2e:b5:
e5:cc:3f:7b:d0:ce:a4:b6:f5:76:ff:8b:52:17:05:7e:96:61:
1f:1c:9e:9a:21:ed:50:9e:d6:c5:94:ce:a8:9a:5a:1b:ea:ea:
6a:c3:b6:d0:03:48:b1:8e:30:0c:32:a5:06:cc:4f:55:b9:87:
a9:c5:6f:3c:36:d5:bb:c7:2f:fe:f7:9d:15:ee:0c:62:e8:1a:
18:c8:d4:b7:99:22:80:85:46:82:f6:f8:9e:af:14:0b:85:7f:
17:7b:94:15:6a:6c:02:d3:46:5c:36:eb:8f:41:84:11:7a:e3:
88:c1:a8:65:4e:8f:84:96:25:45:1d:0a:dc:c1:0b:02:9f:5d:
b8:b0:b0:3a:00:02:c9:45:e8:c7:9f:fb:ce:87:a4:b4:c7:16:
cc:62:81:6a:ca:ea:e8:29:ca:aa:11:1f:55:97:41:31:e4:1a:
70:2d:45:46:59:c5:d3:3d:16:1c:da:9c:c9:6b:97:77:5b:98:
fe:d5:6a:c7:c2:e6:41:06:a4:dd:9f:52:b0:c9:aa:72:91:5a:
9d:4c:65:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:56 2024 by rpki-client on console-ams.rpki-client.org