Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/aLdWUgDa1J7febj96JkjnX-GaJk.roa
File: aLdWUgDa1J7febj96JkjnX-GaJk.roa (raw, json)
Hash identifier: E5EabW8TDKq7ABQFU9Miqx9xc9kS7ltkvTeYIH1I7PI=
Subject key identifier: 68:B7:56:52:00:DA:D4:9E:DF:79:B8:FD:E8:99:23:9D:7F:86:68:99
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018D54E65D7CF5E9D0A814006CA7CF58FC50
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/aLdWUgDa1J7febj96JkjnX-GaJk.roa
Signing time: Mon 29 Jan 2024 11:06:39 +0000
ROA not before: Mon 29 Jan 2024 11:06:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59432
IP address blocks: 185.226.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 16:32:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:54:e6:5d:7c:f5:e9:d0:a8:14:00:6c:a7:cf:58:fc:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jan 29 11:06:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68b7565200dad49edf79b8fde899239d7f866899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4a:e5:78:fc:bb:50:75:f1:ba:07:1c:75:fd:
cc:9e:ed:95:9c:3c:e2:36:58:7e:38:ad:83:59:ec:
78:65:be:71:1b:4e:2b:b8:52:d9:88:79:74:68:c5:
a6:e4:8c:6a:46:45:d0:76:8f:df:cb:1c:b6:51:cf:
ff:2c:b3:05:56:cf:59:bc:a1:51:78:21:ff:df:0c:
54:aa:9d:b4:6c:b5:0f:b1:45:35:ee:5e:06:d3:84:
20:02:79:d9:a5:ab:6f:0b:8b:25:4f:0c:84:40:25:
55:2c:bd:98:e9:67:8a:2b:c8:53:51:b4:42:8d:dc:
ae:ac:20:84:f9:54:22:89:77:74:03:6d:ba:3e:00:
3f:30:c2:7e:ec:d3:4d:c9:07:7b:cc:5d:be:91:8a:
d5:7e:aa:88:c9:8e:33:ed:45:6c:38:58:5d:a3:3f:
70:5c:bf:e1:84:c2:bc:d8:5a:d3:b7:c6:3c:73:a8:
62:0f:3e:b6:e2:3e:c5:ae:d5:94:c9:56:c3:d7:e6:
55:c2:d3:49:6c:94:43:87:af:c5:14:8d:93:ac:54:
49:b2:b6:0b:e8:ec:d7:3d:9b:5f:4c:34:37:50:9a:
ec:05:c1:29:49:cc:69:50:89:9e:12:a0:58:c7:5f:
70:92:30:78:cf:54:ef:82:da:10:e4:82:74:8f:ab:
de:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B7:56:52:00:DA:D4:9E:DF:79:B8:FD:E8:99:23:9D:7F:86:68:99
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/aLdWUgDa1J7febj96JkjnX-GaJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.181.0/24
Signature Algorithm: sha256WithRSAEncryption
10:72:d6:a9:88:b4:30:53:71:f9:57:21:af:26:f1:a8:e1:33:
13:6a:40:1a:ff:6a:49:3b:29:ad:cd:12:62:db:dd:3c:82:50:
7a:dd:1e:60:ab:11:f5:ce:91:b1:59:a0:e2:65:0a:9d:dc:4e:
c4:6c:1c:e7:9b:01:48:d4:e8:8f:da:c8:26:d9:be:1f:89:f3:
98:43:ec:03:76:95:82:a5:60:77:ca:e9:e8:47:1c:18:61:12:
dd:0d:b8:97:1f:27:0b:05:6b:e0:cd:66:83:c0:c7:24:62:ee:
ce:55:76:01:95:a4:02:5d:da:80:19:c6:59:09:56:13:d0:1b:
d6:6b:74:84:31:58:70:41:5b:74:46:5a:f2:ac:b1:93:24:9f:
8d:5c:f7:8f:29:d6:ba:d9:07:24:b6:3a:c7:60:55:06:a1:cd:
a9:e1:2c:b2:10:4c:8f:48:56:4a:47:39:fa:f2:1e:ee:49:2c:
3b:33:02:51:5b:32:ef:5d:41:0c:88:04:e9:2e:d5:7a:52:4a:
bd:f6:80:2b:fd:1c:6b:33:63:29:b2:96:c6:6d:28:aa:55:9a:
a2:ad:5b:59:08:e8:c5:d0:fa:7b:18:ad:fb:69:59:77:46:03:
00:e6:29:b3:e9:75:81:29:76:60:16:6b:e2:4d:90:2b:fb:f9:
55:2a:2a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org