Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/IVDTrgabmV3Wy3rmIwMtgeMm4H0.roa
File: IVDTrgabmV3Wy3rmIwMtgeMm4H0.roa (raw, json)
Hash identifier: yBQkS7vwowFRVbPWCdOqhY9lXBLfNuwk+KKkTpX04zw=
Subject key identifier: 21:50:D3:AE:06:9B:99:5D:D6:CB:7A:E6:23:03:2D:81:E3:26:E0:7D
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018CCA2A4203D4440E63954807C876523F65
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/IVDTrgabmV3Wy3rmIwMtgeMm4H0.roa
Signing time: Tue 02 Jan 2024 12:33:36 +0000
ROA not before: Tue 02 Jan 2024 12:33:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48214
IP address blocks: 194.26.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 21:26:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:42:03:d4:44:0e:63:95:48:07:c8:76:52:3f:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jan 2 12:33:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2150d3ae069b995dd6cb7ae623032d81e326e07d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cb:8f:79:ec:99:56:f4:f5:e8:d1:b4:07:08:
c7:54:13:f2:1c:6a:82:d1:c2:d4:a4:3f:77:cb:b6:
1a:86:cc:aa:c0:1d:ef:3f:9b:74:16:11:f3:af:e1:
9a:30:13:70:0a:b5:21:df:9d:14:ba:50:1c:04:51:
57:4e:36:e6:50:53:23:2d:bd:13:38:9a:02:36:b6:
0e:82:b9:1e:ae:27:77:fe:bc:79:46:d3:62:6e:b3:
ff:b3:ed:02:52:90:64:aa:a1:06:c5:e7:ad:4b:be:
fd:11:3a:89:ee:42:32:35:e1:c5:18:2c:ee:2e:67:
e6:86:6c:bd:67:8f:e3:28:b6:44:db:d1:38:bd:ea:
f8:43:3f:67:65:a0:89:ed:b4:ab:6a:2d:c8:8b:78:
2b:1c:21:a9:d3:91:26:18:80:24:40:6a:8b:23:83:
aa:66:64:f0:ea:71:2c:99:c4:f2:aa:b0:ee:c1:84:
6b:fc:37:af:87:12:bf:eb:e2:91:f9:92:d9:e2:b9:
96:45:e3:4b:1e:47:e3:fb:fd:60:89:4f:a5:07:0e:
a3:84:d1:cb:56:8f:47:a7:ef:84:0a:3c:f6:81:ad:
90:41:33:74:35:80:59:c4:89:77:f7:47:0d:05:72:
0a:e4:8c:07:f0:17:6b:38:50:f7:5b:a1:fe:ae:1a:
ff:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:50:D3:AE:06:9B:99:5D:D6:CB:7A:E6:23:03:2D:81:E3:26:E0:7D
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/IVDTrgabmV3Wy3rmIwMtgeMm4H0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.20.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:c6:eb:4e:fd:68:55:9a:8d:a6:b6:d6:d3:ee:e3:3f:2a:98:
b9:37:74:9b:db:65:eb:81:1a:f1:4f:e2:1e:09:9a:5e:38:81:
96:92:75:ff:42:34:d7:67:4d:4c:7a:7f:7d:21:61:fb:a9:36:
b3:f2:d9:5c:cc:59:b5:37:c7:6c:a9:80:d5:94:55:af:4e:6a:
9a:7c:be:0f:28:7d:f0:66:ff:fb:05:a1:b5:e0:f1:7c:69:d3:
22:51:77:ab:3d:d4:66:39:d6:e9:3e:48:a8:ee:34:c0:9a:30:
ed:6b:1c:bb:4e:2e:bc:22:7c:63:a6:4b:74:e2:09:f9:ab:fe:
5c:6b:af:06:4a:63:9f:c6:55:4a:7b:88:06:0e:85:ae:e1:25:
c2:d0:51:10:d1:d5:12:a5:ce:b5:fb:2e:cf:e8:65:54:bc:ee:
5f:0f:4a:49:a7:db:4e:ae:98:cc:72:6a:eb:92:24:7a:9e:02:
70:20:b8:a7:2e:51:fe:93:c0:99:bc:81:2a:2c:aa:d3:62:de:
59:29:eb:e6:bd:c8:2c:c6:45:01:19:08:40:ae:cd:cc:52:c2:
32:40:55:7b:ba:a5:ad:22:a8:83:7b:10:46:9a:ba:0b:f1:e2:
85:9c:ed:6a:68:23:02:18:53:51:ca:1a:c0:cc:fd:00:27:6c:
5c:db:9f:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKkID1EQOY5VIB8h2Uj9lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjQwMTAyMTIzMzM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMTUwZDNhZTA2OWI5OTVkZDZjYjdhZTYyMzAzMmQ4MWUzMjZlMDdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysuPeeyZVvT16NG0BwjHVBPyHGqC
0cLUpD93y7YahsyqwB3vP5t0FhHzr+GaMBNwCrUh350UulAcBFFXTjbmUFMjLb0T
OJoCNrYOgrkerid3/rx5RtNibrP/s+0CUpBkqqEGxeetS779ETqJ7kIyNeHFGCzu
Lmfmhmy9Z4/jKLZE29E4ver4Qz9nZaCJ7bSrai3Ii3grHCGp05EmGIAkQGqLI4Oq
ZmTw6nEsmcTyqrDuwYRr/DevhxK/6+KR+ZLZ4rmWReNLHkfj+/1giU+lBw6jhNHL
Vo9Hp++ECjz2ga2QQTN0NYBZxIl390cNBXIK5IwH8BdrOFD3W6H+rhr/+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCFQ064Gm5ld1st65iMDLYHjJuB9MB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvSVZEVHJnYWJtVjNXeTNybUl3TXRnZU1tNEgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwhoUMA0G
CSqGSIb3DQEBCwUAA4IBAQAMxutO/WhVmo2mttbT7uM/Kpi5N3Sb22XrgRrxT+Ie
CZpeOIGWknX/QjTXZ01Men99IWH7qTaz8tlczFm1N8dsqYDVlFWvTmqafL4PKH3w
Zv/7BaG14PF8adMiUXerPdRmOdbpPkio7jTAmjDtaxy7Ti68Inxjpkt04gn5q/5c
a68GSmOfxlVKe4gGDoWu4SXC0FEQ0dUSpc61+y7P6GVUvO5fD0pJp9tOrpjMcmrr
kiR6ngJwILinLlH+k8CZvIEqLKrTYt5ZKevmvcgsxkUBGQhArs3MUsIyQFV7uqWt
IqiDexBGmroL8eKFnO1qaCMCGFNRyhrAzP0AJ2xc259A
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org