Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/yh7X6Cc2qRg0T9-BbzlwCyu2Ors.roa
File: yh7X6Cc2qRg0T9-BbzlwCyu2Ors.roa (raw, json)
Hash identifier: hVK0uqoeEhI+g1uFuwuux7sf+lkWvGuv1cQHu6QCKOc=
Subject key identifier: CA:1E:D7:E8:27:36:A9:18:34:4F:DF:81:6F:39:70:0B:2B:B6:3A:BB
Certificate issuer: /CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Certificate serial: 018C268E7D0EAABC28A458691D7869FF1A54
Authority key identifier: 0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/yh7X6Cc2qRg0T9-BbzlwCyu2Ors.roa
Signing time: Fri 01 Dec 2023 18:05:21 +0000
ROA not before: Fri 01 Dec 2023 18:05:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.33.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Dec 2023 21:23:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:26:8e:7d:0e:aa:bc:28:a4:58:69:1d:78:69:ff:1a:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Validity
Not Before: Dec 1 18:05:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca1ed7e82736a918344fdf816f39700b2bb63abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:3b:07:e5:2e:7d:d0:55:2f:fe:ae:9e:6e:53:
dd:be:13:c9:84:01:3d:75:6c:5f:d8:a9:3e:9e:99:
84:34:59:e5:5b:80:13:75:b7:0f:24:38:36:93:29:
5c:ec:d2:5a:ef:51:44:be:d2:ea:cf:0e:bb:e0:b5:
4d:8b:d8:76:ac:7e:8e:09:f4:06:8e:91:41:4e:f9:
f0:8e:99:23:65:13:11:a8:39:9e:64:d7:ef:de:45:
c0:88:c7:67:6d:86:c9:ce:a0:b3:d5:45:7a:88:6b:
0c:28:71:1d:36:38:24:30:e4:33:1f:f2:f1:aa:c0:
34:00:ec:35:ea:88:21:c0:6d:49:60:93:5a:14:cc:
b6:68:1e:73:e5:29:85:59:f0:a2:a3:cb:33:43:f7:
85:3b:da:8a:01:56:ff:9d:3c:c5:92:72:09:b4:90:
d2:c9:01:a7:35:56:17:06:22:8d:c3:75:d5:51:ef:
cf:da:3a:4b:09:7d:5a:cd:a2:56:d7:59:d3:cd:fd:
85:c0:54:ea:83:20:af:4c:af:39:14:10:2e:31:f6:
33:31:18:f9:94:f9:9d:fc:ce:f3:69:ba:1d:00:c4:
8d:37:e3:46:81:b2:97:58:df:39:46:5e:85:af:78:
17:b0:d4:d5:b8:f8:3c:7b:7d:a9:a2:f5:15:68:b0:
48:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1E:D7:E8:27:36:A9:18:34:4F:DF:81:6F:39:70:0B:2B:B6:3A:BB
X509v3 Authority Key Identifier:
keyid:0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/yh7X6Cc2qRg0T9-BbzlwCyu2Ors.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/C1-MlEfWFLhhgnY9kzMlDi2UEuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.26.0/24
Signature Algorithm: sha256WithRSAEncryption
03:5c:0f:3b:99:e1:d2:a2:fd:37:91:94:33:2c:ac:ec:05:a2:
77:94:95:be:c6:0d:19:82:76:16:c8:ce:c2:d5:19:6b:a7:f2:
e7:d1:51:f5:30:31:f0:11:70:c2:56:80:4e:35:65:62:14:6b:
04:06:8c:b6:21:1c:c6:3c:e2:fb:1c:d7:86:ac:96:e2:1a:06:
f0:19:7a:88:1c:89:41:0b:4a:07:7d:ee:1a:80:2f:46:63:35:
d3:68:70:94:15:05:81:52:7e:19:b8:12:2d:e9:cb:59:29:d2:
57:8c:8d:53:18:38:b7:62:27:df:08:46:20:6a:ef:bc:41:60:
cf:23:85:4d:fa:da:df:ef:a6:96:24:e1:f5:8f:fa:29:24:ff:
60:74:83:32:3a:0c:d9:06:dc:ae:cb:61:18:a3:2b:8b:50:6b:
1d:7a:f6:70:af:6f:4f:43:7f:56:5d:44:3d:03:af:19:9b:cf:
db:24:e8:eb:10:f4:d4:a2:3c:d2:24:2e:b0:2c:74:c5:8e:f3:
e3:f4:bd:9a:17:fd:92:66:a8:86:4d:14:a7:45:1c:4b:13:1d:
ff:5f:4b:39:b8:f5:5a:c7:a8:9d:f4:2c:a8:38:4d:08:02:33:
4e:67:4a:30:d5:dc:41:e8:89:ed:9b:14:4d:c1:7d:0b:6c:f1:
f9:bb:f5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:33 2024 by rpki-client on console-fra.rpki-client.org