Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/RmRHworP_vK822tagGMjfdqf6ds.roa
File: RmRHworP_vK822tagGMjfdqf6ds.roa (raw, json)
Hash identifier: MsPNwlkvXpgEXDXImw0POLX+ebOJyua/bPlUCDSJazY=
Subject key identifier: 46:64:47:C2:8A:CF:FE:F2:BC:DB:6B:5A:80:63:23:7D:DA:9F:E9:DB
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018BB011CBE66656AF826A2E1D2C7F276A7A
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/RmRHworP_vK822tagGMjfdqf6ds.roa
Signing time: Wed 08 Nov 2023 17:53:58 +0000
ROA not before: Wed 08 Nov 2023 17:53:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216054
IP address blocks: 194.26.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Dec 2023 23:31:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b0:11:cb:e6:66:56:af:82:6a:2e:1d:2c:7f:27:6a:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Nov 8 17:53:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=466447c28acffef2bcdb6b5a8063237dda9fe9db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:51:32:00:85:e7:b4:5e:b2:f6:c1:bd:90:62:
e1:1a:a0:b1:04:e2:f0:3c:4b:ef:cc:c3:03:32:d4:
a6:36:9b:f6:9a:05:c2:c0:5d:0b:fb:bd:64:0f:9c:
a2:72:ee:74:46:30:57:04:b7:80:ba:e8:4c:a8:14:
c7:8e:b3:5c:be:bc:fd:e6:07:1a:fc:fa:0e:d2:99:
54:e2:0e:ef:3d:dd:19:74:d6:10:c0:f0:f4:15:1f:
cf:61:72:c7:f4:ea:1f:5c:78:85:fa:72:8a:9b:a6:
a0:01:37:dd:58:d9:c6:9e:4a:7f:d9:f3:38:c9:f5:
c2:aa:38:00:c3:5d:16:5f:00:32:e0:86:31:c8:6a:
4c:9c:59:8f:37:41:5a:f8:bd:d2:6f:b5:a7:7e:14:
ea:39:bd:15:3f:cf:1d:86:50:5c:a1:a8:27:2c:c6:
e0:f5:d2:74:bd:38:b2:e7:b6:e0:01:cc:21:b3:5c:
84:60:9d:50:e3:8e:ec:da:ad:ab:af:2c:44:46:3b:
72:65:ba:3b:7f:29:38:e6:1b:e3:2d:38:27:7d:9a:
ce:cf:35:8c:4a:b9:a7:8c:79:b2:c6:34:22:01:2d:
8a:6c:96:5c:b4:26:f6:8f:57:59:2f:5c:96:63:21:
7d:be:28:45:b8:f7:aa:d0:8d:6d:dc:1c:56:cf:9e:
7d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:64:47:C2:8A:CF:FE:F2:BC:DB:6B:5A:80:63:23:7D:DA:9F:E9:DB
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/RmRHworP_vK822tagGMjfdqf6ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.21.0/24
Signature Algorithm: sha256WithRSAEncryption
93:a6:20:7f:ea:00:99:38:e7:17:05:6d:7c:93:23:c7:a8:e0:
16:a5:f1:6b:77:8e:d7:13:0c:a5:05:49:b0:4e:e4:12:ca:fb:
e4:28:d9:b4:0b:58:70:17:a3:be:91:0a:45:13:2e:2d:07:d6:
23:39:62:fa:60:a7:39:e3:94:db:36:60:de:50:23:45:b0:44:
66:77:ed:78:a2:9f:84:de:d1:65:d5:89:2b:47:58:f3:32:57:
93:61:b5:16:f0:9b:31:4e:f5:b2:1b:c5:1e:46:9a:e6:bf:51:
46:83:83:4d:c1:17:c6:78:7f:60:7a:52:7b:71:6f:82:0d:a1:
15:75:68:03:d2:3c:a9:85:d8:8e:cd:1c:55:94:85:fe:3a:7f:
0b:32:9c:79:ae:30:0e:3e:29:ca:e8:cd:68:29:f4:54:64:a1:
51:01:80:a7:d6:ec:9a:7a:05:f1:6b:a6:5a:eb:e1:37:e8:2b:
4d:78:13:3f:d6:40:06:4a:f9:e6:aa:e0:4b:f0:e2:81:ca:c6:
ab:9a:a5:78:74:07:b8:4e:55:c9:ef:e0:79:8f:56:52:50:21:
40:41:f5:17:76:f5:9d:0d:4c:d0:e0:1c:f3:95:86:f2:f7:15:
d2:1f:a9:db:5e:23:f9:6b:b1:79:2b:c2:fe:e0:0a:d1:d8:37:
c5:56:b7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org