Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/4jT0YCa_eHPeMG18e1Wm03ElF-M.roa
File: 4jT0YCa_eHPeMG18e1Wm03ElF-M.roa (raw, json)
Hash identifier: Oj6tgxpSeXoILdqXRf7GzkhbB4xC+oGd7xl2fvNorGQ=
Subject key identifier: E2:34:F4:60:26:BF:78:73:DE:30:6D:7C:7B:55:A6:D3:71:25:17:E3
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0188A788105D3A7B238D1CEC052664888264
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/4jT0YCa_eHPeMG18e1Wm03ElF-M.roa
Signing time: Sat 10 Jun 2023 22:58:12 +0000
ROA not before: Sat 10 Jun 2023 22:58:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393427
IP address blocks: 185.199.214.0/23 maxlen: 24
185.221.24.0/23 maxlen: 24
185.221.26.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jul 2023 10:39:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a7:88:10:5d:3a:7b:23:8d:1c:ec:05:26:64:88:82:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jun 10 22:58:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e234f46026bf7873de306d7c7b55a6d3712517e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a6:fa:ac:71:fa:1d:a8:b1:9b:4c:d2:e2:bc:
f0:93:3c:fa:f9:53:a1:04:90:c1:c7:39:47:78:1a:
4c:89:e1:c1:bc:62:51:e0:cf:5f:9e:63:f3:d6:37:
d0:7b:16:43:c4:93:1c:a4:6c:da:d7:62:23:e9:4b:
e1:7e:84:14:0e:72:fa:76:61:5b:be:ce:43:ea:df:
d8:26:fb:26:f7:9e:e8:2d:cc:0d:41:7d:94:e8:3f:
72:b3:23:01:bd:b2:06:01:a0:38:f6:d1:1a:28:ed:
06:64:b9:38:ed:76:3d:cd:35:ca:94:dd:48:37:05:
9c:3f:71:bc:9e:5f:b0:a1:12:be:e9:62:87:31:0b:
61:20:4d:22:cc:1a:c3:ce:89:88:4c:2f:0b:ae:03:
61:3f:24:28:c7:d0:47:c5:4f:7c:2c:6b:b9:67:c1:
f2:38:59:30:cc:24:74:da:09:44:3e:2b:3e:07:96:
05:fa:ac:0e:cc:3d:22:2e:a2:1a:1b:5a:27:50:5e:
8a:86:e7:07:53:a3:4b:1f:de:02:aa:63:c0:1e:6b:
63:ce:53:92:9a:dd:d8:94:80:9d:73:17:96:26:a8:
09:20:63:d0:3a:bb:25:7c:18:37:70:63:fd:25:15:
12:73:42:74:e6:9a:27:e2:5d:77:3a:24:4c:54:15:
55:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:34:F4:60:26:BF:78:73:DE:30:6D:7C:7B:55:A6:D3:71:25:17:E3
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/4jT0YCa_eHPeMG18e1Wm03ElF-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.214.0/23
185.221.24.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:0a:0b:c9:40:0a:ac:87:3a:be:ad:8f:cb:59:6e:3c:f8:b3:
e3:ff:08:58:0c:30:82:d8:40:32:1b:5b:56:8c:0f:95:59:e2:
7c:33:57:d6:ad:37:db:94:14:11:b9:4c:01:59:26:bf:f9:64:
ba:66:2d:08:d3:d2:11:0e:b3:87:fc:d8:95:cf:71:fd:64:a2:
0e:4d:09:bb:6d:7b:81:91:b4:6d:3f:42:17:fe:e1:28:61:b1:
38:e7:06:f8:00:c1:4f:e7:94:15:c4:ba:f0:69:5b:84:e6:e1:
21:6c:2c:c1:c7:2d:af:3e:91:e6:70:8b:95:dc:99:e8:f3:16:
81:7b:54:ed:b9:1d:e6:6a:b0:c8:94:89:65:67:02:72:af:67:
bd:cf:82:3c:e6:55:76:89:97:b8:1f:18:43:94:2c:92:0a:17:
33:29:bb:0d:13:b0:d2:b1:64:c6:c6:40:ed:fe:52:a6:a8:f8:
4f:72:d2:cc:aa:33:2a:17:65:f1:73:19:55:00:42:fe:7f:e4:
35:a0:89:1f:d9:1f:c9:4f:94:b8:59:2e:cc:ae:9a:b0:ab:7a:
c4:a2:65:4c:cf:fa:91:1a:56:ed:76:07:a7:4d:8e:21:10:57:
ba:42:b2:4c:89:c2:ef:c8:25:12:a0:37:8c:38:c2:e5:50:7e:
cc:32:f1:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org