Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/raTbgPSnbKQIaHCRaHYBtuOb2MI.roa
File: raTbgPSnbKQIaHCRaHYBtuOb2MI.roa (raw, json)
Hash identifier: qJ2KvK8nXm80u9S2v2Hwd3HoZotLt9PBNcgJzM4X7YE=
Subject key identifier: AD:A4:DB:80:F4:A7:6C:A4:08:68:70:91:68:76:01:B6:E3:9B:D8:C2
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 0187139D96FF20FF2198BE88A7E3ACDEB18D
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/raTbgPSnbKQIaHCRaHYBtuOb2MI.roa
Signing time: Fri 24 Mar 2023 12:35:07 +0000
ROA not before: Fri 24 Mar 2023 12:35:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 185.189.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Apr 2023 19:10:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:13:9d:96:ff:20:ff:21:98:be:88:a7:e3:ac:de:b1:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Mar 24 12:35:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ada4db80f4a76ca408687091687601b6e39bd8c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:56:32:85:9e:b6:37:4e:83:ba:2a:61:61:ab:
4c:6a:26:22:e0:4e:9d:ae:fd:b9:b4:28:5a:06:7e:
5c:47:cd:5c:0d:05:a2:42:ac:fe:27:bd:9e:f4:2b:
d8:be:c6:f4:28:ff:9a:e1:e1:ba:4c:8c:8c:47:0d:
ec:5f:8f:08:8f:bf:19:a9:04:16:4d:66:fd:51:e3:
9b:66:f2:ad:bf:cd:02:84:15:8c:78:b0:cc:0a:5b:
fa:4b:75:e1:c9:ab:83:17:99:45:b0:a4:e0:f9:d3:
b8:34:4c:9e:c9:4b:14:10:9d:f0:0e:bf:64:fd:2a:
9b:f3:5f:12:30:8b:d9:cb:0c:a5:c1:fa:12:9a:5d:
e8:a3:21:82:16:32:9f:95:ea:4d:c4:e1:e2:89:4f:
8b:24:f8:eb:b7:38:63:2a:73:5c:7c:f6:f9:90:51:
6f:91:03:ad:37:a8:7f:e3:e7:d0:64:57:8c:05:3f:
17:fc:28:1f:e4:b7:fc:2f:38:46:8a:5a:cd:18:5d:
4d:c8:c2:d2:75:e4:2c:a7:b9:31:7c:19:ac:2c:2d:
e9:b9:63:49:66:9c:c4:4f:4a:5d:81:c4:ae:e8:2e:
9c:fe:99:01:fd:bb:94:8d:4b:c6:d1:04:2b:b1:5e:
7f:bf:8a:c8:f9:f2:41:2d:29:c9:6f:89:89:44:c9:
d7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A4:DB:80:F4:A7:6C:A4:08:68:70:91:68:76:01:B6:E3:9B:D8:C2
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/raTbgPSnbKQIaHCRaHYBtuOb2MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.35.0/24
Signature Algorithm: sha256WithRSAEncryption
53:89:ac:74:6d:95:e9:b1:20:e6:d9:b7:04:12:33:75:95:11:
79:39:fe:68:d4:e1:2f:7d:8e:ee:f8:9a:47:0d:c8:0e:ab:0d:
ee:f0:83:1b:15:d1:6e:9f:b7:3f:57:68:23:6f:99:1d:9f:79:
36:47:f2:99:97:65:18:00:50:ac:68:6b:b0:59:22:40:7c:da:
98:31:5f:b9:04:77:c3:01:cb:e2:c4:80:9a:7d:c5:fb:34:c5:
08:c1:32:74:2e:f4:c8:41:45:f7:41:54:ad:1c:d1:d2:5f:07:
53:3e:d2:97:d8:14:17:cc:ea:be:30:9e:1d:8a:7d:6c:53:3e:
7f:5e:39:7d:3f:27:07:4e:77:27:43:78:12:49:eb:61:9a:f2:
00:4a:39:90:3d:6f:8c:0e:74:83:fe:91:57:08:99:a1:e5:73:
cb:37:e9:38:74:f2:c0:4b:d6:57:2a:cf:70:65:2e:a6:96:da:
0b:d2:2c:37:5f:ac:45:5d:10:de:f6:ee:29:b1:ef:0e:41:fd:
0f:18:9b:b3:b4:c6:50:ef:ea:f8:10:73:6a:39:1d:e9:3f:4d:
1b:3d:d7:72:76:6f:a2:df:93:18:9f:3b:15:45:15:c9:90:4d:
e4:a9:8b:71:89:95:55:80:af:ff:2c:33:c0:80:13:b7:cb:2c:
ec:59:90:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:20 2024 by rpki-client on console-fra.rpki-client.org