Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/oq73m_kCM42Llh7bt3SVH8bvwr0.roa
File: oq73m_kCM42Llh7bt3SVH8bvwr0.roa (raw, json)
Hash identifier: s6Tt176vyqiMlQ2ql0yFq1Z2HdXXAh3fnXhZ7nwbbpM=
Subject key identifier: A2:AE:F7:9B:F9:02:33:8D:8B:96:1E:DB:B7:74:95:1F:C6:EF:C2:BD
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0186D01B45B928BEC4372E780DE0725D9A00
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/oq73m_kCM42Llh7bt3SVH8bvwr0.roa
Signing time: Sat 11 Mar 2023 09:58:13 +0000
ROA not before: Sat 11 Mar 2023 09:58:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207326
IP address blocks: 185.225.170.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 12 Mar 2023 11:47:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d0:1b:45:b9:28:be:c4:37:2e:78:0d:e0:72:5d:9a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Mar 11 09:58:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2aef79bf902338d8b961edbb774951fc6efc2bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:aa:fd:36:b7:6c:56:b0:69:a6:6c:44:9d:4a:
6d:a3:e4:1d:e2:46:47:ec:d3:c9:9d:2f:5e:06:7a:
4c:6f:51:98:b7:c4:00:46:cf:d3:78:31:6c:97:a3:
2e:93:37:95:cc:c3:e5:78:26:b2:fc:25:20:36:bd:
3a:17:42:34:d0:23:f6:4d:fb:53:18:69:b9:43:da:
6d:7d:ac:05:86:c4:f8:f5:ab:7c:ca:06:43:f1:59:
04:7c:69:92:2b:fb:38:93:cc:e9:57:ee:27:32:d6:
eb:a8:07:29:17:9a:f5:ae:d9:26:10:4e:46:b1:54:
63:3d:f0:5e:65:d5:dd:13:ba:33:a4:ce:cf:27:03:
98:8b:e9:9f:29:db:b5:28:a5:d6:d4:b8:15:72:a6:
0c:40:82:ce:0e:a4:d0:93:ad:c0:54:37:07:d6:c4:
4b:70:a7:11:62:df:64:71:8d:2f:af:5f:37:4b:00:
c6:71:bc:39:82:cf:6c:cd:50:9d:71:3e:22:f4:86:
31:69:8c:5d:a2:34:73:65:fe:c0:bd:bd:12:92:8c:
eb:d8:13:59:b2:9d:29:4f:78:0f:59:5e:ce:e3:c6:
fa:1c:8e:d3:e8:83:22:d0:64:0d:c4:d8:f2:10:ae:
fc:27:55:e5:38:22:3d:e1:bd:06:ae:51:ff:6d:e2:
a4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AE:F7:9B:F9:02:33:8D:8B:96:1E:DB:B7:74:95:1F:C6:EF:C2:BD
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/oq73m_kCM42Llh7bt3SVH8bvwr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.170.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:60:7e:9c:96:ff:04:c8:02:84:61:95:81:1e:24:f1:6d:d8:
0e:85:84:e6:e0:bf:4c:f4:00:0b:55:00:07:d5:9e:58:d4:e0:
2e:f3:0a:44:e1:5d:7f:7f:71:b2:1e:13:db:1c:9c:24:0e:c6:
fa:f6:bb:86:62:27:d6:de:bf:c3:2d:2c:17:6d:69:68:86:c8:
a6:43:b0:c0:5a:27:39:8b:6b:84:d0:17:79:d3:ee:8c:38:f9:
4c:9e:cf:61:d0:b5:df:dc:88:f0:dc:f7:2d:a1:d4:61:d3:a9:
74:69:b7:4d:52:53:90:31:e1:d2:b7:62:aa:14:f5:ad:c7:a4:
1b:b6:fe:70:f2:4a:8d:b4:13:52:4c:85:a6:d5:75:c6:53:fb:
4b:38:e1:03:bc:45:e7:16:e4:0f:fb:62:85:ab:41:ce:a7:56:
f9:db:6c:59:6e:d3:25:60:a9:81:c0:6e:3d:3f:ed:4f:76:20:
93:0e:43:4f:df:cb:4e:d5:28:36:98:31:10:26:fe:e4:b4:3f:
d0:f6:e7:a4:e0:49:bc:ba:18:ba:7c:45:01:ac:8b:39:3f:75:
f7:29:40:4d:34:ad:65:6a:52:62:97:71:e7:ec:18:60:b7:9e:
c4:b6:84:d4:31:22:3e:4a:d2:36:ee:b7:16:09:c5:b8:1b:f1:
c6:e7:5d:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org