Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/VaGOkvbeYoCuazh9CzUji9c2r-U.roa
File: VaGOkvbeYoCuazh9CzUji9c2r-U.roa (raw, json)
Hash identifier: t7nJZ9VsDj8W/alNvbCiL+IlTGW803zE7BYVdkSoQGQ=
Subject key identifier: 55:A1:8E:92:F6:DE:62:80:AE:6B:38:7D:0B:35:23:8B:D7:36:AF:E5
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018C99056C3CCA0019AAC95B5E3F6B50BCDA
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/VaGOkvbeYoCuazh9CzUji9c2r-U.roa
Signing time: Sat 23 Dec 2023 23:31:58 +0000
ROA not before: Sat 23 Dec 2023 23:31:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52209
IP address blocks: 194.26.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:99:05:6c:3c:ca:00:19:aa:c9:5b:5e:3f:6b:50:bc:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Dec 23 23:31:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55a18e92f6de6280ae6b387d0b35238bd736afe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:34:de:ae:87:fa:30:bb:f7:44:6e:64:cc:76:
0b:b5:39:5c:11:c8:f6:45:95:c8:a3:d3:c8:ea:06:
c2:01:d1:0d:ca:90:75:d7:73:f1:e7:ee:0d:dd:a1:
98:d4:e0:f9:8a:85:50:2b:14:a2:de:f6:a2:7c:a4:
3a:0c:a3:64:41:be:3a:14:ae:65:4e:43:ff:c9:7c:
d3:5c:a4:6d:04:8f:45:b6:96:c9:f0:0e:de:9a:99:
3c:8e:24:ae:11:ea:b5:0b:23:5c:41:dd:e1:8a:22:
78:45:e1:90:58:32:e9:b6:f8:86:64:57:15:94:e6:
a4:b5:21:be:26:96:d0:00:d3:c4:de:15:c9:0f:ff:
4a:fc:2f:81:68:63:f7:9a:2c:75:ca:b6:50:df:e6:
58:d6:f1:70:23:3d:02:ad:a0:58:b5:0c:11:d8:f4:
70:6a:e1:4b:6c:17:7b:98:09:03:c2:7d:e2:af:d7:
08:28:20:2c:a2:ba:b7:a6:0c:88:ae:7b:51:a2:27:
88:cc:2f:06:ff:0f:9c:c4:86:02:07:c9:f2:da:3c:
78:d2:45:88:da:bc:d4:f2:76:6d:15:a7:ec:67:be:
9f:ed:81:2f:3c:99:ee:5b:fe:a9:74:60:75:91:58:
d5:1d:bd:6d:14:40:af:63:dc:89:ca:38:e0:ef:93:
d0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A1:8E:92:F6:DE:62:80:AE:6B:38:7D:0B:35:23:8B:D7:36:AF:E5
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/VaGOkvbeYoCuazh9CzUji9c2r-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.2.0/24
Signature Algorithm: sha256WithRSAEncryption
02:fb:5a:98:36:d8:8a:40:d2:a3:b5:9e:f2:fc:be:34:5b:3d:
14:d8:a2:c0:29:4b:8e:04:f8:f1:c7:eb:27:fd:03:78:a1:8e:
85:ff:41:fe:ab:32:ae:42:b1:32:10:43:4c:39:2e:60:55:b8:
3c:7e:1e:43:6b:bf:a3:7f:22:9b:5c:ee:f7:b2:c6:b5:95:80:
1b:87:5b:ef:eb:f3:eb:d8:6d:91:fc:20:a9:af:af:b5:50:c1:
11:09:e9:69:1e:40:b0:6d:bf:55:35:0c:24:2c:34:e6:5f:7e:
36:eb:5b:36:6b:bd:c2:3a:04:e1:f8:b6:ca:ac:49:f3:07:81:
a2:de:75:96:10:c4:7e:26:6c:b0:db:bd:2e:49:4f:9b:0d:73:
3e:cc:c1:d5:87:ea:c2:3b:d5:44:c2:c4:05:6a:ac:07:74:4b:
43:bd:7e:82:e3:10:10:df:10:ce:75:05:e3:8e:7d:3d:1a:30:
69:b6:b6:b1:55:54:37:37:f6:d0:cf:ba:21:e5:0a:eb:44:32:
38:50:63:18:bc:36:16:9c:f2:ca:c4:f6:c0:45:79:86:60:db:
8e:53:35:78:a6:bd:65:e5:9e:5d:a5:58:90:6f:d4:41:12:4b:
54:df:4b:8d:87:08:6d:e6:70:d7:85:cc:57:c4:b5:44:3e:1d:
5e:d5:e2:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org