Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/gRcjlhsnIAzt0M1lzl26JW-QK6s.roa
File: gRcjlhsnIAzt0M1lzl26JW-QK6s.roa (raw, json)
Hash identifier: nOvT9JHTeXJfvSXtIX9xCv8lpG5KEnEJ/sA4w7TUy1A=
Subject key identifier: 81:17:23:96:1B:27:20:0C:ED:D0:CD:65:CE:5D:BA:25:6F:90:2B:AB
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0188C39CA84864071E3FEEC20F4D87A03262
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/gRcjlhsnIAzt0M1lzl26JW-QK6s.roa
Signing time: Fri 16 Jun 2023 09:50:03 +0000
ROA not before: Fri 16 Jun 2023 09:50:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 151368
IP address blocks: 185.199.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Jul 2023 12:40:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c3:9c:a8:48:64:07:1e:3f:ee:c2:0f:4d:87:a0:32:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jun 16 09:50:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=811723961b27200cedd0cd65ce5dba256f902bab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b0:6f:c3:b7:10:27:40:48:bd:8d:a9:cb:79:
24:ed:89:10:ae:66:b9:81:11:ad:9a:2b:7f:8b:ef:
b8:d9:c4:5b:ae:3c:ad:3a:fb:62:83:f2:75:35:c6:
cb:44:e8:92:f5:ea:6b:9e:68:4c:15:51:37:3e:06:
cc:96:09:fb:e3:2f:02:87:43:c5:48:81:62:64:b6:
7a:1f:4b:46:5f:fb:cf:44:df:13:51:ed:ec:1d:6c:
71:7d:55:1a:bf:0f:e4:94:67:c5:5d:27:22:ed:a5:
49:7d:89:89:00:b3:f2:14:bd:da:54:a9:29:34:30:
34:29:6f:50:7f:41:bd:91:9b:ea:02:b4:71:c9:a8:
1a:ca:01:60:34:21:85:ac:40:c7:e5:c8:57:12:d5:
a0:f3:5c:c0:3a:84:99:3a:aa:f4:10:76:19:93:53:
c9:21:7e:51:b1:82:99:84:e0:55:7a:12:e1:11:84:
97:a8:f0:d7:15:dc:de:40:ff:de:9d:c5:8f:c7:f3:
73:6f:f3:42:23:b1:1b:a2:da:0b:ba:fc:0d:8e:78:
94:b3:29:90:77:3b:31:92:9b:fa:4f:88:12:09:9b:
dc:b1:69:d7:99:ca:ed:4b:1f:4b:fa:3b:6c:df:02:
da:31:46:aa:3f:13:fe:45:85:56:dc:f3:79:18:e9:
e9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:17:23:96:1B:27:20:0C:ED:D0:CD:65:CE:5D:BA:25:6F:90:2B:AB
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/gRcjlhsnIAzt0M1lzl26JW-QK6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.212.0/24
Signature Algorithm: sha256WithRSAEncryption
00:92:88:40:f5:03:c1:e4:b3:40:01:98:0a:33:f2:68:7e:8c:
91:8c:3f:38:41:23:96:e9:8e:b3:df:ff:dd:f3:da:67:68:e7:
8c:28:41:f4:ef:39:32:9f:d7:4a:dd:bf:51:4c:67:09:ea:0f:
54:a3:01:5f:92:c2:de:df:89:5b:7a:46:0c:6b:d7:33:91:e2:
04:69:af:4f:b0:93:d7:3d:af:bd:4f:47:90:e8:76:cd:fa:ff:
ff:b1:37:ba:f2:9e:63:ee:5a:f9:90:1b:c3:70:b3:67:68:b2:
90:bc:3c:68:d4:7e:93:b7:ee:b5:b4:01:cc:a6:df:43:76:6d:
a9:f0:f9:75:d4:dc:42:bc:20:40:dd:53:5a:b6:fb:59:ac:dd:
37:c1:a3:0a:80:1e:66:72:3c:60:0c:d4:36:93:53:a5:00:d5:
28:9e:0f:9c:35:91:1f:92:c8:9d:13:2a:17:36:8c:45:c4:f8:
7a:86:17:c8:64:83:17:ec:c3:a4:74:b1:86:e6:cd:89:24:71:
68:b8:c8:d4:24:5d:58:e6:4b:b0:25:ad:fc:25:15:f5:5b:28:
5f:67:4a:a5:6c:22:af:04:92:c6:93:35:a5:1f:f7:95:1a:9a:
b5:15:2c:d5:36:a6:00:61:db:84:3e:dc:0c:7d:97:f7:df:86:
45:55:51:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org