Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/PU04NEsXm-wOMAHZKt0OwGpCzgg.roa
File: PU04NEsXm-wOMAHZKt0OwGpCzgg.roa (raw, json)
Hash identifier: oU5tvaEerU9bXviP14ybfM5PNmjYxqa8JPEedpkPlec=
Subject key identifier: 3D:4D:38:34:4B:17:9B:EC:0E:30:01:D9:2A:DD:0E:C0:6A:42:CE:08
Certificate issuer: /CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Certificate serial: 018E2362A199ED03CC56A4DED7F1EC2D790D
Authority key identifier: 0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/PU04NEsXm-wOMAHZKt0OwGpCzgg.roa
Signing time: Sat 09 Mar 2024 13:24:10 +0000
ROA not before: Sat 09 Mar 2024 13:24:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.33.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 18:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:23:62:a1:99:ed:03:cc:56:a4:de:d7:f1:ec:2d:79:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Validity
Not Before: Mar 9 13:24:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d4d38344b179bec0e3001d92add0ec06a42ce08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e4:9f:90:2a:b4:ce:04:b4:fa:60:96:4d:24:
c0:0d:c1:d1:32:d6:88:38:5a:d6:34:9b:3b:5e:8d:
16:49:4a:a5:ce:87:c1:88:43:41:36:03:ca:1e:e3:
22:21:a1:97:e5:36:fe:b9:31:af:00:69:ee:01:1e:
e3:17:dd:c4:d4:06:b7:9e:68:8b:aa:16:0a:c1:a6:
e9:ca:72:cc:04:cb:49:8e:53:23:90:08:2f:eb:55:
fb:44:99:d7:0c:ab:49:47:32:9a:54:e9:6c:94:28:
e3:30:b5:d9:7b:03:e9:f2:9e:cd:6f:1f:25:c4:a8:
6c:d8:3c:f1:f3:a9:29:f9:c3:8f:87:a9:6b:45:e0:
8a:23:0a:52:c8:1e:a1:78:51:9c:eb:b4:a1:a7:57:
42:b4:c5:9b:e7:1c:f5:f2:95:7c:d4:39:1a:40:95:
b3:1b:10:31:e0:a2:19:64:d3:d2:1e:2b:93:16:0a:
76:a8:3c:72:58:01:31:6b:4a:dd:82:36:09:24:d0:
86:b3:5e:20:d9:f9:99:b9:2c:eb:08:86:fe:3e:b9:
0c:50:01:df:ae:18:4d:74:03:16:6e:c6:8b:7e:01:
6a:39:30:a5:ce:dc:2f:50:77:81:6c:e1:a3:b3:34:
b6:10:46:9f:a8:5a:d3:d8:cb:cc:93:20:6f:c2:1f:
0f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4D:38:34:4B:17:9B:EC:0E:30:01:D9:2A:DD:0E:C0:6A:42:CE:08
X509v3 Authority Key Identifier:
keyid:0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/PU04NEsXm-wOMAHZKt0OwGpCzgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/C1-MlEfWFLhhgnY9kzMlDi2UEuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.26.0/24
Signature Algorithm: sha256WithRSAEncryption
03:77:d1:13:74:7c:42:c1:11:73:df:17:f7:3d:61:ca:44:88:
91:d6:9d:f2:6b:c4:5a:c2:b4:ac:7c:ee:6a:e8:88:22:e6:19:
1f:76:db:54:ec:ce:8f:ca:5b:cc:e2:8b:25:a0:c8:9e:89:c9:
e6:b6:31:5f:a6:4d:57:23:e7:e2:a4:51:3e:91:71:45:30:90:
ba:96:5c:59:1f:a5:99:3d:d6:b5:f6:01:8c:fc:2b:4d:5f:c4:
50:bd:62:2d:43:05:d8:c4:76:2e:77:dc:1a:d1:eb:4f:c1:ac:
2a:76:96:6b:c9:54:41:c9:c3:e1:78:0d:bb:66:50:d3:07:29:
80:57:c6:a2:90:ce:11:e1:08:31:36:57:ad:55:ad:ae:67:f3:
a2:a9:cc:f5:a7:03:79:4b:db:8d:05:35:27:f7:9c:18:df:23:
1e:1d:07:5b:c4:29:6d:0e:e1:3e:52:d4:4b:16:7e:68:b0:2c:
02:8f:dc:3d:62:68:25:9a:e9:4b:ca:b1:3d:84:5d:eb:f0:92:
21:18:d0:86:02:e3:1c:ab:ea:18:73:06:f1:7a:95:ba:6f:99:
b3:b9:c6:ff:38:58:07:a1:de:16:48:f7:0e:39:43:7c:e8:11:
00:59:f5:a5:8e:a5:30:a5:4a:80:ee:ab:48:7f:fb:35:4c:e3:
16:c5:5e:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 22:33:07 2024 by rpki-client on console-ams.rpki-client.org