Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/tMs-jslPPWqKT3mfBaozxwRJd9g.roa
File: tMs-jslPPWqKT3mfBaozxwRJd9g.roa (raw, json)
Hash identifier: ivqwDb5bRGJ2wNg/jdtLcjg1xz0kX3nHQ7kYuhUkKO0=
Subject key identifier: B4:CB:3E:8E:C9:4F:3D:6A:8A:4F:79:9F:05:AA:33:C7:04:49:77:D8
Certificate issuer: /CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Certificate serial: 018AE117ADA3F202E158341A1C45F3942A27
Authority key identifier: 0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/tMs-jslPPWqKT3mfBaozxwRJd9g.roa
Signing time: Fri 29 Sep 2023 13:18:59 +0000
ROA not before: Fri 29 Sep 2023 13:18:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.33.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Oct 2023 21:53:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e1:17:ad:a3:f2:02:e1:58:34:1a:1c:45:f3:94:2a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Validity
Not Before: Sep 29 13:18:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4cb3e8ec94f3d6a8a4f799f05aa33c7044977d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6e:78:45:39:05:24:19:31:5e:6a:11:d5:43:
91:85:67:27:09:ae:28:af:13:f4:e4:68:b7:a9:ad:
a3:1a:f5:74:f9:e4:e5:10:8a:4c:e4:43:a5:8e:19:
f1:13:e0:f3:53:57:67:5f:1a:ad:4a:c0:57:32:cb:
3a:b7:24:7b:79:34:15:59:f2:b5:f3:0e:4a:6b:7f:
c5:19:42:de:79:f3:dd:b4:b9:66:56:c1:b0:0b:1c:
b0:b6:2e:1a:31:d1:74:2d:87:d3:fb:e6:f5:ee:a6:
2d:60:05:f6:4a:56:f0:cf:67:df:4b:58:48:0c:61:
ca:4c:be:15:d8:bb:d6:39:6b:d0:f8:3d:67:9a:39:
d3:4a:67:34:eb:65:55:3d:c0:e2:93:4d:0f:08:df:
fe:96:62:96:3d:f4:01:de:92:c3:b0:8e:73:91:70:
58:6b:33:ab:6f:f2:86:c3:66:79:f1:0f:c9:57:84:
9a:71:75:71:c7:af:eb:0b:13:1f:d2:f3:03:ee:c1:
95:54:c1:c5:28:5c:c8:74:1a:a4:68:96:88:7d:c0:
a5:fd:26:68:36:1e:a7:39:03:e5:9f:1a:6e:df:5f:
a8:d2:f4:f3:44:19:65:f2:b0:14:8e:22:43:d7:44:
f3:ae:8d:e1:88:0f:d0:25:a6:8b:d8:6e:62:d6:5e:
3a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:CB:3E:8E:C9:4F:3D:6A:8A:4F:79:9F:05:AA:33:C7:04:49:77:D8
X509v3 Authority Key Identifier:
keyid:0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/tMs-jslPPWqKT3mfBaozxwRJd9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/C1-MlEfWFLhhgnY9kzMlDi2UEuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.26.0/24
Signature Algorithm: sha256WithRSAEncryption
50:d7:d6:ef:3c:a3:a1:be:a7:42:e9:33:a1:c7:ba:72:f3:82:
0a:54:0b:2b:4d:f4:e3:11:e2:32:80:d0:e3:45:8b:d6:39:4e:
02:c1:f4:6b:4a:38:8a:ad:d4:33:3e:78:0d:2e:ac:6b:68:36:
d0:22:63:e4:3b:29:b6:25:d8:f3:41:69:4b:0e:70:f1:2d:15:
9a:11:2f:b3:19:21:28:cc:75:4c:73:a0:db:07:c3:72:61:72:
c8:f4:06:4d:89:fc:5f:d5:7b:46:0b:2e:7c:65:74:48:3a:f6:
fb:2e:27:ef:c4:2d:0f:3d:92:7a:79:9e:fb:fc:f4:a5:77:81:
9c:1a:28:80:78:21:08:b0:a3:50:75:33:99:e8:5e:fe:24:86:
49:85:8a:dd:6d:41:df:12:f2:d2:12:8b:79:0c:1c:17:85:22:
4f:e2:bb:35:98:ce:94:a7:12:f7:79:dc:48:21:21:74:62:78:
09:ee:c1:75:a2:bb:5b:fe:6f:89:40:a2:4b:1e:d3:b2:7a:ee:
0a:d0:18:cf:44:04:30:d1:cd:39:18:99:5e:a7:91:68:e7:72:
97:a8:c1:2c:77:fc:ef:25:4b:b8:39:9b:33:e4:5c:78:f8:b7:
8f:ca:24:1a:43:41:0d:6e:d0:e3:6c:5f:b0:fa:fe:50:39:a0:
31:a8:c7:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:32 2024 by rpki-client on console-fra.rpki-client.org