Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/dEx7waJD--YqQMgZwl9At8acF_w.roa
File: dEx7waJD--YqQMgZwl9At8acF_w.roa (raw, json)
Hash identifier: 2WghmWchyeYmMGpFIKGXqFb1X6enIxsQuWL7OLdHiwU=
Subject key identifier: 74:4C:7B:C1:A2:43:FB:E6:2A:40:C8:19:C2:5F:40:B7:C6:9C:17:FC
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0186D01C2EF8B1ED8DC1E0137DEAB477E6D5
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/dEx7waJD--YqQMgZwl9At8acF_w.roa
Signing time: Sat 11 Mar 2023 09:59:13 +0000
ROA not before: Sat 11 Mar 2023 09:59:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 185.199.213.0/24 maxlen: 24
45.157.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Mar 2023 16:40:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d0:1c:2e:f8:b1:ed:8d:c1:e0:13:7d:ea:b4:77:e6:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Mar 11 09:59:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=744c7bc1a243fbe62a40c819c25f40b7c69c17fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ce:8c:4f:4a:c5:a2:80:d8:77:e1:28:df:b1:
67:98:f3:b5:80:80:55:0f:f8:bd:58:5f:60:67:0c:
5f:04:55:ad:75:07:65:3e:6b:bf:0f:11:b8:be:e9:
45:57:f3:7d:fa:14:a6:30:01:1a:ba:6a:cd:02:88:
43:7d:2b:85:a3:91:c3:f9:3b:26:cd:1b:13:af:9f:
b1:af:38:3e:ac:af:bf:a8:7f:03:d1:14:93:8d:f5:
7a:c6:01:ac:9d:73:e4:0a:75:b9:a6:19:67:db:b4:
7a:61:bf:ad:04:5c:fe:21:f3:eb:0d:84:1f:5a:e0:
e9:c9:81:28:9b:db:e4:a0:0d:36:66:aa:fe:3f:b9:
d5:bf:bd:dc:16:94:25:21:1a:18:28:ce:dc:69:45:
82:1c:ad:70:e7:d5:44:0d:a2:a9:2d:31:bf:3c:2e:
16:14:06:bc:d1:24:a5:05:86:cb:f2:e2:7f:2c:17:
10:d7:0e:5c:af:15:62:27:0a:ad:df:e4:85:78:30:
0e:ed:c6:88:56:6d:11:9b:05:b3:0c:8f:e2:18:09:
c6:83:ee:e0:7d:71:57:74:19:c0:8f:0d:11:b7:df:
9f:75:ef:a8:13:01:cc:ba:f2:33:19:c4:74:ae:be:
25:90:63:51:fa:f4:0e:37:b4:48:3f:b4:21:30:60:
2e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:4C:7B:C1:A2:43:FB:E6:2A:40:C8:19:C2:5F:40:B7:C6:9C:17:FC
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/dEx7waJD--YqQMgZwl9At8acF_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.209.0/24
185.199.213.0/24
Signature Algorithm: sha256WithRSAEncryption
89:4f:fa:31:b3:39:bb:df:62:af:9c:ed:74:a9:13:8b:7e:fb:
51:1c:d1:3d:3a:2a:80:af:48:ca:61:81:34:d2:b5:95:4d:f7:
de:be:ed:78:93:4e:af:8b:31:5d:be:35:43:88:f2:97:03:6c:
c1:c0:43:05:79:69:e4:92:cb:8e:f9:9b:47:62:5f:43:d4:38:
9b:6f:f2:38:9a:05:65:80:2d:87:89:7b:69:0e:a3:ab:cd:4b:
a8:d1:dc:7d:a4:5c:24:d2:ef:26:af:cd:66:c5:c9:e3:3a:3a:
c3:86:12:b9:3e:e1:f8:27:e2:e2:41:f2:6e:9c:d7:57:eb:97:
5b:c6:1f:f6:7d:81:83:8e:8f:b6:05:2c:95:17:57:03:5f:28:
e3:76:7e:ac:c3:ad:b4:44:05:9f:f6:d2:47:7f:6c:10:f2:76:
3e:6f:41:27:02:05:ce:1e:6c:24:79:d9:d5:64:3a:47:81:ed:
96:d4:6d:2c:0d:c3:f3:fb:63:d2:59:8b:4d:97:fe:f0:e8:47:
e2:f8:a3:95:00:d9:06:2c:bf:64:f2:01:50:60:a7:31:d7:ee:
fa:c7:ee:be:63:32:dd:12:09:db:a1:34:e7:f0:78:59:a4:63:
ae:b6:16:0f:46:32:59:91:d0:5b:9d:3c:c5:ea:63:7c:1b:51:
93:4e:ea:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org