Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/frBDhPu2hv_Eg9Wc0Veh7W9q_QY.roa
File: frBDhPu2hv_Eg9Wc0Veh7W9q_QY.roa (raw, json)
Hash identifier: zvzcCQbP52OgRwqg4Orjr8rVtnewV04akV1VfcRvL88=
Subject key identifier: 7E:B0:43:84:FB:B6:86:FF:C4:83:D5:9C:D1:57:A1:ED:6F:6A:FD:06
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018CCA2A4173312687AC98C56E6A4C1F59B5
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/frBDhPu2hv_Eg9Wc0Veh7W9q_QY.roa
Signing time: Tue 02 Jan 2024 12:33:36 +0000
ROA not before: Tue 02 Jan 2024 12:33:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48147
IP address blocks: 194.26.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 21:26:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:41:73:31:26:87:ac:98:c5:6e:6a:4c:1f:59:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jan 2 12:33:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7eb04384fbb686ffc483d59cd157a1ed6f6afd06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ea:8a:4f:79:c4:59:b1:18:1a:57:2c:55:aa:
19:cd:e4:e9:63:e2:9d:c0:f6:09:22:c7:d7:6c:d2:
90:4f:0e:70:6f:47:a0:76:d0:77:0d:2f:20:6e:99:
2c:68:20:67:b7:c4:a5:bf:78:49:6c:25:20:a7:76:
ec:a1:1c:ed:46:79:06:f0:13:99:1a:58:a2:02:83:
c2:b3:71:32:3b:5d:d7:05:35:f4:3b:1a:56:f0:9b:
83:6d:ae:40:80:b2:c7:49:55:63:8b:bc:1b:4b:70:
83:23:4e:b9:37:18:f6:d8:ac:77:0d:6b:af:5a:08:
9a:0d:5e:49:01:37:84:bb:8f:12:ca:11:24:5b:ab:
9a:e4:28:fc:66:f7:44:5d:1f:71:62:05:6b:62:61:
07:3d:22:28:37:1f:bd:20:ae:9f:2f:48:61:e9:cb:
2e:60:0b:14:2c:9e:d5:3a:d7:34:dd:5f:9c:ed:49:
89:43:74:83:35:7f:1c:61:1c:e1:66:fe:09:53:50:
1d:f8:bb:59:5c:b6:da:cc:d0:ee:72:e5:dd:2a:24:
46:ec:61:24:fa:68:6c:29:cf:10:b5:85:b0:f9:63:
2f:a9:cb:60:52:23:ef:9c:50:12:16:2f:e6:9a:f3:
24:f8:ce:2b:85:08:ce:5c:19:8c:20:c0:99:58:07:
34:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B0:43:84:FB:B6:86:FF:C4:83:D5:9C:D1:57:A1:ED:6F:6A:FD:06
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/frBDhPu2hv_Eg9Wc0Veh7W9q_QY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.3.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:0e:34:02:c9:8e:b9:4e:c0:7c:eb:bf:08:32:b3:a7:41:cb:
1f:eb:30:39:0b:ca:ba:16:f9:c3:3d:1e:8f:46:d5:df:6a:f2:
40:24:5b:c7:59:09:c6:4e:df:3c:86:a4:27:57:6f:4e:9a:5b:
0e:7e:75:a1:ba:cb:43:b9:27:11:86:52:8b:a3:9a:8d:9c:63:
c3:d9:77:16:2b:1e:dc:67:f2:47:f0:16:e6:f1:db:75:1b:ef:
c4:2a:bf:e6:5b:fc:cd:98:1f:82:aa:7d:c5:6d:52:88:50:4d:
43:e3:31:52:b9:52:0f:c1:f1:63:ec:fc:c3:92:f2:16:e0:5d:
1d:18:a8:ac:77:b7:c1:4f:4a:5d:d7:d2:6a:5d:95:a9:20:f3:
29:80:0d:92:2b:db:2e:41:c4:03:25:25:4d:c2:a5:ac:e1:6f:
35:7a:9e:52:de:bc:72:4d:83:bf:ef:15:18:3f:7d:f9:9d:f0:
64:89:22:4f:19:16:68:3f:e0:9f:da:ba:70:76:ca:b7:95:34:
1f:4b:e1:84:aa:06:e7:d0:58:1e:09:83:0e:fc:3e:ad:64:eb:
f1:de:e9:ee:ec:63:fa:90:ea:bc:fe:fc:b7:1c:79:ff:f6:c7:
ca:87:86:24:73:2a:4b:6d:f7:bd:b8:fc:ac:19:e4:4b:d4:eb:
b6:bc:62:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org