Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UPYXfMrmDF7sQ_Ln-aBn1_201yA.roa
File: UPYXfMrmDF7sQ_Ln-aBn1_201yA.roa (raw, json)
Hash identifier: wQlsLIDXrMuco1PqgudS61y8xn10sfrKuKHKgokB7J0=
Subject key identifier: 50:F6:17:7C:CA:E6:0C:5E:EC:43:F2:E7:F9:A0:67:D7:FD:B4:D7:20
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0190536AEC3529C5B6BE25032EDAC07EE1CC
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UPYXfMrmDF7sQ_Ln-aBn1_201yA.roa
Signing time: Wed 26 Jun 2024 07:20:34 +0000
ROA not before: Wed 26 Jun 2024 07:20:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.199.213.0/24 maxlen: 24
185.250.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jun 2024 11:39:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:53:6a:ec:35:29:c5:b6:be:25:03:2e:da:c0:7e:e1:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jun 26 07:20:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50f6177ccae60c5eec43f2e7f9a067d7fdb4d720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1a:88:69:cf:9e:37:4e:ea:a7:0b:63:f4:62:
ce:80:7f:80:21:d0:bb:91:6e:f8:7d:98:00:4f:0b:
b8:a0:22:ec:8f:a1:66:2d:e9:95:71:53:c5:8f:3b:
69:dc:64:b3:91:ae:a3:dc:c9:d8:48:dd:2b:56:ef:
25:ba:af:45:a5:58:dc:68:9b:74:cc:e3:96:9e:bb:
f8:a6:4f:b7:28:a1:fc:1d:99:ac:06:d2:99:66:cf:
20:25:76:ed:94:62:99:9f:d4:d3:72:d3:dc:fc:b3:
bd:2d:2e:83:a2:c4:7d:a2:ee:e9:86:a0:df:d1:63:
f4:fc:2d:03:ae:14:bc:77:0d:d9:5f:24:e5:c9:bb:
cc:a0:b7:f2:5f:63:53:04:2b:4b:01:52:54:ef:3f:
33:94:61:ff:f6:ac:e9:d0:bb:0c:4f:e4:c1:fe:78:
4e:8f:17:0b:ed:1e:a2:a5:a1:01:81:84:c4:0d:e3:
cf:71:a4:cc:4d:80:42:05:2b:4a:4d:8f:3a:ef:2a:
ab:f6:e1:5b:12:30:28:01:73:4c:85:ae:de:4d:76:
eb:79:65:c3:e7:03:a9:1d:ce:94:c2:6a:d7:1d:9c:
02:9b:9e:f5:88:22:41:54:68:e4:b2:c4:a9:60:b3:
e7:03:71:54:e5:32:8a:d7:45:29:d8:49:8a:29:56:
55:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F6:17:7C:CA:E6:0C:5E:EC:43:F2:E7:F9:A0:67:D7:FD:B4:D7:20
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UPYXfMrmDF7sQ_Ln-aBn1_201yA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.213.0/24
185.250.27.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:27:f1:e8:2a:42:fb:18:44:c9:72:57:c5:1e:b3:a0:1d:f8:
bb:b7:e5:c5:ca:c8:05:d3:cf:07:1d:83:57:e7:8b:1f:7c:81:
a5:24:61:62:24:65:3c:91:9e:28:57:eb:27:ee:1b:fa:4e:83:
96:cb:eb:a3:b0:18:14:be:3b:5a:8b:c3:77:a7:05:d8:ea:c7:
2b:c8:93:d7:31:0f:a4:23:38:e6:27:3e:e1:9f:41:7b:f9:12:
ce:b5:82:92:c6:3f:2a:8a:b3:25:fc:61:42:eb:61:e7:37:25:
6f:42:d3:53:77:96:26:2a:8b:f2:d1:de:3c:8e:90:a5:24:81:
e8:3c:1a:fa:b0:ce:b3:8f:4f:a3:46:5a:a6:e6:a6:9b:48:e5:
5b:1d:f4:85:d1:16:5e:78:3d:5f:4f:01:0c:b3:17:3e:c9:08:
50:ff:ff:f6:26:52:9d:bb:07:0b:39:5e:e8:a3:06:58:14:8b:
d0:0c:d1:b6:f4:a5:da:fa:4a:b9:f9:23:00:0a:66:a9:c0:0e:
7b:e4:c0:93:5f:c8:4b:85:ed:5c:01:39:55:49:3b:09:d7:00:
1b:79:f1:88:71:ef:90:cc:25:34:6a:53:32:62:21:66:45:1c:
d0:17:7d:a8:d1:f0:93:70:ed:23:50:c8:5c:27:4f:05:d0:cf:
de:f8:7b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 14:50:08 2024 by rpki-client on console-ams.rpki-client.org