Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/6rvJrdLxrRp9LwfEyKKG7QF4ghg.roa
File: 6rvJrdLxrRp9LwfEyKKG7QF4ghg.roa (raw, json)
Hash identifier: 1K1W6V0A7mks5X7NAJ225ugcG39Zm++8Ac2xjdevsjY=
Subject key identifier: EA:BB:C9:AD:D2:F1:AD:1A:7D:2F:07:C4:C8:A2:86:ED:01:78:82:18
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0190E9E4323960324BA39A51FA17BC115018
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/6rvJrdLxrRp9LwfEyKKG7QF4ghg.roa
Signing time: Thu 25 Jul 2024 12:36:04 +0000
ROA not before: Thu 25 Jul 2024 12:36:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.199.213.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Aug 2024 11:09:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e9:e4:32:39:60:32:4b:a3:9a:51:fa:17:bc:11:50:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jul 25 12:36:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eabbc9add2f1ad1a7d2f07c4c8a286ed01788218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:53:52:81:a5:35:c4:f5:c4:52:f4:a8:8d:87:
bc:ab:d5:8e:40:ab:db:18:13:24:3e:f1:16:52:01:
1f:d3:bc:65:c4:0a:40:b8:c6:ad:e1:64:fd:f4:f6:
c7:d5:50:91:53:09:b0:4e:ae:d7:24:93:13:ef:23:
10:a4:8f:88:d2:f3:20:1a:95:9c:bb:5f:cc:82:db:
0f:91:a1:99:57:6c:fa:0b:0a:15:eb:62:2f:0e:e0:
41:76:22:b7:b9:b8:20:13:02:31:ec:75:2f:28:5d:
dc:19:db:2f:9f:1e:62:47:d0:57:9b:bd:1b:c4:84:
31:77:67:06:fb:fb:2b:1e:b0:7c:ba:50:8e:33:8e:
a1:bb:c4:2b:44:a0:d2:ed:d5:f0:a7:73:2d:2f:84:
75:d4:3d:82:fd:59:c5:97:79:72:b1:a2:ac:5b:1a:
21:03:02:25:14:7d:c1:3d:04:61:40:50:65:50:f0:
9e:28:5c:6f:38:1e:6e:5d:9a:33:dc:63:d5:75:86:
4e:0e:76:c4:84:a1:15:f3:fa:56:10:bb:6a:5d:74:
fd:f0:8c:bb:3e:44:52:53:52:63:66:d1:45:f2:e2:
8b:45:5e:81:5b:5c:36:be:a3:b2:cd:f8:12:4b:55:
4e:f9:5a:d0:df:e2:a7:78:7e:3d:09:a7:92:94:fd:
1e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:BB:C9:AD:D2:F1:AD:1A:7D:2F:07:C4:C8:A2:86:ED:01:78:82:18
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/6rvJrdLxrRp9LwfEyKKG7QF4ghg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.213.0/24
185.250.26.0/24
Signature Algorithm: sha256WithRSAEncryption
63:b9:84:58:07:1c:1c:85:3d:8a:ac:ff:10:a5:3b:52:5a:06:
49:06:ba:73:b3:c3:8a:3c:f5:e5:4a:21:09:83:93:a7:c7:4d:
ea:c5:b3:db:10:c3:68:14:ae:1e:d9:47:48:17:9f:38:80:c4:
fb:ba:89:e3:c1:e6:8d:4b:31:a8:d5:53:05:df:4f:51:a6:e0:
ab:96:01:d3:bc:31:20:25:03:96:81:8f:62:cc:ed:14:60:3d:
de:b0:d3:6b:49:5a:d3:f5:1c:cf:8d:6f:8c:60:63:8b:5a:a9:
5a:74:4c:52:50:65:2a:b2:d4:c3:72:17:7b:7a:f5:5b:8e:dc:
bd:1a:0b:89:27:17:c7:e4:21:e3:e0:8e:6e:35:22:ef:00:19:
8c:c6:45:b4:8a:05:b0:f9:38:b7:fe:a5:0a:3b:e5:0e:d2:1e:
a3:48:d3:30:89:12:76:28:d9:1d:c1:9f:82:cf:9b:ce:81:44:
29:66:b8:48:9c:64:87:54:e2:ee:70:08:8f:4e:44:c9:01:a7:
e7:dc:a2:63:a2:2e:85:19:9d:9e:47:ea:b9:71:d7:ee:9b:27:
f8:95:8d:23:e5:22:96:fd:11:8f:0c:c2:e7:46:98:e3:d8:88:
5c:83:22:b3:50:31:ff:a8:36:ef:62:da:ab:9b:47:ad:c2:42:
ff:8d:27:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 3 13:29:01 2024 by rpki-client on console-fra.rpki-client.org