Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/9bAfVBjcK8QJuiEP-Y3ofnMQTEw.roa
File: 9bAfVBjcK8QJuiEP-Y3ofnMQTEw.roa (raw, json)
Hash identifier: mhCo8+sC9TljOIFEGUb4sHLK+ZuNwpI0bsGLv7gwj6I=
Subject key identifier: F5:B0:1F:54:18:DC:2B:C4:09:BA:21:0F:F9:8D:E8:7E:73:10:4C:4C
Certificate issuer: /CN=66df7742890173927935206a28efbf48123e787c
Certificate serial: 018E19F26A6606637D41A81A2FF7F20BAE26
Authority key identifier: 66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/9bAfVBjcK8QJuiEP-Y3ofnMQTEw.roa
Signing time: Thu 07 Mar 2024 17:25:01 +0000
ROA not before: Thu 07 Mar 2024 17:25:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202
IP address blocks: 195.26.32.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 16:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:19:f2:6a:66:06:63:7d:41:a8:1a:2f:f7:f2:0b:ae:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66df7742890173927935206a28efbf48123e787c
Validity
Not Before: Mar 7 17:25:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f5b01f5418dc2bc409ba210ff98de87e73104c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:de:02:39:df:ab:a2:8e:ba:27:75:78:0f:e8:
e9:71:c6:cb:7c:c8:14:f1:1c:f0:cf:f4:70:65:4a:
3b:6b:e7:d5:f6:54:e2:9e:4b:b9:85:0a:32:8e:51:
69:a5:f0:61:10:26:8a:7e:80:5c:86:8b:5f:70:10:
f2:f9:39:98:9d:e4:04:10:02:54:1a:ec:7a:de:71:
fd:12:28:97:97:b4:cc:f2:64:d4:46:b2:cd:e5:a2:
60:53:6e:56:97:59:db:1d:4b:35:25:4a:07:ff:d8:
d7:07:03:e0:7d:51:e6:fe:8d:03:89:39:27:c7:e7:
71:90:86:43:e0:1f:b9:58:8e:27:34:97:a9:a1:0b:
d1:d8:ba:6f:cd:9f:cc:63:d0:70:57:bf:8e:55:0f:
84:51:cc:35:3b:70:d2:c5:c7:32:73:fc:3d:81:d6:
56:05:b6:bd:e9:b4:63:58:8f:87:b6:ef:3f:95:16:
0f:78:fa:fd:85:96:44:80:cf:83:c0:e0:30:26:35:
8f:1a:14:70:e3:25:4c:03:14:1d:80:00:c8:a2:37:
53:da:3d:13:a6:e2:38:d3:5b:e6:65:aa:ce:80:ac:
45:f7:38:d9:ba:59:a2:4b:0d:d9:80:49:ab:9b:b8:
f1:aa:ef:26:fa:86:2f:e5:31:99:e2:4e:53:ed:f1:
4b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B0:1F:54:18:DC:2B:C4:09:BA:21:0F:F9:8D:E8:7E:73:10:4C:4C
X509v3 Authority Key Identifier:
keyid:66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/9bAfVBjcK8QJuiEP-Y3ofnMQTEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/Zt93QokBc5J5NSBqKO-_SBI-eHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.26.32.0/19
Signature Algorithm: sha256WithRSAEncryption
3c:01:63:83:88:c9:77:46:c9:82:93:5d:aa:fa:c0:c8:25:1c:
10:f2:68:86:e2:d3:01:89:5a:9f:24:6b:d0:b3:46:de:59:13:
fe:34:73:80:d0:48:05:63:ed:c0:06:3f:e5:a2:cb:17:7f:47:
12:38:3a:78:8e:e2:ba:07:59:66:47:be:4f:7c:a6:e8:9b:34:
0c:eb:b8:b8:fe:0a:f7:db:28:06:ec:e7:da:c6:ba:74:3d:f6:
c8:65:76:31:b2:3d:ae:ff:51:ed:b4:c8:e4:fb:24:70:e3:3f:
c4:9d:29:6c:59:fb:4a:10:c5:96:4f:e0:58:1a:dd:60:5a:1b:
ed:4b:63:e6:92:70:d3:91:f0:cf:64:41:5f:66:7b:f7:71:fd:
27:09:ef:b2:23:2e:86:62:64:01:78:b0:37:7e:59:c4:bc:c9:
f7:ca:aa:b2:a7:40:bc:f0:4c:b3:1d:c3:81:c1:db:ac:39:d0:
72:a4:9c:f9:89:48:9d:1d:c4:8b:ce:6d:5e:e8:c8:9d:42:78:
f8:bc:20:aa:73:20:ae:c4:95:5c:fa:c8:58:31:23:de:52:e3:
af:2a:24:a3:3e:23:67:77:fb:3d:b1:0c:0f:87:6e:40:c0:12:
c1:d7:fc:ef:34:94:4a:22:92:15:99:b8:10:7b:dd:5b:c5:0b:
ae:16:44:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 11 20:50:31 2024 by rpki-client on console-ams.rpki-client.org