Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/26IHG9rvoBYS0FmPwiJon5BtZIQ.roa
File: 26IHG9rvoBYS0FmPwiJon5BtZIQ.roa (raw, json)
Hash identifier: jJnJVKJZ9agY1tRtCHoZxPLRASbCXn1GnH+xdb3zecc=
Subject key identifier: DB:A2:07:1B:DA:EF:A0:16:12:D0:59:8F:C2:22:68:9F:90:6D:64:84
Certificate issuer: /CN=11b69b59d19f2987e49f1852d60bb1777f80a301
Certificate serial: 01856ED4E869AF37CF22B3E469C7000BA125
Authority key identifier: 11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/26IHG9rvoBYS0FmPwiJon5BtZIQ.roa
Signing time: Sun 01 Jan 2023 19:35:24 +0000
ROA not before: Sun 01 Jan 2023 19:35:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43647
IP address blocks: 82.148.0.0/21 maxlen: 24
89.232.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Feb 2023 08:22:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:e8:69:af:37:cf:22:b3:e4:69:c7:00:0b:a1:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11b69b59d19f2987e49f1852d60bb1777f80a301
Validity
Not Before: Jan 1 19:35:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dba2071bdaefa01612d0598fc222689f906d6484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:54:94:b1:a6:12:4e:49:12:65:b9:48:bc:d5:
30:e9:0f:91:82:d4:6c:4a:b6:5d:7a:85:e8:c6:29:
e2:fd:09:63:6f:8a:09:fa:64:fd:a6:b0:e2:d4:9a:
dc:27:5a:8f:ba:b2:cf:b0:85:df:6c:7e:57:f9:41:
ae:50:bc:fd:f6:c1:1d:fc:77:7d:ff:78:67:c6:87:
ed:30:c3:8f:10:8f:a7:69:91:e2:b2:04:66:33:a1:
e7:f8:75:2c:74:4b:58:ee:72:b7:4b:67:78:7c:1b:
bc:cd:91:58:47:d2:b2:4f:37:c6:df:8c:e6:4e:8d:
a6:bb:cf:fc:da:a3:59:ee:d2:cb:b1:1c:d7:c4:a2:
5a:4c:41:97:02:cd:a3:7b:55:8a:c7:f4:4c:61:63:
43:37:08:5c:19:12:06:ff:a7:c3:8b:44:a6:14:bf:
94:32:fc:24:ec:88:b8:d8:b7:3e:81:04:d5:c2:45:
73:f7:27:38:37:94:d0:68:35:66:ad:e0:fd:6d:1d:
58:1c:c4:da:46:c1:50:90:d3:52:c7:17:ac:30:89:
02:56:02:0a:25:d4:39:cf:7a:17:ab:2b:5c:9f:ee:
ae:ea:c4:b6:55:74:8e:a3:24:11:b6:71:f3:2a:4c:
d4:6b:3b:e7:f5:f2:67:fc:26:d5:e0:98:dd:fe:35:
59:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A2:07:1B:DA:EF:A0:16:12:D0:59:8F:C2:22:68:9F:90:6D:64:84
X509v3 Authority Key Identifier:
keyid:11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/26IHG9rvoBYS0FmPwiJon5BtZIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/EbabWdGfKYfknxhS1guxd3-AowE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.148.0.0/21
89.232.184.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:71:05:bf:67:f7:54:a2:c8:bf:8d:9e:98:36:3a:1f:fb:b4:
43:a8:e3:fd:ce:6b:1b:0c:bc:c3:7d:f4:38:eb:9f:33:b8:22:
71:c7:bd:67:b4:f8:ed:19:10:dc:11:3e:53:a0:34:d7:37:c4:
cc:6b:56:88:9d:d3:49:54:6b:63:28:37:d4:54:94:ef:47:49:
a3:9e:d4:e7:07:e4:eb:04:08:67:8a:c5:3a:4f:6f:ad:f7:02:
35:46:5c:67:4a:3a:27:8c:0a:f1:e4:2e:1a:1b:2d:b3:ba:d7:
d8:01:db:09:a4:fc:5e:13:36:b4:58:17:28:b6:82:e2:2a:ca:
54:f3:e7:f3:20:45:27:0b:d2:61:19:e2:38:7f:a7:a5:7d:ef:
5f:2c:28:d4:d2:18:e4:db:ec:70:2c:bc:a6:4b:ae:e0:a8:d5:
b7:88:6c:b9:e6:1f:d4:68:1e:4c:63:28:03:8b:54:21:0b:5a:
0c:94:22:90:24:2d:0c:5d:2b:dc:67:bd:97:83:27:e4:2b:7e:
7f:12:42:92:d1:7d:6a:80:4a:39:d7:1a:33:70:ea:ef:2a:a2:
8f:87:1d:10:af:de:ce:f8:5c:04:70:77:cd:33:45:9b:30:81:
6c:77:76:e3:b5:22:b6:ec:42:86:dd:8f:e8:d7:a6:7a:a8:bb:
25:60:35:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:18 2024 by rpki-client on console-ams.rpki-client.org