Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/xAXxPrBKrBMzjh1wG5KFmube9BI.roa
File: xAXxPrBKrBMzjh1wG5KFmube9BI.roa (raw, json)
Hash identifier: OCwewnX800l+dJtfnpzoODqiVCO9StjmJaT/evGi0Bc=
Subject key identifier: C4:05:F1:3E:B0:4A:AC:13:33:8E:1D:70:1B:92:85:9A:E6:DE:F4:12
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018CC8DF15297C230CD8CC8E92A29A946D9D
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/xAXxPrBKrBMzjh1wG5KFmube9BI.roa
Signing time: Tue 02 Jan 2024 06:31:52 +0000
ROA not before: Tue 02 Jan 2024 06:31:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 185.226.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 17:45:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:15:29:7c:23:0c:d8:cc:8e:92:a2:9a:94:6d:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jan 2 06:31:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c405f13eb04aac13338e1d701b92859ae6def412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:03:4e:6e:63:24:46:2d:c3:0e:76:0a:a9:a7:
99:6a:e1:81:6f:88:b5:49:61:17:0a:bb:65:97:bf:
4b:24:f5:a3:e3:f0:d4:a2:47:52:46:cf:a0:c1:66:
4b:c0:ca:9a:58:0a:b8:6c:d8:a5:b9:88:5d:6b:1d:
c6:ac:22:f0:af:4f:bd:a5:a4:62:c2:54:54:da:27:
21:aa:ac:89:78:79:fb:6a:9e:ec:55:af:a3:b9:65:
f7:d1:6e:f2:fb:26:ff:71:18:99:15:31:ac:d2:39:
bd:52:67:dc:69:2b:89:f1:49:86:df:fd:31:92:20:
68:fc:53:e6:4d:58:63:c8:98:29:70:48:84:10:b7:
f4:bd:1f:64:4b:ca:82:37:1d:65:ff:91:7a:b7:0a:
e0:c7:53:35:21:94:c3:7f:6f:ff:22:78:33:62:17:
16:3e:ab:fe:d4:fb:0e:49:26:66:8a:b0:12:5f:03:
a9:ca:97:42:f3:88:4c:80:80:e8:b9:8a:fc:8c:aa:
8b:98:be:b8:2f:e1:60:22:5a:34:5a:52:ff:e8:dd:
f9:67:1b:ba:4f:74:0c:c1:46:7a:10:b3:0f:28:df:
f4:eb:76:fd:75:0a:5c:08:15:3b:18:24:86:b3:9e:
05:9f:7c:8b:6b:5b:5c:8f:f4:ee:c4:ec:b0:3a:26:
14:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:05:F1:3E:B0:4A:AC:13:33:8E:1D:70:1B:92:85:9A:E6:DE:F4:12
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/xAXxPrBKrBMzjh1wG5KFmube9BI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.182.0/24
Signature Algorithm: sha256WithRSAEncryption
56:6c:10:7e:96:81:10:c8:8a:d9:4c:03:e4:c3:73:f4:52:5a:
4d:4e:24:5d:4d:2e:82:5b:b5:bc:a2:3e:f8:82:81:c9:68:bc:
2d:b0:3d:c7:3e:05:67:46:04:80:52:dd:a7:02:2a:05:7c:9f:
b3:19:f3:35:2f:aa:9e:dc:da:2f:b1:a4:52:c9:ba:17:0e:34:
6d:29:70:13:b8:c6:0d:69:4d:80:2b:60:1d:f5:51:9e:aa:b0:
e3:b3:0f:d6:c3:0c:ce:44:2c:7b:4c:50:9d:27:ff:6c:da:8e:
6e:45:8c:c4:50:a8:d2:37:a2:96:4a:47:22:bc:c0:55:65:4d:
16:6e:1d:ab:cd:e1:7b:7f:68:d7:74:05:f0:a5:99:22:dc:0b:
f8:b1:fc:47:28:1f:a8:c3:b9:7f:f2:17:7d:01:96:7b:7d:ea:
a5:9d:d3:63:8c:a9:e9:96:28:d4:bb:21:13:08:43:be:35:2b:
74:08:8c:b7:c9:36:5a:87:87:e5:b2:6c:17:86:0d:08:55:ed:
93:6f:d0:6b:22:76:02:a1:6f:d9:c3:da:eb:51:66:03:19:07:
12:79:f9:e9:90:5d:01:d0:49:87:ef:57:1c:9f:00:77:2b:40:
5b:1e:fb:f7:cd:93:d9:eb:e5:aa:b4:9a:f5:c8:01:55:92:12:
1c:24:34:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:14 2024 by rpki-client on console-fra.rpki-client.org