Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UC_j7XnWqq3vWuNzltY6yBGhml8.roa
File: UC_j7XnWqq3vWuNzltY6yBGhml8.roa (raw, json)
Hash identifier: kOnzOhjp3jAwGhmT0n2NgkRItWnHngsh/9EHXQ2FuIM=
Subject key identifier: 50:2F:E3:ED:79:D6:AA:AD:EF:5A:E3:73:96:D6:3A:C8:11:A1:9A:5F
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018EED681965B188385AC3BCA3DD66973ABD
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UC_j7XnWqq3vWuNzltY6yBGhml8.roa
Signing time: Wed 17 Apr 2024 18:53:26 +0000
ROA not before: Wed 17 Apr 2024 18:53:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.155.252.0/24 maxlen: 24
45.155.255.0/24 maxlen: 24
176.125.251.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.199.213.0/24 maxlen: 24
185.226.181.0/24 maxlen: 24
185.250.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 07:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ed:68:19:65:b1:88:38:5a:c3:bc:a3:dd:66:97:3a:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 17 18:53:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=502fe3ed79d6aaadef5ae37396d63ac811a19a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:06:17:1d:7e:2c:88:eb:cf:e5:02:2e:a8:5e:
21:da:99:5c:2e:b8:99:58:77:4e:16:8d:28:9e:8a:
9a:98:89:fe:9c:b0:c9:2b:b0:99:8c:0b:c3:4f:56:
c8:98:39:0f:15:8b:1d:db:bf:cd:e3:ab:41:6c:47:
04:27:8a:4c:8a:8d:3b:9a:92:6c:aa:8e:c8:ea:0b:
19:31:8e:8e:8a:25:79:b2:5f:ac:c0:93:49:3e:e5:
12:14:72:ca:13:fe:ba:12:c8:d3:ff:f7:03:15:6e:
b6:ec:ec:4f:bc:33:a3:06:c8:07:29:4b:64:9c:ee:
6d:62:04:28:1f:2a:3e:6c:24:43:49:77:4a:d2:6c:
11:06:1b:ee:e8:6b:05:cf:a7:b0:57:11:24:7b:ba:
c3:f8:b4:50:60:37:80:6a:c8:7c:73:5d:50:47:48:
a3:89:c2:e4:38:c5:c8:68:1d:57:ef:3a:5e:be:ae:
d8:e9:12:0b:30:ab:2e:2e:21:35:16:de:6f:aa:d9:
27:6d:11:bd:98:85:5d:7d:09:11:76:41:5a:73:d1:
34:a4:6e:96:00:7d:81:63:d8:b5:95:05:6f:2e:34:
e9:60:de:57:a2:a8:b5:97:d2:37:9f:22:db:93:35:
ae:7e:f9:cd:32:72:34:19:0a:9f:ac:d9:c5:92:d4:
4c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:2F:E3:ED:79:D6:AA:AD:EF:5A:E3:73:96:D6:3A:C8:11:A1:9A:5F
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UC_j7XnWqq3vWuNzltY6yBGhml8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
176.125.251.0/24
185.199.151.0/24
185.199.213.0/24
185.226.181.0/24
185.250.27.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:55:12:74:9a:84:4b:39:70:15:b0:27:2c:f2:7f:aa:61:03:
a6:79:d1:c7:af:d4:18:07:ef:c7:04:bd:f5:ee:de:20:ed:27:
9c:b8:b7:88:f3:72:6b:c5:36:75:c2:88:35:f9:6f:2c:be:64:
a1:c3:b2:81:ea:bf:9f:9f:cd:04:f4:e3:75:ee:12:67:ab:a8:
ca:36:a5:de:ee:99:ca:66:e9:55:0e:4c:3c:85:9e:90:5e:b4:
45:17:61:ed:94:53:a8:e9:32:26:13:90:f4:95:05:a6:fe:ef:
b2:f1:d4:72:97:b2:62:9a:21:e8:c5:58:50:18:f4:7a:c7:29:
18:8c:84:3f:e9:4f:5a:6b:35:f3:2f:06:de:60:ba:59:41:19:
0c:73:e0:17:f3:f6:89:de:f8:71:06:d8:7f:00:0e:b6:0e:3a:
f2:8a:34:f9:6a:09:49:76:e0:cf:15:07:38:5c:78:15:d6:30:
14:75:e3:1f:28:1a:38:e6:0a:e2:6d:36:ff:cf:33:31:3e:61:
e9:cd:c3:29:b7:13:c8:74:57:22:a8:23:9f:aa:df:8e:d8:4e:
4a:30:5e:94:f2:76:92:47:dc:98:af:3c:02:07:94:c5:5a:ca:
91:5e:38:0b:cc:81:aa:c4:f3:05:b6:74:a3:5e:dd:8d:b2:74:
c2:90:7e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 08:10:07 2024 by rpki-client on console-ams.rpki-client.org