Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/hSgOurcn2_OdcKSEJg2mt9Nkq2Q.roa
File: hSgOurcn2_OdcKSEJg2mt9Nkq2Q.roa (raw, json)
Hash identifier: EI6m+2Pyr9xJ+ZFG6mQQ0dhP9Nk1ImesULWesfampFI=
Subject key identifier: 85:28:0E:BA:B7:27:DB:F3:9D:70:A4:84:26:0D:A6:B7:D3:64:AB:64
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01889BA5C325FDA3D1C6BBF5C35A122E7055
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/hSgOurcn2_OdcKSEJg2mt9Nkq2Q.roa
Signing time: Thu 08 Jun 2023 15:35:11 +0000
ROA not before: Thu 08 Jun 2023 15:35:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 45.157.210.0/24 maxlen: 24
185.199.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Dec 2023 21:04:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9b:a5:c3:25:fd:a3:d1:c6:bb:f5:c3:5a:12:2e:70:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jun 8 15:35:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85280ebab727dbf39d70a484260da6b7d364ab64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:74:62:75:13:da:dc:f7:a3:3e:72:1a:04:a0:
cd:e0:d0:79:b8:46:33:7c:33:1a:df:b1:fb:91:79:
21:43:fc:a2:a7:0b:94:56:11:f0:e4:ca:43:aa:7c:
bb:3a:0b:d6:16:3c:d8:b4:e1:6c:0e:aa:7c:e3:98:
f4:f5:03:90:3d:c7:ad:a9:84:d7:40:99:f3:39:11:
be:da:dc:e1:2f:4b:86:20:b9:f9:16:cb:e1:87:74:
38:3b:68:15:4d:b0:60:41:2b:ca:2d:33:cc:07:80:
63:c9:95:ba:b3:33:3d:e9:e1:91:af:2e:cd:db:00:
03:bb:b6:ee:be:a3:70:44:d5:00:c7:bf:82:1d:fd:
30:77:a8:e9:90:63:ea:67:33:6c:c2:b7:ad:c5:45:
7c:4e:d3:09:a7:ee:01:10:d4:03:50:9a:f3:65:ea:
c7:0d:0a:6e:03:c8:c2:14:da:45:ac:95:01:26:aa:
30:84:f8:c3:ff:b5:4c:76:e2:6d:13:36:e3:b1:5f:
c9:32:39:a0:4a:6e:0e:eb:9d:7a:b4:27:7f:72:2d:
b2:22:7a:17:4c:73:64:11:5d:f8:b8:5b:36:11:fb:
08:d1:88:f0:07:bb:6d:3b:88:c1:a9:d9:d6:07:e5:
fc:c0:31:34:ec:2d:1e:42:3f:f4:4c:eb:98:53:c0:
32:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:28:0E:BA:B7:27:DB:F3:9D:70:A4:84:26:0D:A6:B7:D3:64:AB:64
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/hSgOurcn2_OdcKSEJg2mt9Nkq2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.210.0/24
185.199.149.0/24
Signature Algorithm: sha256WithRSAEncryption
37:58:3b:e1:3a:f9:03:8f:8b:ac:f8:c0:02:5b:0c:c1:2a:0c:
b3:d8:42:48:25:bd:24:65:cf:c2:47:6f:31:70:14:22:d5:ee:
15:5a:f0:ff:fc:dc:22:c1:e2:ae:b8:4d:1a:5a:61:6f:a5:01:
e9:a1:8d:c0:a5:92:72:29:b1:88:ed:15:a6:04:b6:5b:3d:a3:
ff:0d:e3:61:a6:2a:7a:31:78:71:cd:7f:40:18:19:25:bb:41:
79:a9:ff:24:7f:5b:37:c9:f7:6d:9d:38:4a:37:00:5b:ca:1f:
38:7a:6a:f5:ce:32:dd:80:10:ec:0a:5d:8b:60:e8:47:69:1c:
fe:2b:4d:3a:a9:47:23:86:06:ca:75:95:fd:13:ef:1b:66:27:
c2:70:be:08:39:62:90:e8:6d:28:67:7a:18:90:f2:89:42:7d:
01:f7:59:d3:80:81:f9:85:55:3c:57:eb:03:11:69:f2:c3:b8:
a0:52:af:46:5a:63:38:4c:08:34:77:c5:0c:a5:9f:8e:d9:db:
9a:88:9f:4f:a4:23:5d:5a:7f:70:8a:6f:22:9f:b1:d9:6d:18:
71:30:97:29:d1:61:40:70:f9:33:fe:f6:da:ad:9c:5f:17:a6:
30:e0:f9:96:79:a3:87:87:0f:f1:c1:be:d9:b7:0b:4b:02:5e:
a4:6f:81:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org