Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/PyIRGfQssg-WoWrkpsUi6dwPBfE.roa
File: PyIRGfQssg-WoWrkpsUi6dwPBfE.roa (raw, json)
Hash identifier: RMryy0OUqIvXiVLUS31AhcFCRtiNt1VtZvJvad2pPjE=
Subject key identifier: 3F:22:11:19:F4:2C:B2:0F:96:A1:6A:E4:A6:C5:22:E9:DC:0F:05:F1
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 018DAF01B7E6E4CDB6C121739C353B5E10B3
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/PyIRGfQssg-WoWrkpsUi6dwPBfE.roa
Signing time: Thu 15 Feb 2024 23:02:21 +0000
ROA not before: Thu 15 Feb 2024 23:02:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198584
IP address blocks: 188.66.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 08:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:af:01:b7:e6:e4:cd:b6:c1:21:73:9c:35:3b:5e:10:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Feb 15 23:02:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f221119f42cb20f96a16ae4a6c522e9dc0f05f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ca:84:74:d1:ac:31:a8:1e:fa:a1:b1:07:a3:
98:f4:34:93:bd:b9:05:0c:98:a7:e2:ae:33:bc:93:
60:70:b3:34:0e:d4:e7:9c:48:73:31:23:ab:80:cd:
85:07:5d:05:0c:7a:94:0e:e5:69:79:3b:2f:a6:b7:
80:91:9e:53:72:ae:80:55:51:b2:e3:7a:0e:6e:3e:
f4:3d:62:15:fe:61:1d:db:cd:b9:96:cf:35:bb:d2:
54:d9:13:db:42:0e:f9:64:80:9f:f3:bb:64:07:06:
dd:fa:89:07:45:7e:cb:b6:16:c1:f7:a3:16:83:96:
91:78:4a:b0:c2:54:96:a2:a6:09:c6:bd:8f:ce:65:
b7:80:8b:1e:de:ca:62:7e:e5:d2:09:15:e8:8a:57:
d8:2b:a9:2b:37:38:16:d4:bb:6a:17:9a:49:0d:90:
39:15:1d:df:d2:60:fe:3f:7d:29:9e:1b:99:cd:47:
ac:07:7f:45:9a:9d:3d:57:ea:42:76:d6:48:5e:98:
19:31:9b:5c:1f:10:0e:f6:18:ed:fd:ac:09:87:ed:
b1:ad:7b:cf:47:5d:95:41:39:6a:f3:ea:b2:9c:96:
39:38:38:d1:a0:10:5c:e8:fb:53:52:f7:d3:24:59:
c9:94:bc:48:9b:1b:a2:f2:b7:d0:63:e4:e7:76:85:
15:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:22:11:19:F4:2C:B2:0F:96:A1:6A:E4:A6:C5:22:E9:DC:0F:05:F1
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/PyIRGfQssg-WoWrkpsUi6dwPBfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.66.26.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:e6:60:34:6a:d7:4f:70:93:d2:08:2d:04:3f:77:1d:2f:18:
5e:53:77:80:c4:5b:42:e9:81:6d:c6:65:21:92:35:05:f8:26:
f7:10:de:ea:4f:63:b3:bb:07:c2:9d:ce:12:17:cc:91:29:3a:
a7:37:83:3f:c9:a1:74:b8:8a:9e:76:24:db:dc:39:8e:00:14:
a5:9d:f5:ba:21:59:16:b4:f3:83:7a:1c:65:e6:2c:17:d8:f6:
f1:8c:2a:e5:49:4e:4c:bb:31:78:29:4b:b9:08:dc:11:25:8b:
f7:84:d6:24:02:39:3b:3f:29:79:c8:5c:92:5c:b3:58:06:61:
fa:99:d8:b1:d9:17:d0:84:89:88:52:56:94:81:3b:7b:d8:65:
68:b7:c1:07:4a:2b:ca:9c:a1:4c:41:f7:dd:fa:ad:de:2c:c8:
d4:b4:9a:f7:cd:2a:55:84:f5:b9:ea:73:60:da:57:d2:0e:8c:
38:17:8d:fc:e9:63:a1:49:33:1e:f3:fa:c2:ed:52:78:9a:e8:
62:b5:b4:74:93:50:bb:3c:97:1c:76:42:8a:b1:07:35:cd:9c:
3b:72:d7:37:86:39:8f:7e:05:4f:ab:93:0b:d7:48:44:b1:5a:
46:04:4d:a6:40:ab:e3:a8:ea:87:77:24:f0:5c:81:41:12:e1:
00:34:42:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 11:25:18 2024 by rpki-client on console-fra.rpki-client.org