Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/yf7oyWc5Lc6mhMHK6K2CGdTbEtk.roa
File: yf7oyWc5Lc6mhMHK6K2CGdTbEtk.roa (raw, json)
Hash identifier: n9QOQbbAOHkXDzD4covxj/8CqhjWHTTKq6biC4hT7xE=
Subject key identifier: C9:FE:E8:C9:67:39:2D:CE:A6:84:C1:CA:E8:AD:82:19:D4:DB:12:D9
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 018D6904C31D1103105B40B37CFE826C94F4
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/yf7oyWc5Lc6mhMHK6K2CGdTbEtk.roa
Signing time: Fri 02 Feb 2024 08:52:16 +0000
ROA not before: Fri 02 Feb 2024 08:52:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.66.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Feb 2024 23:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:69:04:c3:1d:11:03:10:5b:40:b3:7c:fe:82:6c:94:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Feb 2 08:52:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9fee8c967392dcea684c1cae8ad8219d4db12d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2d:2f:30:44:b9:71:bf:0d:5c:8d:f9:ee:46:
75:40:42:67:3f:4e:9f:e0:eb:49:43:66:c8:05:89:
30:2c:ef:88:28:30:29:8f:e3:1f:55:c3:d0:6b:76:
fe:2d:ed:ad:db:16:e8:31:3d:c9:c5:29:06:4d:fb:
ae:38:52:0e:ea:e8:6c:9c:2a:df:b5:84:cc:59:22:
84:5d:5d:c5:9c:25:ae:b2:07:15:7a:76:fe:2b:73:
9d:e8:08:dc:57:cd:fa:ff:21:06:86:3e:15:49:62:
0d:d7:f1:a2:d5:e8:85:b6:e6:b9:73:11:b6:a3:28:
73:43:3a:9c:6e:34:80:ce:db:08:8c:79:91:a1:9a:
44:d8:52:d6:0c:67:b6:f3:4f:ae:f0:3a:64:c9:45:
4d:55:02:d4:af:c6:5b:57:b5:26:f2:46:83:ec:b7:
87:b5:09:e2:6d:55:5d:c2:6c:5f:91:7f:bc:92:90:
f4:4b:70:35:21:11:b2:12:37:49:78:5c:11:b7:2c:
3c:48:d1:03:e9:26:15:32:d4:5b:67:b7:34:53:52:
0d:57:22:6f:d0:a0:89:e2:0f:49:0b:c0:66:c9:51:
49:90:36:87:eb:1e:66:e4:2e:67:5a:b1:81:03:d5:
7e:94:30:ab:7b:9c:7c:4e:b6:02:1e:18:6b:b1:77:
18:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:FE:E8:C9:67:39:2D:CE:A6:84:C1:CA:E8:AD:82:19:D4:DB:12:D9
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/yf7oyWc5Lc6mhMHK6K2CGdTbEtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.66.26.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:fa:cc:06:11:35:02:8a:0b:4f:1a:07:94:40:d4:9f:d9:41:
bf:e1:c2:85:c9:49:38:ac:8f:b2:9f:ad:43:31:43:63:eb:96:
15:c1:82:05:25:c3:e6:cc:6a:20:a5:fb:07:7d:be:17:81:c2:
22:2c:fb:3e:d6:19:5d:da:04:ee:a5:fb:1d:b8:c6:9d:55:30:
3e:08:d8:aa:4e:8a:a2:ea:41:a5:e8:81:e8:66:95:58:cd:49:
ad:ff:4e:1e:e7:1c:23:04:a5:24:5f:d3:ec:40:3a:56:bf:a2:
17:51:99:c0:d4:83:30:71:e5:bc:80:a1:35:b0:33:83:e8:35:
31:e4:21:79:fa:44:31:12:9b:4e:86:1a:09:d8:47:0a:fa:0d:
94:e2:7d:aa:d4:67:44:cb:e5:74:fb:a1:84:44:42:fd:83:54:
2c:c7:d7:d0:d1:92:5c:51:70:c3:26:38:6a:36:2b:ef:20:8e:
55:28:b2:3a:d9:4a:ab:9b:63:13:0c:7a:9a:21:b4:ed:bc:48:
5f:1c:67:77:68:ed:0a:94:ed:77:da:cd:04:20:de:c8:9d:f9:
aa:f4:80:52:bc:90:0a:21:55:c7:c5:15:77:00:d8:0e:38:12:
c2:ff:96:97:c5:24:e0:92:87:6c:84:d8:b3:ef:64:7d:2e:f2:
2b:d1:c9:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 16 02:55:56 2024 by rpki-client on console-fra.rpki-client.org