Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/KZ2uFkadg4t_C7QILxbZ6qeGYiA.roa
File: KZ2uFkadg4t_C7QILxbZ6qeGYiA.roa (raw, json)
Hash identifier: XxcXfxRGjXsaw/bco+zvm16sZXZNq88w6tJdiUVMJC0=
Subject key identifier: 29:9D:AE:16:46:9D:83:8B:7F:0B:B4:08:2F:16:D9:EA:A7:86:62:20
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01877765544F69B29A46E92600DEE26816A4
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/KZ2uFkadg4t_C7QILxbZ6qeGYiA.roa
Signing time: Wed 12 Apr 2023 21:35:42 +0000
ROA not before: Wed 12 Apr 2023 21:35:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 150303
IP address blocks: 185.225.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 16:07:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:77:65:54:4f:69:b2:9a:46:e9:26:00:de:e2:68:16:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 12 21:35:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=299dae16469d838b7f0bb4082f16d9eaa7866220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:0a:70:9c:bf:8d:46:f1:cc:2f:5d:07:16:77:
4f:72:32:de:ad:00:90:91:27:dd:ed:33:2a:91:84:
b8:c5:c5:1d:c5:66:c6:5f:32:10:8b:6c:02:d6:54:
63:aa:16:8d:dc:7a:16:ea:40:96:99:e5:5b:49:fa:
ae:d1:3a:08:13:12:4b:1b:4c:73:b2:f3:0d:b9:e9:
b7:75:eb:a0:f9:88:cc:ee:c8:48:eb:c7:f6:25:f6:
73:c9:eb:af:80:9e:3c:2c:57:57:5e:85:42:8c:ab:
d4:f5:18:e0:be:a6:82:4b:14:40:f7:ea:8d:8b:60:
00:82:18:3a:40:ed:16:e5:8e:89:f3:58:bd:12:62:
de:53:c8:95:31:b1:46:2f:0f:ea:f2:af:4e:ec:9a:
a9:22:bc:43:6b:f9:a1:8e:f4:58:ef:e6:f9:f7:81:
4a:a3:e5:94:eb:fd:83:03:81:44:58:16:c7:09:d6:
38:ca:7b:2a:65:df:98:fb:f2:d4:e7:41:68:c1:4c:
4f:22:ff:10:60:62:37:9c:c3:e3:f2:df:8c:cf:0f:
69:b8:2d:3e:84:bf:73:e6:7b:dd:90:81:b0:99:74:
85:4c:dd:b3:95:9f:33:97:70:ed:98:86:a7:cc:51:
ae:dc:c9:5d:c6:f7:2d:c2:5f:a6:78:9a:71:4d:0b:
0e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9D:AE:16:46:9D:83:8B:7F:0B:B4:08:2F:16:D9:EA:A7:86:62:20
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/KZ2uFkadg4t_C7QILxbZ6qeGYiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.170.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:b6:67:25:0c:15:2b:df:b6:7d:dc:60:d2:93:ed:78:61:19:
aa:3e:aa:6e:35:f1:cc:9d:cb:29:f6:8d:27:a3:37:97:7b:d5:
7e:70:df:69:de:db:94:f7:5b:88:a0:1a:94:65:17:ba:bb:dc:
f4:c8:e2:82:27:70:6b:90:4b:59:03:98:87:ff:d3:28:94:0c:
5f:17:c1:7b:65:b6:5d:36:d8:30:b4:d9:1c:80:60:f2:e2:88:
dd:af:a5:ea:bd:d3:27:bb:b2:17:a0:41:59:a3:09:9d:62:74:
39:42:53:7b:e3:c9:c4:05:78:15:cc:be:9d:78:7c:4a:5c:35:
73:ab:f9:ff:ce:e6:22:26:d1:fc:04:4c:9f:3e:9c:31:19:39:
20:31:8b:b8:66:dc:8a:65:93:e1:6a:c5:c9:57:c5:64:05:f0:
9a:0a:97:4f:ed:be:55:86:12:b7:0b:de:04:c6:f5:d1:ae:84:
f2:02:09:ff:dc:85:10:66:91:81:27:36:c8:ee:73:d4:ae:77:
86:37:6a:44:f5:b5:b8:c2:e3:7f:fc:0f:0f:84:95:85:21:bc:
c0:16:28:a8:a9:dd:ba:1e:01:fe:b9:d6:1d:84:9e:38:3e:02:
af:c0:4e:ed:8a:4b:69:b2:d3:57:e0:d2:34:00:28:34:8f:fe:
45:e3:bb:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org