Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/E6PZ45rcShTw8oPbet3X17QAT50.roa
File: E6PZ45rcShTw8oPbet3X17QAT50.roa (raw, json)
Hash identifier: NrmH5ck20FyMk/btkw948eG00/o5RLX10VLJ+SUCL/g=
Subject key identifier: 13:A3:D9:E3:9A:DC:4A:14:F0:F2:83:DB:7A:DD:D7:D7:B4:00:4F:9D
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018B329C2593343CF575903CAEB3C8C3F12B
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/E6PZ45rcShTw8oPbet3X17QAT50.roa
Signing time: Sun 15 Oct 2023 09:12:55 +0000
ROA not before: Sun 15 Oct 2023 09:12:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199614
IP address blocks: 185.199.214.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:32:9c:25:93:34:3c:f5:75:90:3c:ae:b3:c8:c3:f1:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Oct 15 09:12:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13a3d9e39adc4a14f0f283db7addd7d7b4004f9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:81:c2:48:74:7c:f6:7b:0d:34:69:a5:c4:c1:
e6:8c:15:c1:cc:d8:8f:79:35:c5:37:ef:ff:22:0b:
d2:e6:7c:ff:54:c2:d6:da:bc:ba:15:b1:c3:22:e4:
ab:b4:84:f0:51:9f:65:1b:5d:5c:a4:e5:01:72:c7:
61:f8:01:a9:14:2a:6a:d8:7a:b8:4a:35:83:a1:1a:
92:fa:94:16:ad:45:36:f9:77:97:26:66:a0:f3:31:
44:2c:0d:db:f1:f7:14:43:86:ac:cb:40:a5:de:ea:
b2:4d:12:2c:35:ed:27:70:35:57:ee:10:ae:2b:3a:
1a:39:79:fd:c6:d6:b8:4a:6e:b8:77:68:6c:dc:96:
8b:7e:28:0b:b8:f8:9a:98:fb:78:b0:e5:e0:23:d1:
35:e1:22:77:fe:15:cf:b1:84:69:2c:80:3b:ec:9f:
e1:bf:c2:0f:8c:fd:f6:91:cc:55:c7:7c:c2:6b:db:
13:0f:12:6c:d1:e2:f1:8b:81:b3:1f:d9:d0:4a:e9:
08:32:ee:a9:ee:26:c2:06:9e:63:d0:4a:f0:74:5a:
9e:dc:d2:81:5e:35:4b:22:3d:8c:59:1d:8c:b1:08:
39:30:f1:31:47:ae:08:a8:24:c0:c6:55:8d:90:45:
02:64:35:61:85:f0:84:cd:27:ca:e9:ec:fe:09:82:
21:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A3:D9:E3:9A:DC:4A:14:F0:F2:83:DB:7A:DD:D7:D7:B4:00:4F:9D
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/E6PZ45rcShTw8oPbet3X17QAT50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.214.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:b0:23:a7:fa:f3:c4:74:c8:77:af:0b:c5:32:ba:36:af:00:
10:c5:b4:d8:02:f5:fb:95:92:98:7e:32:dd:3a:b0:4b:bd:5d:
32:5d:92:8b:a4:6a:31:5e:6a:3a:e3:19:b0:f7:7f:f1:8f:02:
90:64:77:4d:d8:89:18:da:46:3f:68:5d:b8:b0:18:7a:0b:fb:
3b:b5:8d:82:dc:c7:06:64:af:d5:d5:b9:e6:f0:e2:5d:73:dd:
bc:9d:97:9b:63:85:06:78:ba:7e:cc:89:57:01:91:ae:62:18:
15:15:73:77:17:1f:39:cf:66:14:4b:89:af:27:99:12:f7:48:
11:f2:82:de:16:ce:a2:7d:80:0d:d5:f4:bc:79:4c:04:ec:82:
5a:e1:ce:c5:f5:0e:20:93:84:d2:1a:ad:1e:8f:12:a4:06:f8:
4e:57:7a:e6:20:f5:a0:6a:0d:bd:0f:b6:ca:88:f1:15:3e:84:
13:6f:50:ee:21:83:74:f1:88:0c:ff:5a:5d:51:8b:e6:94:f8:
d9:28:50:a6:f6:14:8b:97:09:11:fe:91:a2:32:6c:4c:13:03:
88:3b:89:2f:f8:60:de:b3:93:b8:46:60:9b:d1:5c:6b:79:9e:
db:b1:37:7c:62:d3:a6:e0:44:6b:70:80:c5:bd:90:16:c9:30:
2c:ee:03:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org