Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/bCAzSLw2IJ5si1-pUIHze2IEK1k.roa
File: bCAzSLw2IJ5si1-pUIHze2IEK1k.roa (raw, json)
Hash identifier: gX+PSMMjh/9ghse0S8i0JMU9giLt+fXtkiTltSYrxEs=
Subject key identifier: 6C:20:33:48:BC:36:20:9E:6C:8B:5F:A9:50:81:F3:7B:62:04:2B:59
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018AD02FA31F9E88C3C5C7D1ED652734EEF3
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/bCAzSLw2IJ5si1-pUIHze2IEK1k.roa
Signing time: Tue 26 Sep 2023 06:31:37 +0000
ROA not before: Tue 26 Sep 2023 06:31:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43641
IP address blocks: 185.226.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 11:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d0:2f:a3:1f:9e:88:c3:c5:c7:d1:ed:65:27:34:ee:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Sep 26 06:31:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c203348bc36209e6c8b5fa95081f37b62042b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:28:7a:b3:6c:dd:91:3d:11:7e:37:20:d7:d6:
ae:00:94:10:1b:18:2a:14:b5:ad:f3:76:74:31:71:
35:40:99:73:16:73:ca:46:4d:cd:76:dc:07:07:b6:
f5:da:e2:fe:8b:5e:58:e5:d7:87:47:13:d6:ab:63:
2e:f2:f9:0f:0b:39:d9:c0:6e:b4:22:fb:34:be:47:
58:9b:43:54:55:fb:9f:33:2e:1a:b7:aa:8e:86:50:
dc:15:17:d2:27:88:fa:c7:b2:9a:76:ec:83:f2:6c:
a4:f7:5e:46:b2:87:db:6a:f5:3d:fb:8f:40:de:ef:
85:7c:71:27:23:1f:ac:94:50:65:f2:4b:58:43:c2:
a3:15:6e:93:c3:0d:6b:28:d1:36:58:b0:68:1a:63:
19:8f:b0:e2:ee:73:5d:62:02:88:bb:7d:37:32:ce:
a5:76:11:1d:4f:18:74:7f:b5:fe:7e:02:7e:fc:f1:
e2:cf:88:9c:3f:8a:4a:22:e8:93:f7:60:f3:d9:9c:
9a:bf:95:3f:06:27:5e:36:23:49:14:fc:47:e5:54:
da:52:79:93:ff:6b:3a:78:29:7b:ae:21:58:6a:9e:
83:26:07:51:ab:bf:62:d0:a8:ba:1a:f3:c7:60:4b:
8a:7a:b1:cb:e5:47:7b:ce:4b:cd:3e:b9:ae:2a:ca:
df:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:20:33:48:BC:36:20:9E:6C:8B:5F:A9:50:81:F3:7B:62:04:2B:59
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/bCAzSLw2IJ5si1-pUIHze2IEK1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.181.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:0a:37:7f:86:57:16:bf:68:d7:fb:1b:b3:5c:c2:97:bb:50:
92:12:7a:89:00:28:5e:4b:fe:66:25:de:38:fd:30:e1:01:fa:
70:3e:21:9a:2c:1b:09:01:af:a3:56:c3:fe:e4:31:11:c8:9f:
4d:50:ec:08:f8:7e:a9:55:2d:e7:8f:2b:c2:15:a6:3d:0f:5c:
b8:bb:1d:85:81:6e:4c:71:8e:3f:ea:8e:8e:2b:8d:5f:c1:6b:
38:82:d5:a3:37:53:fe:e5:6e:a2:91:07:92:a7:01:27:21:d9:
70:74:04:b5:fd:ea:fe:04:a4:5c:9b:f9:dc:50:6e:d3:b0:a0:
85:f5:75:59:9c:d7:8e:92:4a:67:98:5b:6a:ef:d9:36:3d:6a:
be:12:7a:f9:d5:48:f7:b9:c1:96:c1:82:4c:75:46:4e:f0:e1:
29:ef:5a:f9:21:33:d4:46:59:e5:17:56:af:32:9c:64:6b:a9:
8a:38:45:2d:4d:9e:8d:87:03:58:56:13:6e:3b:5e:3e:f0:ac:
b6:15:d6:6c:0a:da:25:71:38:90:aa:4f:e9:a4:c3:fa:d4:88:
aa:18:98:15:64:df:dd:2e:9a:36:cd:53:3f:fb:ac:9a:66:67:
95:0e:51:48:42:ea:63:76:b6:33:03:cb:97:88:c9:1e:36:29:
8c:e4:5e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org