Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/rfiBh9Ur8LsrKSxrWKki9dZFhgA.roa
File: rfiBh9Ur8LsrKSxrWKki9dZFhgA.roa (raw, json)
Hash identifier: 421UcktGZbucN7CNAx1gM3dvBN6LFdY4n8JdJpVzOr0=
Subject key identifier: AD:F8:81:87:D5:2B:F0:BB:2B:29:2C:6B:58:A9:22:F5:D6:45:86:00
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018F26D76BCB06BBDF5EAD7FFC95496268F1
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/rfiBh9Ur8LsrKSxrWKki9dZFhgA.roa
Signing time: Sun 28 Apr 2024 22:33:23 +0000
ROA not before: Sun 28 Apr 2024 22:33:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 185.226.182.0/24 maxlen: 24
185.250.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 May 2024 08:59:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:26:d7:6b:cb:06:bb:df:5e:ad:7f:fc:95:49:62:68:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 28 22:33:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=adf88187d52bf0bb2b292c6b58a922f5d6458600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:80:c0:ce:92:15:16:25:b1:7d:3e:04:12:88:
86:a0:90:37:b7:42:21:83:e2:48:63:53:b0:65:08:
c3:91:6c:62:9a:90:5b:54:e7:f2:cf:6c:90:5d:57:
92:26:b9:5f:93:b4:4f:82:4a:37:67:98:a9:8a:e7:
68:c9:74:e6:06:3f:96:69:45:5b:b3:50:c4:cc:36:
81:19:ec:53:ed:bf:f0:8c:26:ca:da:01:d2:12:df:
3d:d0:1c:84:5d:50:df:7a:d9:6f:5c:bc:37:c6:b7:
85:9d:a1:c7:66:24:17:a7:6a:f3:c4:0b:3f:8c:02:
fe:93:3d:39:48:72:4b:67:46:9d:bb:b3:a2:67:44:
97:c0:07:31:43:bd:64:30:e5:44:12:7a:17:df:ad:
fe:d2:b2:fd:c4:d1:90:5a:fb:0b:02:21:33:6c:f3:
16:0d:d5:f8:ef:92:d5:1f:e0:e9:cc:14:8f:5f:5a:
1b:5a:61:2a:e7:58:cb:65:c5:2d:2d:c7:55:02:7e:
14:49:ed:98:07:84:fb:a0:82:c7:3b:03:bc:1d:8f:
34:79:23:71:cf:77:43:c1:66:ba:c4:dc:40:50:83:
22:62:2c:8d:4d:93:c7:7f:81:2b:d1:3a:ef:6b:df:
e4:cd:b0:20:9a:76:cf:3f:8b:71:98:8c:14:9b:3a:
77:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F8:81:87:D5:2B:F0:BB:2B:29:2C:6B:58:A9:22:F5:D6:45:86:00
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/rfiBh9Ur8LsrKSxrWKki9dZFhgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.182.0/24
185.250.27.0/24
Signature Algorithm: sha256WithRSAEncryption
77:bc:e5:ce:e3:10:95:45:f9:c8:4d:54:23:d9:d3:d8:0d:b9:
fa:d1:b6:16:f2:6a:01:7f:12:1a:03:b6:ab:8e:31:6d:65:6a:
fc:27:14:1e:4a:d0:d3:44:ae:ee:7a:71:23:87:55:dc:c1:1b:
01:e8:8b:60:07:ef:2e:66:8e:cf:eb:d0:e3:af:a5:d4:fe:14:
0a:44:d9:bb:2d:62:a6:09:9f:cd:f2:13:4d:af:fb:53:47:e3:
61:f9:55:b7:ae:8c:9c:c6:29:b5:45:2b:eb:9f:79:5b:47:56:
92:5a:bc:d1:cc:88:f6:e7:5b:0e:fc:8d:65:e0:26:58:57:be:
44:21:3f:a1:6a:cb:2c:d2:e1:76:64:a6:45:9d:21:58:aa:ec:
5a:e0:2a:7b:2c:d4:fd:7f:12:c7:de:2e:24:3f:09:11:fe:c5:
7a:fa:eb:ed:a5:55:a3:d2:cc:cf:d5:bc:7a:e1:38:1d:b8:c0:
98:bd:c1:a9:53:dc:b4:ff:43:65:2b:dc:64:ca:aa:59:c7:20:
da:17:27:6d:ea:13:6b:ab:30:a3:fa:5c:77:40:f6:75:f8:2a:
6d:86:2d:3f:37:99:a9:13:7d:c1:1f:e2:14:7f:e8:ee:a6:78:
3b:09:c3:50:52:f9:fd:34:15:36:7c:ef:87:3f:e2:43:1d:15:
b0:cc:d6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 11:21:27 2024 by rpki-client on console-fra.rpki-client.org