Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/oUrf7v5OhBXCt5GdG7-5i_J3diU.roa
File: oUrf7v5OhBXCt5GdG7-5i_J3diU.roa (raw, json)
Hash identifier: v2lFPndgzWjRPwCKUajE26c4Ba5CypnJxfipPgTspP0=
Subject key identifier: A1:4A:DF:EE:FE:4E:84:15:C2:B7:91:9D:1B:BF:B9:8B:F2:77:76:25
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01907A373C2847109F6DE4B4FF717ADC8951
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/oUrf7v5OhBXCt5GdG7-5i_J3diU.roa
Signing time: Wed 03 Jul 2024 20:09:18 +0000
ROA not before: Wed 03 Jul 2024 20:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 185.221.26.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Aug 2024 12:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7a:37:3c:28:47:10:9f:6d:e4:b4:ff:71:7a:dc:89:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jul 3 20:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a14adfeefe4e8415c2b7919d1bbfb98bf2777625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:15:89:90:e7:ba:c0:16:c0:42:60:94:28:0d:
83:8e:3f:4a:54:61:bb:a5:25:3a:c8:7c:aa:d9:3c:
ca:a5:fc:1b:9c:32:61:ac:03:d8:10:42:36:6b:25:
0d:bd:fb:bf:d4:8e:44:e7:1e:f2:d1:b2:de:cb:3a:
97:8f:6f:e1:4c:3e:ce:66:de:58:60:5a:70:d7:9e:
78:2e:c4:44:fb:e1:63:ed:1f:5f:22:33:67:4f:9e:
76:e8:36:60:bd:fc:d5:17:5a:11:45:81:73:f6:a0:
69:bf:23:09:55:7f:01:c2:ff:c9:85:f9:8d:af:24:
7e:89:63:43:82:bc:e2:6f:0d:1a:3a:bc:5e:fb:bd:
8c:f9:69:50:cd:40:8b:04:2f:a8:08:1a:c6:18:60:
d7:dd:5c:d1:f7:c7:3d:8e:83:63:fd:ae:93:56:90:
3a:13:34:dc:94:0e:ad:6b:9a:ff:7c:72:73:05:57:
df:d2:a7:12:b8:83:df:df:82:90:d5:16:6a:90:20:
88:54:e3:79:9d:fa:ec:05:0e:d8:e9:28:29:0f:71:
3e:6c:f2:7b:00:2a:4a:46:1b:d7:f8:f5:6e:9b:0c:
95:c5:04:8f:4c:ee:a4:14:b9:77:03:8e:b1:27:26:
e7:9a:15:25:f3:49:19:6c:bd:54:f1:76:7a:8c:7e:
12:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:4A:DF:EE:FE:4E:84:15:C2:B7:91:9D:1B:BF:B9:8B:F2:77:76:25
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/oUrf7v5OhBXCt5GdG7-5i_J3diU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.26.0/24
194.146.92.0/24
Signature Algorithm: sha256WithRSAEncryption
36:dd:02:1a:26:53:77:c0:17:3a:13:14:d1:92:3e:e4:84:8b:
d9:a5:10:af:e4:41:d1:20:b2:84:e0:b1:cf:77:4e:84:74:97:
d0:e9:9e:3a:2b:ae:cd:19:7a:b0:6a:d0:45:74:5c:d5:9d:70:
5b:d9:94:11:cf:fc:3d:6d:0f:c2:d8:e6:4a:90:07:8e:32:eb:
1d:9e:96:b6:c0:ee:01:9d:1c:84:57:55:49:12:15:35:71:1e:
f6:ef:ce:d3:44:ce:9d:c5:e7:c8:8c:4b:12:90:3b:bc:5b:92:
6e:d8:95:39:b0:92:a5:c7:b1:f6:45:cd:b4:29:a2:a2:73:43:
ce:5e:ea:0f:9b:55:71:90:07:4e:52:2b:5a:6c:5d:8c:32:04:
0c:ff:ad:fb:05:f8:cb:29:2b:da:77:5d:8b:3c:65:b0:74:58:
3a:df:25:a8:54:ac:5b:22:5f:42:78:50:b6:4f:29:63:7f:d6:
41:a0:b4:69:e0:30:76:0b:37:61:34:bb:45:5a:57:d9:f8:31:
e5:af:56:f0:f1:3e:69:45:14:49:03:c1:d7:19:d2:83:2a:c3:
9d:33:80:a1:aa:69:76:61:01:06:8d:40:2f:29:42:0d:d9:bc:
b6:f8:2f:f4:60:a3:97:3a:f9:c6:46:f3:0f:9c:cd:bf:f8:8a:
b3:d4:cf:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 16 15:18:28 2024 by rpki-client on console-fra.rpki-client.org