Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/yUTQgsmpAeMSov04hq2ylPOKSMw.roa
File: yUTQgsmpAeMSov04hq2ylPOKSMw.roa (raw, json)
Hash identifier: h1xy1RbctbhWheUGI+pPqXAqCCbEqtqk3kIUv68DkWQ=
Subject key identifier: C9:44:D0:82:C9:A9:01:E3:12:A2:FD:38:86:AD:B2:94:F3:8A:48:CC
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0186DAC821EFA3EA16811860B48D16D726F8
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/yUTQgsmpAeMSov04hq2ylPOKSMw.roa
Signing time: Mon 13 Mar 2023 11:43:14 +0000
ROA not before: Mon 13 Mar 2023 11:43:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 185.226.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 21:42:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:c8:21:ef:a3:ea:16:81:18:60:b4:8d:16:d7:26:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Mar 13 11:43:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c944d082c9a901e312a2fd3886adb294f38a48cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2b:3c:ae:5d:d0:a8:b5:81:a7:07:4e:54:75:
86:3c:58:5e:96:01:ec:90:ca:31:62:74:e4:6e:3c:
0e:83:b4:a4:a5:20:d6:1c:98:45:1a:22:1f:2e:a5:
12:05:aa:76:4d:95:44:d2:a2:4e:6b:06:f8:16:c3:
ed:52:8d:d9:9b:c4:60:f7:01:ef:a2:51:e2:17:82:
fc:55:d4:d5:94:a7:30:63:5d:74:3d:3a:9d:ae:bf:
f9:0c:83:47:1b:9c:4c:70:33:99:a1:d0:4c:c4:4c:
10:bd:4f:ee:c4:6a:db:c0:88:2b:4b:b7:2e:2f:9b:
26:b7:ef:92:d8:6a:bf:15:7b:ec:c9:95:43:d2:18:
52:92:2c:dc:b2:6b:9c:e5:55:09:ee:e1:bf:03:a9:
54:c2:ac:1f:f6:ac:09:da:cb:19:43:fe:3e:d6:2a:
b0:67:5b:41:58:c3:f6:b1:d5:a3:2a:12:f9:4b:20:
1b:78:de:c8:bf:30:f0:84:28:6b:d1:d1:98:86:2f:
b2:ee:6b:ff:e9:9d:c4:f6:2d:9f:53:c3:1c:30:de:
93:d3:3c:76:8a:6c:ec:d8:5a:39:f8:c3:e7:01:58:
1e:e1:38:9e:60:01:8d:7d:56:27:2f:c4:2b:1a:a1:
f3:3d:d4:cf:d3:4b:29:c2:56:4f:38:9b:d5:07:2b:
3b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:44:D0:82:C9:A9:01:E3:12:A2:FD:38:86:AD:B2:94:F3:8A:48:CC
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/yUTQgsmpAeMSov04hq2ylPOKSMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.181.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:16:c1:90:5e:f7:8e:58:14:ae:42:81:72:49:cc:ae:de:a9:
c9:aa:01:ed:3f:76:4f:04:92:5c:45:c5:61:82:50:7d:0c:ea:
dd:1b:01:e1:75:85:a8:34:be:10:70:5f:c2:c5:6d:a0:0c:c2:
65:bb:f5:b7:dd:c1:20:ec:58:3e:e2:41:44:fe:42:31:87:51:
4c:80:d6:4f:50:a1:5e:7d:8e:27:27:92:c8:d8:ad:3b:bb:93:
92:0c:ec:7f:94:09:7f:1f:2a:88:e1:7c:a8:d6:fb:34:f3:57:
75:f8:b6:44:06:ab:64:21:61:0b:6f:ff:83:02:48:1d:11:95:
97:c7:c0:bd:f3:e8:32:93:04:cb:fd:ae:cd:ba:8a:69:3a:cf:
ff:11:9f:41:4b:ef:35:4e:60:ac:20:8a:d4:0c:23:ed:95:d4:
c4:f9:b2:e5:2a:e0:9f:e5:6e:71:46:46:4c:13:37:b3:b4:0d:
54:41:c8:45:9c:dc:2a:c5:63:90:09:74:72:d9:cc:cc:da:6e:
8c:3e:39:eb:c9:98:b7:01:48:e2:ca:09:a8:c2:7c:cc:6a:e1:
b1:88:6d:82:16:6e:49:08:f6:26:fb:18:a2:97:7b:b1:51:84:
6a:5b:54:72:11:11:97:99:9b:d2:be:70:47:3e:ae:c4:e4:5d:
02:78:7a:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:36 2024 by rpki-client on console-ams.rpki-client.org