Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Vj-k8ljdCjQ3-5C6inUX9h5ZO9Y.roa
File: Vj-k8ljdCjQ3-5C6inUX9h5ZO9Y.roa (raw, json)
Hash identifier: 6rfbTnf6/nN25/LPDSsPfMbo9/9o3cigvkN2ijSxyV8=
Subject key identifier: 56:3F:A4:F2:58:DD:0A:34:37:FB:90:BA:8A:75:17:F6:1E:59:3B:D6
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 019068F13E6EDB31ADAB6E619EF354AD43B3
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Vj-k8ljdCjQ3-5C6inUX9h5ZO9Y.roa
Signing time: Sun 30 Jun 2024 11:39:18 +0000
ROA not before: Sun 30 Jun 2024 11:39:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 185.221.26.0/24 maxlen: 24
185.250.27.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 20:09:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:68:f1:3e:6e:db:31:ad:ab:6e:61:9e:f3:54:ad:43:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jun 30 11:39:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=563fa4f258dd0a3437fb90ba8a7517f61e593bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b0:b6:e3:c1:ea:af:d0:d7:a9:be:15:bf:c9:
95:34:f9:a9:32:99:a0:d2:5b:ff:fd:ca:44:d6:8f:
f6:72:10:45:76:d1:f2:a0:af:ce:06:f3:c6:28:8f:
f5:b7:f9:e7:f0:b9:9f:c0:1b:2a:d4:bc:cf:b7:78:
ea:68:eb:a1:74:e8:37:01:1a:be:c0:06:5f:9d:e3:
5e:d2:c3:5e:8f:e7:1a:c7:b2:44:c4:88:e9:0d:d1:
3f:87:90:fc:4f:f7:99:d3:b7:bb:2a:8f:db:ba:82:
87:cc:f7:a4:97:54:13:4b:08:3c:f5:e7:4b:09:58:
b7:ea:ec:ed:4b:41:ba:ec:0c:5b:35:14:8e:89:5f:
4a:23:a1:f3:00:20:7a:51:0d:7c:8b:af:6f:a7:a1:
ed:f5:af:ca:26:86:b4:48:d9:45:08:74:eb:9e:12:
32:27:35:f3:9e:94:3e:bb:2a:3e:93:8f:0f:9f:81:
ca:04:c9:7a:f7:d3:cd:f4:70:b2:78:ad:13:ec:8a:
af:9f:fd:f7:cc:31:73:46:7a:ac:47:ec:22:89:34:
57:57:ff:4b:6f:12:61:46:05:a1:d5:e7:c5:69:04:
27:08:9e:55:b4:b1:7c:18:1d:4f:e7:26:b2:90:db:
c2:3a:db:67:cb:82:74:c2:cf:c6:50:2a:e7:7e:90:
e5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:3F:A4:F2:58:DD:0A:34:37:FB:90:BA:8A:75:17:F6:1E:59:3B:D6
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Vj-k8ljdCjQ3-5C6inUX9h5ZO9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.26.0/24
185.250.27.0/24
194.146.92.0/24
Signature Algorithm: sha256WithRSAEncryption
68:a3:c9:b4:f2:e1:1f:cd:b7:cd:c8:62:5b:2c:e6:e2:d4:b7:
18:40:33:b9:c3:90:76:51:62:ae:7e:0b:32:06:3b:fd:71:9b:
59:76:b2:56:9a:e1:4b:fe:a5:f2:e1:ca:df:4a:e8:1c:4b:10:
34:a8:fd:f8:c6:35:2c:f2:7f:8d:56:cb:0d:e1:af:16:55:23:
c2:91:89:03:73:30:1e:1c:bb:89:62:5c:13:61:19:70:f4:7e:
c8:4b:e8:dd:b6:49:c7:48:39:e2:fd:eb:6c:94:95:2b:7b:b0:
cb:32:cf:fa:77:01:a7:50:3d:c0:ff:10:ee:f9:d2:6a:94:3c:
ef:5a:23:d2:ba:96:9a:61:58:ec:81:12:27:b5:04:50:2e:22:
10:3a:64:5b:10:ef:8d:94:45:a3:d1:35:a3:20:99:1a:c7:3f:
b4:66:4b:30:85:6d:53:17:6f:be:35:10:56:ce:9b:92:e1:79:
d0:8f:ec:90:fa:8a:21:46:73:e9:21:12:ac:ec:8a:04:d2:45:
a2:18:f6:b0:c0:70:2b:44:06:a1:fd:c5:c4:4a:a4:cb:99:05:
e6:12:f1:65:55:50:fa:bf:a2:24:36:ef:94:5d:19:40:99:53:
7f:c9:a0:8f:55:14:de:bf:ae:8e:6d:23:ad:42:c4:5c:49:64:
81:3d:d6:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 21:23:36 2024 by rpki-client on console-ams.rpki-client.org