Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/M5-FJKezCyu708ML82FHKim6vsc.roa
File: M5-FJKezCyu708ML82FHKim6vsc.roa (raw, json)
Hash identifier: abz2aF3PexWkp4ttHYxtRE6JPjf/THJm7L2C0t63zmY=
Subject key identifier: 33:9F:85:24:A7:B3:0B:2B:BB:D3:C3:0B:F3:61:47:2A:29:BA:BE:C7
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018C990396EA3E4C9CD697AB3BB7E9025FDE
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/M5-FJKezCyu708ML82FHKim6vsc.roa
Signing time: Sat 23 Dec 2023 23:29:58 +0000
ROA not before: Sat 23 Dec 2023 23:29:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48214
IP address blocks: 194.26.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:99:03:96:ea:3e:4c:9c:d6:97:ab:3b:b7:e9:02:5f:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Dec 23 23:29:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=339f8524a7b30b2bbbd3c30bf361472a29babec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cf:33:03:d8:ac:ce:be:d7:d5:b6:15:65:e8:
80:b4:c4:c4:f2:6d:41:97:28:71:1f:7d:1b:20:65:
57:d9:5f:ca:9f:f9:83:28:b4:3a:02:6e:10:99:74:
cb:c6:b3:ea:59:b3:95:03:e5:26:f1:10:eb:c0:a8:
cc:ed:f1:3e:6e:c1:bb:cf:a0:71:ee:6c:36:b0:d7:
5e:f6:02:a6:b7:97:0b:be:ee:11:72:22:b0:9f:82:
83:02:fe:7e:cd:84:b7:42:7f:f9:73:ee:8a:a0:6a:
7a:d8:04:50:0c:85:e6:98:96:7d:6b:ea:18:03:61:
1d:69:80:34:4e:6e:8f:61:21:0d:42:ee:c4:22:48:
d7:ae:a3:c8:3d:df:d4:e7:cd:bd:2d:b1:5c:d4:80:
c6:d0:14:b0:02:01:13:32:c1:87:1e:9b:a4:76:2e:
d9:02:53:c8:ba:19:62:56:8b:50:5a:56:34:6b:b5:
c0:51:25:16:9d:e0:50:78:2c:3d:a0:b3:34:bd:86:
f6:9e:31:7a:34:2e:b8:2b:a9:b0:fb:60:03:56:f1:
f3:2c:e6:4e:37:51:f7:19:d8:c2:e5:30:cb:ba:f4:
54:62:8e:08:d9:44:00:9e:ab:87:28:7c:59:fd:3d:
56:af:c1:e2:36:fc:e4:26:7c:a7:01:89:12:00:5a:
6b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9F:85:24:A7:B3:0B:2B:BB:D3:C3:0B:F3:61:47:2A:29:BA:BE:C7
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/M5-FJKezCyu708ML82FHKim6vsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.20.0/24
Signature Algorithm: sha256WithRSAEncryption
49:8b:d5:2a:15:db:7f:c8:84:a6:5e:dd:d6:d3:24:72:26:e5:
ad:b1:69:b0:e1:6b:a2:b4:ea:65:0e:d7:54:0c:dd:23:6b:bc:
b5:9d:fe:f4:a4:c3:23:06:f2:30:99:e5:e2:56:be:d3:52:4e:
ed:a6:44:72:9a:4a:71:f9:cf:a1:36:83:69:4b:ec:50:22:38:
e6:4a:0a:78:aa:a9:7d:30:8a:8f:c7:f8:5e:d7:a8:ed:3f:64:
c9:f1:ac:f0:1b:90:df:7b:73:f4:95:d6:1e:5a:a7:a3:df:0b:
ad:ca:d1:49:c4:12:17:e3:52:46:39:a7:de:65:b8:1d:10:06:
67:d5:fc:7b:60:a6:1d:d6:c4:9a:06:84:0b:05:c0:1f:af:c3:
4f:0a:07:da:af:4a:7e:1b:77:84:d6:3f:3d:58:0f:18:32:c8:
f3:e5:10:6d:73:51:ed:d7:05:c9:d5:1b:ae:fe:4d:0b:f5:66:
f5:ea:77:e2:7f:2d:77:04:f6:45:0f:2d:49:71:f3:7c:10:40:
05:02:da:a0:d7:47:f3:5e:67:d1:c8:79:c0:5c:4f:f1:cc:90:
ab:c5:d2:b7:f2:de:6b:9c:ba:44:5e:17:aa:6a:63:e8:b7:7a:
a1:59:ba:54:c1:57:66:32:e8:4a:17:dd:77:f9:2f:30:25:88:
48:1c:32:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org