Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/rybKXk0DfmkLVYiIw63o4Ba-LZg.roa
File: rybKXk0DfmkLVYiIw63o4Ba-LZg.roa (raw, json)
Hash identifier: ZeVRs9Sd/cOSlW4pMyv/v9F8M7lv+u1yfNJOhxjHPy8=
Subject key identifier: AF:26:CA:5E:4D:03:7E:69:0B:55:88:88:C3:AD:E8:E0:16:BE:2D:98
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 018FA0DE6E01F7574E10324153B7D2C50DE4
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/rybKXk0DfmkLVYiIw63o4Ba-LZg.roa
Signing time: Wed 22 May 2024 15:14:42 +0000
ROA not before: Wed 22 May 2024 15:14:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 192.95.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 15:58:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a0:de:6e:01:f7:57:4e:10:32:41:53:b7:d2:c5:0d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: May 22 15:14:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af26ca5e4d037e690b558888c3ade8e016be2d98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:42:c1:21:17:62:35:ea:db:f4:9f:35:56:16:
f1:c6:64:d3:f0:94:94:42:2d:f5:86:4d:5e:96:ca:
cc:f7:ee:f3:cc:7b:41:df:6c:db:08:7f:ea:5c:5a:
92:47:68:07:08:77:aa:3b:d0:f5:af:8e:55:02:ff:
e7:d6:0f:74:0f:23:e4:c4:b6:b6:08:15:07:6a:e4:
66:b8:a2:46:5a:46:1e:20:00:3d:27:7b:73:30:8c:
f4:74:b1:df:db:f5:3d:50:ea:1a:71:30:52:ed:9a:
94:7e:22:f5:45:b1:27:84:bd:28:d3:ae:c5:18:09:
cb:6a:9e:d4:c0:69:2f:95:d8:d1:fb:34:8a:4b:5a:
e7:a3:a2:b8:28:cd:ae:fc:ab:9d:43:f2:80:6e:76:
ba:fc:05:f2:a3:fe:56:08:93:d4:0f:5b:9f:34:62:
c6:b5:b0:58:56:d6:7d:a8:a6:4e:25:46:3c:cc:45:
13:35:41:0f:f6:3d:a1:1c:08:52:6b:3e:76:c9:29:
0c:4e:8a:de:11:67:69:5f:60:c3:43:27:3e:5a:87:
1d:ed:54:29:d2:52:0b:6d:3d:ad:c5:e0:15:15:05:
f5:2f:b9:4c:51:c7:2e:a5:49:98:16:c4:f3:26:a3:
f9:15:f6:df:79:8d:40:d7:78:6e:48:4c:0f:d5:02:
06:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:26:CA:5E:4D:03:7E:69:0B:55:88:88:C3:AD:E8:E0:16:BE:2D:98
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/rybKXk0DfmkLVYiIw63o4Ba-LZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.95.81.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:9a:e9:fa:3d:21:40:b0:12:1e:17:87:a3:d5:a1:c5:4a:0b:
f2:92:3d:65:ac:69:c7:e8:3b:99:80:80:3b:07:24:94:af:42:
01:03:7d:f3:43:99:e7:26:3c:5e:ad:f6:26:0b:ec:bd:5d:1b:
63:8d:b0:d5:1b:35:a6:88:2b:8d:55:94:b1:2e:bc:7a:ca:59:
1f:ae:fe:b5:7b:a6:a1:d0:9a:ed:5d:d5:0b:6d:86:58:95:48:
27:e1:a2:de:53:da:fe:a1:7a:ca:73:78:3e:fb:d4:fb:e6:8d:
2d:20:8e:c0:8b:36:fd:e9:39:11:f0:e8:64:1c:9b:8f:d7:7f:
35:82:d0:49:58:b9:90:06:70:d9:4f:b3:fe:26:4d:a8:08:c8:
6e:50:38:16:5e:22:cd:10:37:23:21:ad:9e:1b:04:3f:96:43:
4d:9b:1d:84:bb:88:25:d9:af:7a:4f:a4:25:41:09:67:16:bf:
c8:fb:d5:d1:e3:c3:8a:5a:66:25:f4:02:59:39:84:b7:0a:26:
87:0b:76:c3:d1:11:d3:1a:6b:56:8d:e8:ec:c5:a8:fd:b5:fe:
f9:9d:cf:cb:18:96:19:8c:14:8c:0d:c1:8b:5b:f3:bc:63:d4:
70:67:1c:74:41:26:91:53:58:d0:e0:a8:a8:d9:b3:b3:f7:4f:
f3:3f:9b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:50 2024 by rpki-client on console-ams.rpki-client.org