Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/hCWRcRs3CQ01CFS8umsdLhj4cEU.roa
File: hCWRcRs3CQ01CFS8umsdLhj4cEU.roa (raw, json)
Hash identifier: 7aE92Kf6vQlhwxaWp6CSnnqzbZT/VlmmlmNqbfMe1x8=
Subject key identifier: 84:25:91:71:1B:37:09:0D:35:08:54:BC:BA:6B:1D:2E:18:F8:70:45
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01884486CBD1FA464F8E1F502E024CC23C85
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/hCWRcRs3CQ01CFS8umsdLhj4cEU.roa
Signing time: Mon 22 May 2023 17:34:24 +0000
ROA not before: Mon 22 May 2023 17:34:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 185.199.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:44:86:cb:d1:fa:46:4f:8e:1f:50:2e:02:4c:c2:3c:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: May 22 17:34:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=842591711b37090d350854bcba6b1d2e18f87045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e1:79:fe:de:b8:b0:7c:d0:d1:f2:7f:ab:12:
8f:2d:24:4b:61:0f:3f:fc:9d:38:cf:fb:f7:80:84:
7b:4e:b3:7d:9a:13:65:95:14:2f:36:2d:94:13:78:
58:c2:02:16:c0:29:aa:70:f7:46:84:2b:bf:dd:d6:
79:8c:36:67:34:29:73:71:93:2d:5a:c5:13:fa:65:
9d:49:20:51:6a:b1:0c:8b:d2:59:e2:c7:c6:d1:34:
2c:81:e3:06:b4:8c:4d:5b:02:d8:b1:29:d1:c9:9a:
5c:e6:53:8b:ff:2f:c7:1e:bb:65:24:c8:a5:b1:b9:
de:a2:89:0a:db:a9:46:00:51:59:c2:ea:36:e8:be:
f0:77:1e:5e:27:05:28:98:c9:2e:a7:cb:0a:a0:94:
07:96:31:ff:5f:8f:4e:9c:f4:70:1a:c6:1b:26:68:
68:ae:e1:09:b9:a3:bd:34:eb:f7:e3:5b:f9:2b:21:
5a:34:9f:16:95:f0:85:9b:27:76:fc:e8:e4:bc:21:
84:f4:e4:c1:4d:04:a4:69:79:c0:6d:ee:fc:15:23:
4d:41:29:a6:98:f8:87:b1:fe:76:78:c1:76:ad:e7:
19:f0:1f:d4:3f:1e:74:49:8e:1e:17:c6:cc:af:84:
2d:eb:4b:70:92:c6:c7:3b:a7:06:dd:a0:95:5a:cb:
79:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:25:91:71:1B:37:09:0D:35:08:54:BC:BA:6B:1D:2E:18:F8:70:45
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/hCWRcRs3CQ01CFS8umsdLhj4cEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.213.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:43:56:3e:db:9a:78:ff:01:f8:c4:ca:90:49:24:17:f8:a8:
0d:0c:47:62:4c:7a:0a:de:bd:55:c6:09:66:63:e0:89:e5:3e:
98:d9:3f:6a:71:ba:a1:40:a0:75:66:ab:00:82:45:a8:1b:c7:
a6:4f:c9:00:f4:6c:64:cd:82:10:7d:dc:e5:aa:39:f4:7b:e4:
3a:22:90:fe:77:ae:63:b1:71:7c:42:24:10:2b:50:cd:d2:0a:
4a:22:4b:7d:1c:b9:81:75:02:e2:c3:2c:f2:82:28:7c:19:9f:
fc:58:94:99:89:96:60:d8:5a:52:d3:a7:c4:9f:ff:61:6e:d5:
76:8f:0c:a0:4d:17:41:5d:8a:ea:0e:eb:11:cd:ed:54:d4:23:
1d:6e:eb:d0:bd:2d:2a:0a:52:95:f0:af:ae:38:d0:c9:bb:8c:
55:e3:f7:d8:b9:c2:d4:e2:a0:29:fd:d0:22:bc:4b:c1:e0:c3:
ef:d4:6f:7b:06:c7:33:d8:34:c4:51:58:08:b3:6c:c0:a7:20:
42:9c:78:95:43:f2:54:17:81:b4:a6:b9:0a:ac:d1:80:34:32:
13:ba:7e:fe:0e:88:b2:56:66:16:de:39:21:c5:0c:82:31:57:
ec:4f:0e:61:f8:36:d2:56:97:f8:46:57:e2:f0:72:2e:09:14:
2e:a4:06:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 22 10:05:33 2023 by rpki-client on console-fra.rpki-client.org