Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/1-N43XeV8dxHNTGLYG13bH1pHVeU.roa
File: 1-N43XeV8dxHNTGLYG13bH1pHVeU.roa (raw, json)
Hash identifier: kU3y2b5zhgTU+90tWRrfmCX1YdC78CEnbm4ywjylZys=
Subject key identifier: F8:DE:37:5D:E5:7C:77:11:CD:4C:62:D8:1B:5D:DB:1F:5A:47:55:E5
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01909334456ABDE27EA4BBFC89C272A3DA7E
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/1-N43XeV8dxHNTGLYG13bH1pHVeU.roa
Signing time: Mon 08 Jul 2024 16:36:34 +0000
ROA not before: Mon 08 Jul 2024 16:36:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.199.213.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
185.250.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Jul 2024 18:51:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:93:34:45:6a:bd:e2:7e:a4:bb:fc:89:c2:72:a3:da:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jul 8 16:36:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8de375de57c7711cd4c62d81b5ddb1f5a4755e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:26:31:47:9e:d3:72:dc:cf:54:8e:ef:30:5f:
f9:73:af:8b:14:e9:b7:ef:3f:f4:12:12:71:21:52:
d9:a5:69:3f:7d:67:c9:55:88:e6:8b:30:48:1e:cd:
e7:46:fc:e3:df:ea:dc:3c:8e:84:be:63:65:fe:ee:
00:44:51:5c:7b:2e:d7:b8:e8:5a:b7:45:f1:44:93:
6b:03:cf:51:67:2a:3f:a2:9b:48:fd:af:d5:6e:5f:
f5:55:34:74:c3:f2:eb:07:07:be:3d:f4:99:45:82:
f3:c4:e1:c7:c8:53:6d:77:74:47:b7:50:85:c4:6d:
77:8f:6d:ce:94:94:3a:92:74:ec:e2:3f:f6:1b:2e:
03:1f:c8:64:60:21:a0:d8:75:8a:6e:ea:50:5d:92:
13:42:17:3f:c8:d0:9b:ec:31:1f:74:76:ec:e1:9e:
20:66:6a:b6:81:2f:7f:13:bc:31:25:f1:03:c2:63:
de:0f:6d:c0:62:6a:22:8d:3c:d8:00:02:39:19:f2:
f7:e1:a3:25:8d:8a:47:b7:10:c1:73:4d:5c:0a:13:
20:5a:d2:1a:51:76:69:ff:f2:81:02:00:9b:3f:8c:
a4:2c:1b:bf:31:3b:22:69:4f:ef:63:ce:f9:ec:92:
7c:30:da:b4:45:d0:bc:ce:20:cd:d1:51:32:35:51:
71:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:DE:37:5D:E5:7C:77:11:CD:4C:62:D8:1B:5D:DB:1F:5A:47:55:E5
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/1-N43XeV8dxHNTGLYG13bH1pHVeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.213.0/24
185.250.26.0/23
Signature Algorithm: sha256WithRSAEncryption
39:7a:7f:86:06:02:7d:d5:df:f2:86:58:ab:b2:14:e6:ab:22:
6a:02:b1:98:ed:f1:c1:69:36:9f:88:ce:89:e7:ed:ea:83:c4:
02:a1:51:f5:c8:4e:24:5a:eb:f0:6c:6e:6d:91:a8:98:ca:5c:
fc:83:e8:6d:31:1e:3a:c7:4d:ff:34:96:dc:52:ad:9e:cf:fb:
e3:16:4b:7f:d6:15:fa:43:47:55:c3:a6:cc:84:33:9b:e4:5e:
78:89:9f:ef:ea:99:7e:51:04:a3:0a:6d:71:0d:89:14:5e:39:
ac:37:20:f4:d2:14:c9:57:b0:26:ee:41:f1:88:35:12:f7:f6:
86:c3:53:3a:ad:ea:8c:6d:e1:b2:b5:36:10:6a:d7:79:f9:de:
07:68:7a:0b:16:fb:60:3e:b7:40:c9:3f:a2:be:eb:2e:d3:26:
65:67:f8:65:9b:a9:ab:a4:88:c5:99:84:5f:3f:2c:ed:34:c9:
74:56:1e:37:5b:79:11:b8:d7:8f:29:e4:6c:77:39:8c:1a:1a:
f9:49:56:45:64:ce:2c:f5:3e:9f:ac:50:e7:1a:d6:45:9c:17:
8c:7e:c6:97:7c:5f:24:ac:86:f0:3c:17:47:5e:4b:8a:d7:6f:
9b:b5:a9:49:fb:2e:32:7f:4a:06:55:6b:47:05:a7:e4:6d:bc:
a3:11:39:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 13 20:37:48 2024 by rpki-client on console-ams.rpki-client.org