Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/PpH1Cfi8H0tGaqTEgMITRRX7usg.roa
File: PpH1Cfi8H0tGaqTEgMITRRX7usg.roa (raw, json)
Hash identifier: TEq1zQ8qIcdBCZumNI3J4lmdymo/OU1a3+mxyh3yhLo=
Subject key identifier: 3E:91:F5:09:F8:BC:1F:4B:46:6A:A4:C4:80:C2:13:45:15:FB:BA:C8
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 01892CE700B6923BEB5E5DD8432BD802FCBF
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/PpH1Cfi8H0tGaqTEgMITRRX7usg.roa
Signing time: Thu 06 Jul 2023 20:31:23 +0000
ROA not before: Thu 06 Jul 2023 20:31:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 188.66.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Aug 2023 12:18:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2c:e7:00:b6:92:3b:eb:5e:5d:d8:43:2b:d8:02:fc:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Jul 6 20:31:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e91f509f8bc1f4b466aa4c480c2134515fbbac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a2:99:09:00:60:b2:58:d1:e3:87:44:4e:fe:
bb:ec:10:0f:e6:0c:be:d0:c7:ff:6e:e9:c0:92:64:
2b:da:a0:8c:0f:12:ff:80:0e:82:36:86:ee:1c:83:
ad:d6:57:5e:0c:e0:b9:58:6e:4d:52:2f:ae:72:a1:
ea:65:e8:25:75:54:a7:15:92:31:86:08:6e:02:52:
ed:8b:3c:18:9b:e6:9f:ba:81:5d:95:6f:24:4a:87:
05:13:60:e1:a5:f4:a0:3a:bf:ab:6d:1b:53:02:4a:
ef:cb:52:e8:16:c7:a8:20:a7:d0:1b:06:f8:7f:fd:
cf:f3:6f:48:c0:1f:2d:84:48:47:bd:b4:57:88:44:
91:0d:ee:f5:4d:8d:d5:fb:6c:a5:2f:c0:cf:cb:54:
e2:05:bb:49:b7:ee:27:52:07:c2:8a:61:44:a5:c4:
fb:a3:ec:ce:4d:bd:dc:b4:ad:29:60:44:72:6f:9a:
ae:78:b7:ca:09:9d:2c:3b:0b:f0:2e:6e:6e:31:9e:
df:8a:c3:c5:de:1c:ec:66:ff:01:fa:3d:c6:e9:cd:
f8:75:39:5f:87:ff:49:cc:c6:45:78:91:0b:f1:18:
b7:aa:cf:fa:9c:74:59:06:1f:9b:b0:db:d4:47:53:
ed:1c:e0:07:5d:4a:9d:ef:e1:66:1f:46:b7:22:ba:
c7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:91:F5:09:F8:BC:1F:4B:46:6A:A4:C4:80:C2:13:45:15:FB:BA:C8
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/PpH1Cfi8H0tGaqTEgMITRRX7usg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.66.26.0/24
Signature Algorithm: sha256WithRSAEncryption
62:8f:c7:63:3e:6a:74:56:7c:d7:7f:79:ea:04:63:98:5f:e8:
29:fe:72:fd:87:eb:ba:7e:65:e0:1e:90:fe:bc:59:64:23:78:
63:7b:07:d5:ee:66:ed:de:5e:6c:2f:92:38:c7:50:86:1f:b6:
09:7a:07:16:dd:48:b3:f6:d9:1f:9a:cb:c7:60:2f:95:25:ba:
6b:76:fe:a3:42:4f:a3:aa:25:86:c3:32:c3:22:9d:3e:46:82:
6d:e9:dc:ae:36:ef:77:68:0f:d4:2b:6d:45:05:d2:6f:eb:a8:
27:ed:01:c2:fe:8a:2a:02:f4:40:97:8f:1e:ac:ba:e4:12:f0:
0c:9b:87:4d:c6:9d:36:bd:1d:9f:52:a5:e9:8a:6b:77:a1:2c:
7c:d5:8f:fa:d5:27:70:6b:07:1d:b6:1b:15:a5:24:38:a8:4b:
b8:a1:3e:7c:fc:a4:01:a4:d2:05:23:a6:0c:d9:01:3f:62:cf:
1f:a8:fd:78:38:f6:8a:eb:c4:60:49:e6:65:d5:73:5f:16:73:
bd:47:b2:3c:0e:ad:02:f4:4c:98:14:93:10:7d:fb:1c:7b:a2:
30:eb:d6:10:1a:6d:d6:78:3f:ac:12:99:bf:66:e7:2f:be:7f:
c4:a2:96:f6:36:87:d1:dc:32:6a:01:4e:b9:22:89:0b:7c:6b:
cc:6a:00:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:21 2024 by rpki-client on console-ams.rpki-client.org