Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/A9L-RMz8uQlMsU4jdMzaqz4zvjA.roa
File: A9L-RMz8uQlMsU4jdMzaqz4zvjA.roa (raw, json)
Hash identifier: dw6Ju1cBPkM41lyhOrtVivcbQeclBZcsdwXU14e2pHo=
Subject key identifier: 03:D2:FE:44:CC:FC:B9:09:4C:B1:4E:23:74:CC:DA:AB:3E:33:BE:30
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01872CA7869DD59F610E5BF00489BF7A702F
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/A9L-RMz8uQlMsU4jdMzaqz4zvjA.roa
Signing time: Wed 29 Mar 2023 09:16:29 +0000
ROA not before: Wed 29 Mar 2023 09:16:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212669
IP address blocks: 185.199.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:a7:86:9d:d5:9f:61:0e:5b:f0:04:89:bf:7a:70:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Mar 29 09:16:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03d2fe44ccfcb9094cb14e2374ccdaab3e33be30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:36:20:59:54:03:0e:0a:06:87:6a:da:1b:69:
90:4a:65:08:4f:a6:e1:9c:89:94:34:91:27:d5:9f:
f2:87:69:bd:65:d9:c9:ac:b6:d5:da:ac:43:0a:1e:
2e:bd:4e:9c:65:a1:a8:52:5a:dc:02:07:b4:d1:7f:
0b:34:43:c7:68:47:e5:c8:45:c6:6b:da:08:9b:c9:
88:b1:36:2a:4f:c0:fa:4f:4d:d8:19:18:42:48:30:
36:00:44:72:4d:fe:82:9c:2c:f5:07:ca:1b:90:b9:
ec:db:52:ec:a3:42:9d:79:2b:c5:a7:31:4b:98:cf:
8e:d5:ab:40:b3:e6:8c:94:a7:64:32:33:fe:50:8a:
22:aa:a1:62:fb:8b:7c:d7:52:4b:db:53:a9:26:22:
11:15:f4:fd:fc:ec:71:68:0b:9c:26:41:f5:f0:34:
43:b0:32:94:e8:7c:d5:c6:69:c5:ce:c8:fa:7b:aa:
bb:9a:e6:cf:40:77:61:de:cd:3a:30:ea:77:50:0d:
e9:aa:14:ee:6b:e0:80:55:b6:68:bd:50:08:62:5c:
a6:13:5a:dd:21:e9:cb:55:26:1b:02:2f:52:76:1f:
e8:e1:b4:2d:0e:77:a4:9d:0c:01:34:7f:18:48:56:
5c:75:5a:25:eb:db:cf:00:1f:c2:4c:22:92:d3:44:
e5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D2:FE:44:CC:FC:B9:09:4C:B1:4E:23:74:CC:DA:AB:3E:33:BE:30
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/A9L-RMz8uQlMsU4jdMzaqz4zvjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.150.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:c3:97:cd:ea:15:1b:49:d8:9b:b3:ec:83:da:8f:57:6a:f1:
6b:bf:3d:0f:4c:0e:f6:67:a6:79:96:6b:78:ef:7b:da:87:75:
66:54:dd:7d:31:d0:02:db:b8:91:c4:8a:de:1f:5e:a1:c8:c6:
a2:2f:b3:c7:97:c0:13:2f:fa:5c:d5:08:f2:09:66:ba:96:f6:
27:57:12:5c:60:0d:90:17:18:73:b9:0d:ac:eb:58:e4:19:65:
e2:c9:ef:45:cb:99:d6:3a:2c:c2:6e:1c:92:fb:17:eb:eb:27:
fa:88:91:d1:82:9b:92:2b:a3:f5:9a:4e:34:c0:60:33:62:ef:
82:67:25:3b:b8:77:17:3b:6f:a9:5e:1d:42:f9:60:2f:fa:ed:
ce:4b:ad:b1:a8:37:40:df:62:7f:15:de:3b:11:7c:09:1b:3b:
f9:3c:13:34:85:91:0b:1d:b4:e7:ec:85:58:d9:87:a2:6c:c3:
7d:71:d8:a1:2e:79:e5:14:08:b1:5f:be:c1:74:43:20:31:90:
4a:ca:de:2e:49:50:85:f1:de:8b:4f:ff:da:e9:ed:97:e4:bf:
ee:47:b4:84:77:2d:af:fa:0d:b8:da:09:39:74:f6:ce:55:d7:
0f:bc:c9:b3:b3:7c:0a:3a:f1:02:a5:64:c7:ea:51:34:58:30:
4f:aa:4a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org