Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/O-Kc2suWdSvmaoN0aFNP3SZWhUI.roa
File: O-Kc2suWdSvmaoN0aFNP3SZWhUI.roa (raw, json)
Hash identifier: brI7ZhIjQNfbUvULq3dj90BVjjO6YY5nCi+M7zVVqx4=
Subject key identifier: 3B:E2:9C:DA:CB:96:75:2B:E6:6A:83:74:68:53:4F:DD:26:56:85:42
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01884C841587A917C39506E20DEF22E3DB58
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/O-Kc2suWdSvmaoN0aFNP3SZWhUI.roa
Signing time: Wed 24 May 2023 06:48:24 +0000
ROA not before: Wed 24 May 2023 06:48:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.171.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
79.98.246.0/24 maxlen: 24
185.199.148.0/24 maxlen: 24
185.199.149.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 May 2023 07:06:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:84:15:87:a9:17:c3:95:06:e2:0d:ef:22:e3:db:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: May 24 06:48:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3be29cdacb96752be66a837468534fdd26568542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9c:b5:46:a6:71:ab:85:2e:7f:14:d0:5e:3d:
63:b8:c6:47:26:fd:5d:d8:a4:62:1c:b9:cd:9f:e3:
0c:dd:ea:03:0d:6d:6a:3b:db:ef:30:bd:45:e1:f4:
e8:05:03:f9:30:f6:80:07:33:da:52:26:8f:7d:94:
73:1f:e9:47:77:a5:d1:68:1c:e4:c6:34:5e:87:71:
56:85:da:c9:2e:2c:ab:72:b3:2e:b7:e1:53:6c:8b:
7f:37:04:7d:b1:d1:da:d7:35:21:16:8d:dc:ab:7f:
3f:fd:3d:9a:65:05:cc:6f:eb:77:48:a8:6e:de:a7:
13:ec:9f:b5:9b:0e:5e:0e:a3:aa:44:bb:a3:dd:7a:
28:f3:05:55:ad:3f:97:9f:04:cb:6d:fc:45:41:37:
ad:40:ff:11:ad:09:0c:b4:ee:fe:c4:db:bd:a2:95:
72:27:2b:0b:92:ec:81:6c:a6:80:49:7b:d6:48:48:
2b:37:cc:3e:11:85:c0:25:3a:29:86:54:4b:1e:72:
c7:70:7d:a4:c0:0e:f5:9c:52:74:9f:58:a4:3a:64:
bb:93:4c:e4:86:17:07:b6:6e:ef:fe:27:07:88:52:
80:34:61:f8:52:3c:1e:ed:8e:e0:c1:2e:ce:81:74:
e4:35:77:43:38:a9:86:be:fe:6c:6c:74:90:63:c6:
d9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E2:9C:DA:CB:96:75:2B:E6:6A:83:74:68:53:4F:DD:26:56:85:42
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/O-Kc2suWdSvmaoN0aFNP3SZWhUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
79.98.246.0/24
185.199.148.0/23
185.225.171.0/24
185.250.26.0/24
Signature Algorithm: sha256WithRSAEncryption
45:51:27:af:98:74:3b:1b:a4:c6:c7:e8:7d:36:dc:b2:b5:42:
fd:e1:a0:c5:f5:73:e3:f9:09:0e:b6:e1:b8:6a:c5:00:0f:c7:
50:4d:44:a7:6f:46:12:54:88:03:84:49:b1:82:88:80:f9:74:
ce:c8:01:45:b4:a0:e8:21:99:bf:0d:5d:d1:58:4a:8d:4f:44:
8f:f2:7b:ee:16:04:fd:37:47:35:c3:e6:08:98:99:32:9b:d9:
0c:55:9d:71:80:6c:29:5d:0c:a2:64:9f:34:9e:58:00:4d:f7:
62:84:eb:b2:90:c5:d9:2f:10:f1:2a:33:de:90:4e:3f:3b:65:
4c:98:a3:e1:3e:59:7c:4b:45:03:23:7a:db:b2:42:50:4a:a5:
39:61:04:c6:f5:9c:8c:5b:92:79:58:bc:21:3c:59:d9:a6:0a:
11:de:ba:b4:44:20:e0:5d:28:58:21:6b:58:22:ba:ba:d0:e0:
b5:fa:40:5b:e9:4b:67:46:44:ca:4c:e6:62:1c:f0:ad:80:0c:
b4:ae:0d:ff:7f:fb:c4:45:b3:c2:46:03:23:9d:21:47:c7:6f:
66:1c:65:04:5a:6f:91:76:23:cd:a0:d3:e0:62:a0:fe:e6:84:
73:02:db:ec:b1:90:be:29:4a:03:08:b6:46:b6:5f:0f:29:17:
31:92:23:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org