Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/T26JCnO2-koSLjLM74VsnhZ4h8U.roa
File: T26JCnO2-koSLjLM74VsnhZ4h8U.roa (raw, json)
Hash identifier: kfYJHgrDa1LIVVGjKnCXUiVvW1lXqPiH8PahMwxodU4=
Subject key identifier: 4F:6E:89:0A:73:B6:FA:4A:12:2E:32:CC:EF:85:6C:9E:16:78:87:C5
Certificate issuer: /CN=215a409d27b9a69346324004694da11beae02dbb
Certificate serial: 018CC348A1B6C8B4782B4B53F0BA6ED42ADC
Authority key identifier: 21:5A:40:9D:27:B9:A6:93:46:32:40:04:69:4D:A1:1B:EA:E0:2D:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVpAnSe5ppNGMkAEaU2hG-rgLbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/T26JCnO2-koSLjLM74VsnhZ4h8U.roa
Signing time: Mon 01 Jan 2024 04:29:26 +0000
ROA not before: Mon 01 Jan 2024 04:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 185.134.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 20:51:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:a1:b6:c8:b4:78:2b:4b:53:f0:ba:6e:d4:2a:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215a409d27b9a69346324004694da11beae02dbb
Validity
Not Before: Jan 1 04:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f6e890a73b6fa4a122e32ccef856c9e167887c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:12:56:cc:0c:17:37:9b:87:3c:60:70:f4:36:
01:36:fc:aa:eb:29:2e:57:2e:3d:c0:7d:62:3a:30:
78:c4:96:96:70:92:3f:b5:54:0f:36:f4:b8:22:06:
2d:3d:2f:43:65:77:ad:8f:d7:d9:83:94:42:e6:a1:
19:5c:fb:04:05:ba:2b:a3:cd:7d:0b:48:6d:93:59:
9e:2e:d5:5c:30:23:90:89:b1:9d:df:44:0d:b5:ef:
fd:53:e4:29:08:e7:df:37:3e:e0:61:31:89:4a:d8:
2e:31:8c:c9:5a:25:a0:bd:df:09:72:74:28:aa:07:
00:0b:f8:81:53:1d:91:73:ed:5b:a8:08:7d:22:30:
26:7e:c2:0e:d2:18:9d:26:9d:21:d7:1e:03:a8:83:
65:b3:79:3d:c3:b5:c1:b3:88:40:38:4b:c3:7f:0f:
00:00:97:d8:43:c0:6d:f1:b7:9b:5f:1f:e3:3e:be:
3a:b6:ac:df:63:ac:cd:c6:3c:f7:49:36:c4:3b:fb:
19:e8:b3:f1:ec:21:20:65:0c:fd:29:a5:c3:88:48:
4d:c1:9c:60:f6:0c:e8:7c:10:b8:ef:30:bf:7d:99:
3a:b4:51:9b:6d:1c:85:5a:65:fa:eb:d6:3c:f5:a4:
b0:6f:ae:93:f7:18:bd:fe:8b:b5:f0:35:d4:11:09:
60:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6E:89:0A:73:B6:FA:4A:12:2E:32:CC:EF:85:6C:9E:16:78:87:C5
X509v3 Authority Key Identifier:
keyid:21:5A:40:9D:27:B9:A6:93:46:32:40:04:69:4D:A1:1B:EA:E0:2D:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVpAnSe5ppNGMkAEaU2hG-rgLbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/T26JCnO2-koSLjLM74VsnhZ4h8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/IVpAnSe5ppNGMkAEaU2hG-rgLbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.177.0/24
Signature Algorithm: sha256WithRSAEncryption
95:b5:05:d9:d3:5d:08:87:82:db:dd:ac:e6:67:18:76:ab:31:
37:b4:f2:1d:3b:df:81:df:cb:37:63:fc:3b:25:af:9f:c4:1b:
c2:16:50:61:29:50:bf:51:1d:f4:2a:ac:dc:c6:35:c3:0a:5a:
c3:32:8e:e5:ad:7c:e9:0c:b7:95:cb:f1:09:68:9b:f8:3e:fd:
da:a5:f8:09:06:95:51:9b:6e:3f:e4:9c:b2:b9:7f:4f:9a:17:
6d:2d:a0:aa:bd:91:67:8f:df:6c:49:73:07:94:db:ae:f5:66:
6f:d7:4d:60:86:71:26:22:9b:9e:aa:6f:0f:30:e7:69:d7:8f:
ae:7b:dd:4e:e2:d3:81:85:f7:d6:3f:86:4f:50:81:90:20:3d:
fd:52:ce:41:3c:cb:ef:19:67:11:e9:d8:ec:63:40:96:e2:69:
32:97:b5:83:ab:7d:7c:f4:4f:b7:d8:76:e9:7f:4b:3f:5c:41:
aa:09:a1:63:24:1f:4b:24:31:02:b0:3b:36:25:95:fc:98:c6:
ca:49:de:ff:c7:ca:cd:05:d7:ab:4e:3c:08:84:e3:c8:00:d5:
69:d8:20:31:81:38:2b:a9:6a:e9:f7:e7:d8:6f:88:5f:c7:95:
ea:7b:e3:47:13:4d:5f:32:1b:b5:8b:01:f6:5f:a4:09:96:80:
ec:6f:f0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 14 22:46:23 2024 by rpki-client on console-fra.rpki-client.org