Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/idXAHBAK_uGNuTQaXQNeLBJ0rkI.roa
File: idXAHBAK_uGNuTQaXQNeLBJ0rkI.roa (raw, json)
Hash identifier: JsFvK+XaCp9KYXry3EtRXI1Uy73TNx1HnvDOUWsY/DI=
Subject key identifier: 89:D5:C0:1C:10:0A:FE:E1:8D:B9:34:1A:5D:03:5E:2C:12:74:AE:42
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01879FFF4E7148AD7A75FFFE9AD9F7D86D4E
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/idXAHBAK_uGNuTQaXQNeLBJ0rkI.roa
Signing time: Thu 20 Apr 2023 18:48:41 +0000
ROA not before: Thu 20 Apr 2023 18:48:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 185.226.181.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9f:ff:4e:71:48:ad:7a:75:ff:fe:9a:d9:f7:d8:6d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 20 18:48:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89d5c01c100afee18db9341a5d035e2c1274ae42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:55:b2:d3:ec:af:cd:e1:1a:db:34:80:ef:31:
f4:ce:fd:d6:44:ba:a6:62:b4:89:37:28:25:8a:d4:
7e:a8:42:98:b7:15:b9:d7:1b:78:a5:8b:71:14:b6:
dc:7a:c4:4b:ce:07:bb:40:9d:cf:89:5e:b2:2c:ad:
b6:12:55:21:2a:52:b6:8f:85:cc:73:bf:31:94:5d:
df:89:01:e7:a3:1a:b4:b6:3b:82:a1:30:c6:a1:4b:
67:c5:08:81:b3:41:18:a9:a1:55:b5:86:73:eb:85:
bc:3e:89:ca:88:57:80:00:bb:85:4d:dd:f3:99:df:
65:eb:6b:0b:d7:29:d9:8a:1c:ff:7f:90:2f:54:5d:
e5:80:f7:be:b5:f5:d9:58:a3:87:c7:8f:be:72:33:
9a:2c:87:2e:5d:69:52:cb:88:6b:2c:b0:18:38:44:
13:88:1a:9c:ab:9f:3d:5b:b5:46:3a:61:29:2e:d6:
ed:d9:a4:60:78:c3:5b:ca:46:55:d7:ea:35:75:fa:
9b:fe:00:70:0a:06:d4:de:39:1c:7f:24:a0:c4:c6:
62:d8:fa:fb:4e:4d:1d:d5:1a:72:5a:da:b6:64:69:
85:9a:7a:c3:cb:d3:cc:0f:ca:1b:d4:f4:d8:61:99:
0e:de:e9:5d:9f:37:cb:36:8f:ea:aa:37:76:8e:05:
6f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D5:C0:1C:10:0A:FE:E1:8D:B9:34:1A:5D:03:5E:2C:12:74:AE:42
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/idXAHBAK_uGNuTQaXQNeLBJ0rkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.181.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:72:b9:67:ad:13:4d:5f:b9:cc:64:4f:36:70:ad:74:0a:59:
50:99:9f:5f:d4:b5:ca:10:b5:bd:b9:84:68:3d:81:cd:51:aa:
da:22:00:6f:0c:db:ed:ae:88:3c:5b:68:37:df:a5:25:c9:af:
84:26:da:05:df:9d:6f:3a:08:d3:61:fd:94:7a:43:ac:ed:dc:
15:4b:a3:be:08:b8:c6:4e:e1:a1:4b:11:f0:d3:81:c9:c0:45:
1e:ea:c3:0b:66:31:19:ef:ce:67:a2:da:3e:9f:17:f0:b8:24:
23:3c:f1:f0:5e:b2:8f:6d:94:2f:d6:c4:01:7d:7a:75:d7:52:
55:bf:64:f6:7f:81:2e:14:50:ed:f6:23:a3:4d:cf:bc:bf:7c:
1b:4f:46:04:65:10:fe:a7:de:2f:52:0a:99:8b:c8:3a:a9:25:
3a:06:94:74:37:38:b3:2b:99:7c:b3:5e:c4:f3:56:32:0c:bd:
0f:3d:4c:37:55:26:8a:f8:e4:5f:9c:06:7b:03:ae:93:c6:5f:
ae:ad:04:c2:4d:84:e0:25:fa:53:a7:a0:40:1e:1a:46:34:34:
24:f0:a0:8d:c4:47:1d:6c:40:89:30:f7:a6:c0:bf:a2:92:e1:
65:e6:e1:c3:30:7b:1d:8c:5d:58:51:0d:1a:28:56:1c:07:a0:
0f:f0:15:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:27 2023 by rpki-client on console-fra.rpki-client.org