Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/SwNWqfX3p7yRjEQYJ9dEHYPjOyA.roa
File: SwNWqfX3p7yRjEQYJ9dEHYPjOyA.roa (raw, json)
Hash identifier: 1hZ31oTOQAY9yz2qayQgQPYsW/+F+G+OIYnfLQfCoTc=
Subject key identifier: 4B:03:56:A9:F5:F7:A7:BC:91:8C:44:18:27:D7:44:1D:83:E3:3B:20
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01891AC6D70061D08A92C150740404308E2D
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/SwNWqfX3p7yRjEQYJ9dEHYPjOyA.roa
Signing time: Mon 03 Jul 2023 08:03:06 +0000
ROA not before: Mon 03 Jul 2023 08:03:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.225.171.0/24 maxlen: 24
185.199.148.0/24 maxlen: 24
185.226.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jul 2023 11:55:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1a:c6:d7:00:61:d0:8a:92:c1:50:74:04:04:30:8e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jul 3 08:03:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b0356a9f5f7a7bc918c441827d7441d83e33b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:65:3b:9d:d8:49:83:27:54:33:ad:8d:21:9e:
e1:b4:d7:27:9b:7b:2d:76:c8:08:23:82:af:56:94:
22:48:77:7c:e3:cb:03:ae:a4:d7:91:5c:45:dc:bc:
64:cc:cd:42:47:05:1f:9a:51:e2:79:17:22:ae:58:
32:68:5f:83:fe:f3:9d:b9:b6:69:c7:c9:00:ed:38:
65:1e:ba:7d:3c:10:aa:a8:39:8b:13:e1:05:2a:c9:
74:6d:23:e3:dd:3e:e1:69:a4:7c:e6:73:41:17:07:
22:e8:40:04:46:26:81:4e:86:3f:06:60:1a:8a:00:
9b:37:fb:80:54:3f:e6:6c:4c:91:16:fb:82:65:67:
25:84:2b:f5:6d:32:eb:38:81:19:0e:55:da:da:49:
fe:83:6d:30:e5:5f:92:92:2e:8f:63:cc:7e:39:92:
1b:76:3a:b8:5c:82:b0:21:6b:17:a3:89:9e:73:b5:
61:32:3f:47:a7:9a:d3:8a:59:d7:81:dc:37:9e:83:
87:a9:ef:57:ed:f9:85:c4:d1:66:87:dc:3d:67:14:
c1:1d:93:83:b7:70:b5:2e:7a:1e:8d:c2:e3:b7:65:
b8:65:58:cd:ba:b4:0e:88:7d:8c:55:29:d1:3d:17:
37:67:d9:18:0e:2d:b9:0b:1f:0d:85:a8:9e:ba:6c:
4f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:03:56:A9:F5:F7:A7:BC:91:8C:44:18:27:D7:44:1D:83:E3:3B:20
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/SwNWqfX3p7yRjEQYJ9dEHYPjOyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.148.0/24
185.225.171.0/24
185.226.183.0/24
Signature Algorithm: sha256WithRSAEncryption
92:d5:7d:43:7e:89:ba:52:68:b1:e5:d4:ec:f2:2d:77:23:76:
e0:90:1e:df:b4:e5:71:0d:ab:7d:a1:01:bb:58:9a:be:b7:60:
9c:27:51:24:77:ed:bf:80:b9:2b:8b:c7:8d:d3:1d:e8:5f:68:
40:8e:04:4f:f2:1c:4a:8e:50:e4:ba:76:0b:a3:d3:4d:50:18:
17:b2:26:ab:11:5d:73:b3:53:43:b2:44:06:13:74:53:6c:58:
41:70:c0:5f:94:9f:b6:27:42:6a:16:d9:b4:a4:3f:03:6d:fa:
ef:c2:a8:8b:05:4f:20:88:91:09:33:b7:c9:8a:4d:de:aa:1e:
ad:06:a1:9d:0e:83:35:95:dc:10:46:61:3b:ca:3d:02:68:c2:
47:4f:d8:43:e9:c3:f3:b3:97:00:d6:e9:36:57:36:74:33:11:
c4:3f:b1:31:5f:e0:35:19:2f:b4:a5:12:ec:ce:2f:09:5a:7b:
45:90:1f:6c:48:da:94:ab:9e:d6:e9:a5:ad:1c:62:ca:a1:cb:
a4:8f:63:54:af:2f:f3:e2:91:95:f0:38:6f:16:81:33:6a:f6:
51:4d:61:f4:7a:22:0c:b7:4c:f4:e7:2e:9b:2c:d8:b2:82:24:
51:b8:a7:c6:29:7a:32:4d:5a:86:17:f2:4c:85:56:aa:b0:f4:
2b:23:13:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org