Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/dLbz5BIXGtYvkEgSlQQ5_YC6G_U.roa
File: dLbz5BIXGtYvkEgSlQQ5_YC6G_U.roa (raw, json)
Hash identifier: BQNeoLyeqLg80RvTjJkHVgH3yK9sh+7x2PA1gZ/2lxU=
Subject key identifier: 74:B6:F3:E4:12:17:1A:D6:2F:90:48:12:95:04:39:FD:80:BA:1B:F5
Certificate issuer: /CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Certificate serial: 018A07ED9564D5C22FFB0D589E0751C0B85E
Authority key identifier: 9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/dLbz5BIXGtYvkEgSlQQ5_YC6G_U.roa
Signing time: Fri 18 Aug 2023 09:15:25 +0000
ROA not before: Fri 18 Aug 2023 09:15:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62462
IP address blocks: 185.35.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Aug 2023 11:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:ed:95:64:d5:c2:2f:fb:0d:58:9e:07:51:c0:b8:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Validity
Not Before: Aug 18 09:15:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74b6f3e412171ad62f904812950439fd80ba1bf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bf:50:9d:34:0f:0a:f2:7d:c1:da:59:e5:ec:
47:07:da:81:02:74:85:f4:32:c6:68:82:13:e9:8b:
42:96:e4:59:6c:1e:29:99:85:f2:5a:74:6c:84:fa:
0f:c7:c7:27:69:75:75:6d:34:48:32:22:2b:96:c5:
36:bf:0b:cc:33:b5:f6:ad:45:a8:92:e6:0a:a2:1d:
c3:cf:38:3e:01:74:bf:8b:0e:5a:c9:5f:57:ae:36:
1c:a4:02:ad:56:ff:fe:ce:67:41:90:f6:aa:81:21:
e6:c4:c9:23:c8:b2:40:7b:db:13:39:7b:28:f2:82:
be:3a:61:ce:ce:b1:9a:3b:9e:e8:32:6b:d4:73:7f:
67:63:4d:7a:f0:ac:e8:27:c8:0b:53:86:30:e5:4b:
88:d5:83:08:a1:d6:bc:bf:f8:54:a5:8f:d6:12:b4:
dd:ce:f8:85:cd:32:f0:03:46:50:64:9f:1a:ca:2a:
44:b2:47:f7:59:81:0e:79:5e:98:66:64:ed:2d:8e:
87:85:35:0e:86:c6:1c:eb:7e:44:b0:6e:10:49:f1:
9d:16:44:a4:51:54:0c:76:97:2c:38:51:3b:16:34:
70:07:08:dc:64:7f:2e:81:02:8f:84:38:a2:9a:e7:
d0:2d:da:23:78:38:a1:c5:00:48:51:24:77:d3:20:
ef:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B6:F3:E4:12:17:1A:D6:2F:90:48:12:95:04:39:FD:80:BA:1B:F5
X509v3 Authority Key Identifier:
keyid:9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/dLbz5BIXGtYvkEgSlQQ5_YC6G_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.41.0/24
Signature Algorithm: sha256WithRSAEncryption
78:a0:8f:af:9b:81:8f:b5:f4:27:20:98:74:ec:7d:53:1f:10:
77:a7:95:8b:dd:5e:3c:ab:ef:b2:72:6f:57:40:09:20:25:09:
2e:44:64:e0:b3:02:7c:35:62:1c:da:ff:da:88:a4:77:3c:85:
9f:9e:d8:75:48:61:f1:06:b3:e0:c9:c9:2e:4e:27:ca:b8:8d:
b1:49:02:7a:1e:fa:c7:4c:65:9d:67:64:e1:44:70:43:f0:6c:
2d:df:4e:39:6c:ad:70:97:9d:77:36:54:9a:25:d6:9c:23:ce:
2a:12:61:57:b7:88:6b:e6:28:37:0a:4e:79:7d:4e:2a:38:c9:
20:5a:3a:c0:23:7d:45:89:3b:29:f6:1e:80:ab:15:c6:de:f3:
ee:d0:21:8d:58:ef:0e:68:f9:08:ba:81:ef:ad:cc:32:e9:fb:
47:6f:2b:49:7a:4b:89:cc:c7:3d:4c:9a:d6:ea:a5:20:36:04:
ee:07:83:7e:bb:b1:12:40:c8:99:af:ab:fa:d2:cc:f1:f5:f8:
96:78:7c:30:c5:9c:b8:10:9f:97:ff:1c:df:e4:29:ed:f9:e8:
48:d5:e6:7b:57:01:74:f9:e7:ab:6e:3d:d9:7d:af:ba:a2:e7:
2e:d4:e9:fd:92:a2:b1:97:50:d8:68:2e:ba:a0:95:fc:aa:26:
2b:8f:6e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:28 2024 by rpki-client on console-fra.rpki-client.org