Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/1y3NpQVGTGQf_3XKIVJtguzBtyY.roa
File: 1y3NpQVGTGQf_3XKIVJtguzBtyY.roa (raw, json)
Hash identifier: LxCyPL+MKEucKY8hYsCovMjz3CeQxbxaiqt+NLqcf44=
Subject key identifier: D7:2D:CD:A5:05:46:4C:64:1F:FF:75:CA:21:52:6D:82:EC:C1:B7:26
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01893F62DF621B121387C922129521260285
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/1y3NpQVGTGQf_3XKIVJtguzBtyY.roa
Signing time: Mon 10 Jul 2023 10:39:51 +0000
ROA not before: Mon 10 Jul 2023 10:39:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393427
IP address blocks: 185.199.214.0/23 maxlen: 24
185.221.26.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Aug 2023 11:24:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3f:62:df:62:1b:12:13:87:c9:22:12:95:21:26:02:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jul 10 10:39:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d72dcda505464c641fff75ca21526d82ecc1b726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ce:bf:78:b3:6b:d6:7d:54:c1:7f:88:64:a8:
6c:3b:ff:6e:cc:17:60:ce:d6:11:39:10:c2:7c:75:
0d:ef:10:d3:2e:5d:74:f3:4e:da:4e:f9:a1:ed:7b:
c3:1a:98:8f:92:ce:71:bb:ad:c6:8c:9e:4c:aa:fd:
9e:9a:47:30:2a:2d:18:2a:ef:2c:0d:ac:ab:1c:98:
f9:fe:5a:a4:4c:70:c6:f8:23:c3:4c:ca:c9:21:0a:
db:5d:15:46:fb:e4:b8:17:0e:e1:98:d9:a4:6c:34:
8a:27:ae:a2:03:84:47:e4:b5:e4:3a:f1:b6:10:97:
d6:0d:b1:21:01:a6:e4:bf:40:67:c2:b1:1b:12:d2:
0c:a5:5c:df:49:6a:6a:58:18:2a:bc:85:26:2c:bf:
1a:04:c7:77:b1:c4:f5:0b:b9:1b:00:8b:3a:91:74:
57:8e:77:a9:97:cf:6f:2d:8b:ed:f7:e5:e9:97:d4:
b6:e3:e5:a0:ad:1b:6b:19:44:7c:34:e0:94:06:4f:
a9:c2:f7:70:ad:6b:fd:dc:52:b4:07:56:7f:54:af:
25:cf:bd:4a:ba:f9:fe:29:f7:5b:2e:15:ae:bb:0a:
9b:39:5f:4f:15:3d:d4:67:e1:b9:12:ed:4e:9b:92:
85:56:b1:0e:5f:24:e9:b0:76:81:84:58:45:27:8a:
35:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:2D:CD:A5:05:46:4C:64:1F:FF:75:CA:21:52:6D:82:EC:C1:B7:26
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/1y3NpQVGTGQf_3XKIVJtguzBtyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.214.0/23
185.221.26.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:41:16:3f:7e:ff:88:8e:9e:d0:90:f2:6f:82:8e:49:cf:a2:
71:76:7f:a7:3a:cd:99:5a:f2:a9:db:39:0b:d2:a4:aa:f2:d8:
4e:0a:1e:90:11:9b:26:76:2e:11:69:0f:10:5c:b8:26:cb:4a:
4c:25:91:80:be:79:34:f4:e1:db:8c:c1:e6:70:52:50:77:b5:
61:bc:28:25:ea:3f:46:51:3b:3d:5b:ff:fe:28:83:8d:20:ef:
c8:7e:7f:e5:70:6d:b5:04:f6:23:0a:86:6a:42:b7:50:7f:6a:
ba:09:b6:b3:9b:5e:e2:df:a8:08:41:21:8f:af:7d:b7:ea:46:
06:69:fe:d2:b9:32:4f:54:29:64:11:fa:fb:9c:e3:26:36:7e:
2e:9b:70:f8:2b:cc:23:72:b1:f6:b2:47:41:aa:8d:89:f0:c4:
c5:5e:4e:8b:3a:a5:b8:3e:63:7c:45:3a:6f:f2:42:ba:3f:ea:
32:6a:c1:ae:52:f6:66:99:99:ac:63:44:9f:dc:1b:41:a1:65:
7e:dd:09:64:2c:1a:37:32:1a:ac:7a:21:33:ec:fa:e7:94:0e:
78:ce:e3:1f:d2:ba:a0:f6:ec:05:0b:58:7e:9c:29:d1:84:37:
1a:2d:aa:0f:5a:ae:e7:4e:3d:99:80:94:85:21:98:17:d8:13:
6f:f9:08:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org