Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/xLtLHVOWXS2tZiKRWMoo5NnOAPE.roa
File: xLtLHVOWXS2tZiKRWMoo5NnOAPE.roa (raw, json)
Hash identifier: 0Ooo1cyX0PKlHt+JIuF/uCYVIXSH4CVswCzrSprxRpg=
Subject key identifier: C4:BB:4B:1D:53:96:5D:2D:AD:66:22:91:58:CA:28:E4:D9:CE:00:F1
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01894B912A4529C01FE262260B577C0BA741
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/xLtLHVOWXS2tZiKRWMoo5NnOAPE.roa
Signing time: Wed 12 Jul 2023 19:25:51 +0000
ROA not before: Wed 12 Jul 2023 19:25:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 185.221.24.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 14 Jul 2023 11:49:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4b:91:2a:45:29:c0:1f:e2:62:26:0b:57:7c:0b:a7:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jul 12 19:25:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4bb4b1d53965d2dad66229158ca28e4d9ce00f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e9:30:8e:8e:67:6e:fe:5f:a2:d8:ac:3c:81:
26:1d:b5:a0:e8:55:16:4b:ed:e7:99:5f:af:ad:f3:
ef:d3:f7:4f:bb:f6:ca:1a:04:88:52:d2:e1:e5:ad:
98:a8:56:e3:5d:6f:d3:f6:a0:01:6f:e1:71:b2:18:
d1:d5:f8:18:5e:b1:26:b3:8f:5d:35:9c:72:53:50:
a3:1d:04:ec:b2:47:e4:31:2f:95:c1:4a:4f:32:08:
ac:a8:ed:ba:0b:82:c0:fa:10:2f:b1:c4:f5:56:27:
7a:7b:48:d3:31:fb:16:79:13:f1:0d:29:d1:c4:ae:
4c:28:15:42:cc:9e:62:8d:ec:1e:4f:7a:8f:a4:ee:
b5:53:a9:b3:54:b5:4d:8e:54:55:f3:0f:9d:2a:71:
04:26:da:0b:5e:69:25:53:eb:ea:4e:37:2f:a8:79:
bd:fb:35:49:9a:0c:9c:46:2b:8b:46:50:5d:29:21:
e3:19:62:19:41:b7:08:6b:7d:73:9f:44:a9:b2:6b:
c5:33:f5:bd:88:62:1e:f0:a0:85:70:33:28:32:14:
a1:7c:22:03:85:40:1b:08:8e:6a:ed:e0:7c:c3:1a:
47:ae:0a:af:43:62:bf:9d:79:36:ef:ca:a1:64:24:
6b:0b:20:61:fe:7b:8e:16:31:68:58:23:15:95:36:
96:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:BB:4B:1D:53:96:5D:2D:AD:66:22:91:58:CA:28:E4:D9:CE:00:F1
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/xLtLHVOWXS2tZiKRWMoo5NnOAPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.24.0/23
Signature Algorithm: sha256WithRSAEncryption
14:1c:52:1b:83:c9:9f:a7:84:ad:ff:25:a4:10:75:16:0d:17:
b6:f6:d7:0b:aa:d4:58:55:b9:e1:ea:6e:9d:10:7e:0b:07:8d:
4d:ca:89:06:db:43:23:ad:11:8e:39:71:d2:b3:36:24:45:d5:
6e:ab:a0:1e:9d:a1:6d:48:d2:39:8b:c4:1c:42:30:05:27:95:
46:38:5b:0d:02:ff:24:8d:3e:cd:65:e4:ad:ad:1c:8c:80:2b:
26:d5:72:4e:1f:e6:91:ea:92:2c:c0:9c:d5:b9:82:23:d7:b2:
25:12:e0:ff:0d:d3:52:b9:3f:a9:5a:e2:e6:04:aa:6e:ee:5a:
58:8e:21:54:29:38:8b:05:1c:c1:fb:a0:3d:a8:17:ba:d8:a9:
b9:7f:2a:a3:27:34:19:76:32:63:d3:5f:f0:03:02:b6:40:60:
97:dc:bb:58:ac:25:64:4a:43:74:ad:d7:67:f3:13:5e:0a:13:
78:83:30:dd:71:76:30:87:ff:3c:cd:a8:0b:a4:7b:a9:f7:42:
9d:73:e0:ea:bf:16:b0:35:a8:60:4d:08:4d:c3:59:3d:70:0d:
ce:0d:a7:bf:71:d9:9e:95:57:1e:0d:13:ab:e9:52:49:e9:1d:
f9:3c:0b:a0:46:d8:23:24:27:df:9b:5a:43:ec:ea:b2:3b:15:
63:b9:ee:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:14 2024 by rpki-client on console-fra.rpki-client.org