Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/SH6Q3vG9BPpAMyfhemx3BqqJ3sg.roa
File: SH6Q3vG9BPpAMyfhemx3BqqJ3sg.roa (raw, json)
Hash identifier: YFLlZomT/KCrFK2FJZUPOVFt5poMbaIhavPGpRNzqCg=
Subject key identifier: 48:7E:90:DE:F1:BD:04:FA:40:33:27:E1:7A:6C:77:06:AA:89:DE:C8
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018CCA2A42CC06CB0EEDB1BEC80667A05389
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/SH6Q3vG9BPpAMyfhemx3BqqJ3sg.roa
Signing time: Tue 02 Jan 2024 12:33:36 +0000
ROA not before: Tue 02 Jan 2024 12:33:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52209
IP address blocks: 194.26.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 21:26:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:42:cc:06:cb:0e:ed:b1:be:c8:06:67:a0:53:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jan 2 12:33:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=487e90def1bd04fa403327e17a6c7706aa89dec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:92:40:7b:35:db:a7:89:a5:a6:34:04:bc:64:
f9:0f:dd:2d:9a:dc:54:7a:6b:ab:9a:de:30:aa:7e:
58:7d:c9:0e:1e:11:2a:5d:60:2d:af:7c:32:31:fc:
93:40:c1:94:4f:1d:63:bf:ee:b1:cd:2f:b6:05:90:
99:e2:fc:fe:b5:ed:24:8a:a5:2c:a0:5a:69:3e:71:
2a:4a:c1:d7:8b:34:89:17:86:cc:b2:65:2b:3d:22:
5b:a5:cf:a4:63:6e:91:e9:1d:8c:0f:5b:02:f5:46:
7a:42:c4:76:a9:0f:bf:25:95:1f:81:31:d3:d1:de:
09:25:ab:d4:4d:5b:d6:da:e5:5f:17:f2:d7:5c:0d:
fa:d8:98:69:3c:d6:11:f3:33:b9:f1:71:20:5f:61:
24:7c:32:f9:eb:1c:6b:ba:f7:b6:d5:cf:9b:32:fd:
67:9c:a1:ea:a5:05:fc:41:de:5e:2e:df:6c:7c:09:
32:8b:4e:f2:b3:2b:71:2d:0d:55:f9:42:b4:ca:84:
55:26:56:53:7b:e1:dc:ff:6f:66:75:77:62:a9:e1:
1d:62:7b:86:ab:e7:60:a5:9b:9f:da:9b:36:b7:b0:
a3:9f:ba:6b:5b:80:17:28:15:5a:9b:2d:58:7e:24:
bf:d2:22:9b:29:d8:9a:0a:a5:f8:40:6f:03:2a:91:
d1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:7E:90:DE:F1:BD:04:FA:40:33:27:E1:7A:6C:77:06:AA:89:DE:C8
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/SH6Q3vG9BPpAMyfhemx3BqqJ3sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.2.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:cc:a7:bb:57:a2:9b:f2:c2:7c:f5:7e:3f:5f:55:5e:6a:12:
3d:74:ce:9b:7c:f2:21:cc:7c:42:98:1f:1c:7c:48:e3:22:72:
b1:8b:05:1a:9e:4c:89:1f:a3:7b:0a:54:ec:ee:1d:83:b4:34:
81:78:55:f9:dd:96:b9:61:b0:2f:a5:8c:c4:0c:4b:15:e1:e7:
f1:7f:fe:1d:71:e4:96:cd:ac:60:cd:1e:ab:16:ad:27:28:14:
b1:07:09:54:91:87:38:cd:f3:dd:bc:88:93:66:38:4e:51:29:
9e:9c:c3:91:f2:60:f9:86:b5:13:64:0e:a3:c9:4d:5b:f9:42:
ea:a5:a6:4f:b4:4f:a7:4f:a5:14:4f:85:ef:ce:76:3e:04:a1:
c8:53:e7:4d:6b:30:22:4f:cb:1a:81:83:fa:cb:7c:86:cd:74:
cd:25:10:5a:1f:9e:0b:29:db:9a:4f:8a:42:27:92:8f:3b:86:
3f:0e:9d:c4:17:b3:53:78:6f:6b:12:17:7c:85:cc:70:77:50:
f5:07:d9:00:9a:d0:a6:cc:27:1f:b3:7a:41:3b:3c:f8:d8:ca:
0a:e3:9c:e8:88:5c:4f:de:b8:7a:b5:fe:22:92:07:e6:0c:7d:
e5:05:1c:d7:70:8a:0a:e4:d7:1a:86:05:7d:45:e2:c8:6e:2f:
56:c9:b6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org