Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/bENcBxdMv7edKvItvgjSgYHYoB0.roa
File: bENcBxdMv7edKvItvgjSgYHYoB0.roa (raw, json)
Hash identifier: +EoBsIUFhpeJ5D/BfDB4iDWp+YEVK/VqXS8/PEVAAkM=
Subject key identifier: 6C:43:5C:07:17:4C:BF:B7:9D:2A:F2:2D:BE:08:D2:81:81:D8:A0:1D
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018CCA2877E7F35AA1F0177C33B63ED2B623
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/bENcBxdMv7edKvItvgjSgYHYoB0.roa
Signing time: Tue 02 Jan 2024 12:31:38 +0000
ROA not before: Tue 02 Jan 2024 12:31:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216169
IP address blocks: 185.26.32.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 18:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:28:77:e7:f3:5a:a1:f0:17:7c:33:b6:3e:d2:b6:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jan 2 12:31:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c435c07174cbfb79d2af22dbe08d28181d8a01d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:41:09:38:6b:94:ee:09:e1:9b:20:8d:e4:04:
71:eb:3d:d5:ae:cd:20:52:69:2a:b5:3c:c1:13:ec:
e1:cd:b8:8e:dc:d0:df:17:16:dd:9d:a7:d7:61:dc:
53:5d:67:8b:71:37:70:92:bb:03:2b:0a:b6:94:8e:
13:13:50:cf:be:d8:7c:49:4c:1e:00:92:c4:80:ce:
d6:09:79:6e:82:35:38:f6:eb:10:30:12:94:45:3a:
cc:16:85:56:21:29:7e:ff:b8:ff:15:6b:ac:6a:63:
e7:85:00:02:70:c8:11:57:37:89:e9:99:54:65:e6:
f5:09:98:3a:80:81:16:3e:a0:db:36:15:19:22:1e:
45:7d:64:9c:89:43:c1:7e:23:94:b3:c1:29:c1:84:
4a:01:88:89:ad:58:d0:9e:25:4a:ea:1b:4e:1d:1d:
0d:33:3c:ae:dc:55:a9:df:5f:76:5d:47:fd:c9:a1:
c2:0b:f3:da:23:68:f5:7c:1c:0e:ba:2c:a6:40:d7:
36:79:c2:de:9b:27:b1:23:d8:3c:19:b2:a4:2f:e7:
8a:c4:4d:b8:92:2b:31:12:69:9b:b7:13:a7:a3:01:
54:c1:f4:99:58:f5:b3:78:ec:e9:0b:44:05:4f:71:
ad:fe:b7:7f:b0:d6:d3:11:38:4f:6d:34:b1:ee:bd:
66:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:43:5C:07:17:4C:BF:B7:9D:2A:F2:2D:BE:08:D2:81:81:D8:A0:1D
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/bENcBxdMv7edKvItvgjSgYHYoB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.32.0/23
Signature Algorithm: sha256WithRSAEncryption
d0:c3:25:26:2c:11:16:a9:24:66:95:04:5d:c9:e9:d7:3c:8a:
fc:9a:58:23:b0:13:4b:30:9a:a3:6a:ad:21:71:a5:b2:b8:db:
11:e4:b0:21:22:29:f2:64:4d:a8:be:45:cd:36:dc:d7:24:e0:
c6:8d:f8:45:87:02:9c:1a:96:13:87:41:b4:d1:ac:ff:9d:70:
9c:dc:df:1b:56:75:53:83:33:e8:7c:de:14:03:06:66:c4:0e:
ee:8c:df:50:06:f6:14:aa:82:b6:5b:b1:2f:c9:d8:16:2d:5b:
28:0d:4e:7f:f5:33:2c:82:69:e5:96:df:e2:8e:cc:26:42:c4:
57:0c:57:a0:ce:90:e5:c3:e1:10:0e:72:22:61:f0:b3:93:10:
6e:8d:ba:d2:e2:6e:ec:3e:29:14:97:69:76:a3:29:44:09:40:
af:44:3a:8c:d8:c6:65:b2:3e:18:bd:e8:a8:ca:2e:8d:64:12:
fc:bf:6d:49:d4:0a:0f:a8:94:27:0b:39:1c:ba:d5:ab:9d:d8:
ef:24:b3:7b:09:ba:2e:86:41:c3:18:30:d3:37:b5:0d:3c:c8:
68:58:b6:16:3d:45:9b:65:97:3f:77:ff:63:07:7e:93:ca:07:
fb:87:e5:5b:de:a9:9f:7d:b4:6c:45:6e:a5:1e:ec:43:34:ce:
f8:b9:28:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 9 21:33:18 2024 by rpki-client on console-fra.rpki-client.org