Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/To4APUO3xFL2AKl-kSFjb5OFfFc.roa
File: To4APUO3xFL2AKl-kSFjb5OFfFc.roa (raw, json)
Hash identifier: 6Me0zI3MkJgNELCDa27WQ214ikluJm327/ZMSHqfzH4=
Subject key identifier: 4E:8E:00:3D:43:B7:C4:52:F6:00:A9:7E:91:21:63:6F:93:85:7C:57
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018F7E87475A99907401FC23F04382E06266
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/To4APUO3xFL2AKl-kSFjb5OFfFc.roa
Signing time: Wed 15 May 2024 23:12:25 +0000
ROA not before: Wed 15 May 2024 23:12:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.199.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 May 2024 08:59:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7e:87:47:5a:99:90:74:01:fc:23:f0:43:82:e0:62:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: May 15 23:12:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e8e003d43b7c452f600a97e9121636f93857c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1f:82:a4:41:04:bd:73:71:6b:ac:d4:26:ef:
5e:da:41:c3:36:e2:71:36:96:53:05:2a:d1:b7:ae:
ef:10:1e:76:fa:62:be:9e:3b:a6:46:8a:79:2b:9b:
b5:d8:71:47:84:70:2a:c5:7a:b0:80:19:94:07:c1:
ca:9a:f7:bc:05:ef:c4:0b:02:2d:4e:0c:3a:29:30:
39:e7:75:01:48:4a:63:6d:ff:57:5d:b5:2a:ac:e1:
38:2e:ce:22:93:3a:39:73:b0:c9:bb:74:5b:bb:f7:
58:62:51:74:15:c4:33:57:85:67:7f:cf:0c:d5:77:
d2:f6:57:e4:f5:4f:be:43:cf:08:44:25:a7:a7:5e:
83:a1:99:13:a5:9d:02:0a:4e:29:a0:51:62:ab:44:
87:1a:33:00:1b:91:47:16:d7:18:07:12:52:5e:6f:
8e:5b:96:96:30:72:5f:b2:e1:d5:53:f9:da:b4:e8:
e2:38:62:f6:0b:55:09:88:c7:5c:60:21:6f:65:f4:
c6:59:5b:aa:e5:ff:97:20:2e:05:76:e4:12:c8:65:
18:3f:0c:a3:6b:f3:4f:e6:91:22:d2:0b:f8:77:44:
2e:e6:cb:43:20:5a:08:78:a3:a2:f7:31:0a:37:49:
93:de:5c:74:9a:fb:fa:10:6f:d0:25:63:2c:dd:ca:
92:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:8E:00:3D:43:B7:C4:52:F6:00:A9:7E:91:21:63:6F:93:85:7C:57
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/To4APUO3xFL2AKl-kSFjb5OFfFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.213.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:34:b8:df:39:ea:f9:98:70:36:24:f2:d9:13:a5:91:90:7c:
14:cf:87:66:1b:b3:d8:5c:48:ce:8a:fb:dc:d0:f1:5c:f2:56:
ad:b0:bb:3e:b5:0c:49:15:64:1a:72:95:9d:e7:b6:71:b0:22:
94:b8:c0:0a:02:99:fa:e6:48:1f:02:96:6e:c9:2a:e7:c2:a8:
85:1d:e7:4d:16:ae:cb:b7:07:34:18:aa:e1:79:12:d7:fe:ad:
57:0d:6e:4c:8a:8b:e8:fb:8f:e9:89:ea:04:60:df:04:2b:75:
e1:e9:29:42:ad:b1:5e:0a:75:b7:c7:f9:b5:d4:dc:f3:1f:90:
a6:cd:c1:10:10:cb:92:94:96:d7:4f:73:57:16:46:83:f3:64:
6b:39:76:6c:db:90:e8:5f:3e:2b:51:4e:28:11:29:f4:58:b4:
d8:62:fb:40:2a:c3:a4:ad:80:c6:05:b6:73:58:3b:1d:4e:db:
1c:b0:3a:77:6c:68:34:ef:af:0b:33:8e:a6:d6:2a:15:ce:72:
38:41:9d:22:b5:30:57:56:ef:cd:e5:2c:23:5a:ac:fb:a7:02:
53:35:69:43:a5:42:df:05:9b:58:07:ae:26:9a:2e:d0:79:41:
83:0b:5e:1f:0a:60:fd:20:25:66:a2:94:36:94:d7:1d:1f:40:
2e:0c:74:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org