Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/dm5uWgFlVjcxz9WcBnI-KyQHlGQ.roa
File: dm5uWgFlVjcxz9WcBnI-KyQHlGQ.roa (raw, json)
Hash identifier: 2JE2DP9YEXihGf220GXCOG9YK1vXFbORdPX9AKoJCdo=
Subject key identifier: 76:6E:6E:5A:01:65:56:37:31:CF:D5:9C:06:72:3E:2B:24:07:94:64
Certificate issuer: /CN=66df7742890173927935206a28efbf48123e787c
Certificate serial: 018E19F17FB8AA6268972389F486AD86612D
Authority key identifier: 66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/dm5uWgFlVjcxz9WcBnI-KyQHlGQ.roa
Signing time: Thu 07 Mar 2024 17:24:01 +0000
ROA not before: Thu 07 Mar 2024 17:24:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3356
IP address blocks: 195.26.32.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 16:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:19:f1:7f:b8:aa:62:68:97:23:89:f4:86:ad:86:61:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66df7742890173927935206a28efbf48123e787c
Validity
Not Before: Mar 7 17:24:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=766e6e5a0165563731cfd59c06723e2b24079464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f5:0e:a0:24:23:ae:5e:60:ec:ee:b2:59:0b:
b1:b9:2c:ee:8f:9d:56:d6:3f:86:6e:f7:c0:aa:b0:
1d:1a:bc:67:63:77:1f:54:22:d8:ed:25:f1:5a:be:
14:e0:9f:ae:ea:fe:5e:b9:2e:74:9a:7a:49:0f:ea:
9b:8d:9d:48:25:25:f2:b9:be:38:f3:d4:9c:2a:fc:
eb:19:8a:4e:24:2b:10:14:ee:2c:5e:66:c9:46:00:
52:af:d5:b0:5b:9d:71:54:86:e6:ed:c2:97:49:41:
db:52:36:76:54:a2:37:b9:c4:17:4a:3a:b0:76:23:
59:9c:4a:42:d2:f4:41:36:59:fe:5b:be:07:2f:d1:
b4:b2:1d:58:8e:e2:92:b7:52:21:95:06:9e:b7:cd:
1d:d3:eb:29:f0:e1:80:23:e7:dd:e0:fd:a7:3b:77:
6b:89:e2:6e:c5:84:00:6e:2f:ad:ea:3f:b2:ad:60:
d8:20:e1:61:fb:41:00:52:e1:16:0b:ba:3a:5c:89:
34:7f:6d:14:bf:25:2d:12:ce:f8:8a:8e:fe:d3:02:
0f:83:f1:86:de:7d:55:6f:85:08:9d:f0:e7:25:4f:
42:46:8f:b5:a8:71:22:9b:56:37:d3:ef:d8:29:a6:
f2:3a:6f:c6:29:1b:c2:5d:fe:f3:36:d2:43:07:45:
e2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:6E:6E:5A:01:65:56:37:31:CF:D5:9C:06:72:3E:2B:24:07:94:64
X509v3 Authority Key Identifier:
keyid:66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/dm5uWgFlVjcxz9WcBnI-KyQHlGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/Zt93QokBc5J5NSBqKO-_SBI-eHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.26.32.0/19
Signature Algorithm: sha256WithRSAEncryption
b1:ad:2f:54:12:80:ef:7d:ac:cb:33:21:0e:85:ef:17:01:53:
0b:40:b3:68:be:2e:c1:bd:ef:f9:ab:87:5f:82:9e:c4:7e:4c:
f5:fe:14:90:97:5d:e0:66:c9:59:23:48:5a:b3:e6:22:f2:ef:
a3:e1:21:85:ed:64:eb:de:ed:c1:8c:96:36:d8:c8:b8:ce:81:
0d:f0:26:2c:37:1d:57:03:31:f0:c4:00:c6:8e:c8:d6:58:f9:
9b:d0:91:3f:29:61:b1:5e:b0:0e:c4:c3:dc:d2:81:02:fc:9c:
60:f9:88:c9:c3:2f:d0:1a:d2:b2:26:05:65:22:ff:e2:42:85:
8f:29:12:7d:ce:45:68:76:41:e6:98:08:f4:45:cc:bc:d7:49:
06:a7:57:ec:32:ff:33:00:fb:a7:b8:e4:73:74:a6:4e:ce:89:
4b:f8:3f:a9:aa:6c:4b:ff:95:54:99:c3:32:13:0a:25:b2:e5:
68:2d:57:b8:bf:2b:ea:b3:6e:12:fa:2a:58:9f:2e:4d:5d:a3:
8a:7f:35:41:73:c8:49:3b:38:8d:76:b4:57:0d:de:a7:6b:27:
e1:ad:2e:ce:3c:2a:64:5f:d5:80:9c:18:86:a7:e2:3d:0e:18:
70:9f:8b:dc:15:a8:b2:aa:9c:e6:5b:60:2b:63:d4:fc:dc:02:
15:54:64:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:55 2024 by rpki-client on console-ams.rpki-client.org