Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/a0faca-db7f-4ed8-b11a-eec46ca82a33/1/B2JO7oEU8f1iitcQH59HBSzcTcM.roa
File: B2JO7oEU8f1iitcQH59HBSzcTcM.roa (raw, json)
Hash identifier: XcLmX8RYZiZFcsVnvFS6HnGjb2zIET73M8hd+h3VGCo=
Subject key identifier: 07:62:4E:EE:81:14:F1:FD:62:8A:D7:10:1F:9F:47:05:2C:DC:4D:C3
Certificate issuer: /CN=3558bb47de354e09e0fc2cb2c1fa14d71d926ee8
Certificate serial: 0185728C7DAC8CD5BDC12FEFB344295F2AD8
Authority key identifier: 35:58:BB:47:DE:35:4E:09:E0:FC:2C:B2:C1:FA:14:D7:1D:92:6E:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVi7R941Tgng_CyywfoU1x2Sbug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/a0faca-db7f-4ed8-b11a-eec46ca82a33/1/B2JO7oEU8f1iitcQH59HBSzcTcM.roa
Signing time: Mon 02 Jan 2023 12:54:47 +0000
ROA not before: Mon 02 Jan 2023 12:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56548
IP address blocks: 185.199.208.0/24 maxlen: 24
185.199.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:7d:ac:8c:d5:bd:c1:2f:ef:b3:44:29:5f:2a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3558bb47de354e09e0fc2cb2c1fa14d71d926ee8
Validity
Not Before: Jan 2 12:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07624eee8114f1fd628ad7101f9f47052cdc4dc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:02:21:52:87:09:48:44:2d:48:86:fb:14:eb:
f2:fc:84:c6:e9:1a:37:2a:a2:1e:5a:a8:d4:52:83:
a0:c0:7b:82:a3:d0:cc:c9:cc:b1:29:57:68:90:f7:
ef:60:6f:54:54:3e:1f:80:5b:54:c0:ef:89:2b:ff:
8c:20:09:2c:49:fe:67:62:20:48:0c:57:07:cf:5f:
8f:d3:f4:35:3c:69:b0:0b:c6:65:6a:55:52:9b:83:
3f:07:a6:49:31:64:ec:0f:57:46:0a:08:60:e4:ed:
75:08:f3:91:f0:ed:5f:a5:ef:4d:a8:34:ce:1b:d8:
8b:8f:ea:8d:93:23:f1:8b:e8:c2:69:24:7c:e1:bc:
4f:a5:11:d2:6d:16:63:c1:16:2d:8c:00:ca:29:d6:
b3:01:d9:db:8c:bb:be:a2:5d:b3:7f:a1:3b:cc:8d:
46:ed:a0:78:77:72:b7:02:90:0b:ac:7a:05:87:96:
47:4f:1e:3a:af:d0:29:10:df:3e:76:13:8d:66:0a:
29:88:6e:94:9e:b4:3d:6d:79:66:c6:57:25:01:f5:
3c:e7:55:15:6c:88:5f:fd:17:d1:3e:fd:4a:22:81:
e0:41:3a:35:1b:63:3b:51:af:21:e7:48:e2:f8:be:
c2:db:55:59:60:d6:48:d2:43:5c:2f:96:9c:87:59:
ea:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:62:4E:EE:81:14:F1:FD:62:8A:D7:10:1F:9F:47:05:2C:DC:4D:C3
X509v3 Authority Key Identifier:
keyid:35:58:BB:47:DE:35:4E:09:E0:FC:2C:B2:C1:FA:14:D7:1D:92:6E:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVi7R941Tgng_CyywfoU1x2Sbug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a0faca-db7f-4ed8-b11a-eec46ca82a33/1/B2JO7oEU8f1iitcQH59HBSzcTcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a0faca-db7f-4ed8-b11a-eec46ca82a33/1/NVi7R941Tgng_CyywfoU1x2Sbug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.208.0/24
185.199.211.0/24
Signature Algorithm: sha256WithRSAEncryption
96:54:ed:85:ac:01:eb:28:6f:3f:63:bc:f7:04:77:70:81:76:
79:5e:a9:c8:5e:a5:87:20:5b:33:b4:75:da:64:d9:05:ce:39:
24:16:86:86:3f:70:2b:5b:c0:36:05:13:ad:59:b6:46:e5:5d:
ba:62:20:12:b4:b9:e5:00:38:bd:0f:9c:64:39:a1:06:e3:8d:
e6:5c:37:2a:6b:a8:77:8c:55:67:2f:4f:be:27:ac:1c:a9:f0:
ad:90:1e:31:e5:e9:9f:47:81:c7:83:f5:f3:f6:ff:f5:90:81:
42:dd:2d:74:cf:56:76:06:96:7b:ed:db:8d:b5:db:af:45:8e:
f8:02:25:cb:9e:ac:30:ff:bf:79:16:6d:82:6e:ea:69:27:6c:
b7:41:e6:0f:00:dc:56:3f:3c:e9:32:9f:66:8c:59:3f:c6:85:
24:6d:d2:0f:f8:86:af:bf:a7:6d:03:d1:45:63:85:48:68:18:
64:eb:dc:67:b5:61:a7:1f:c3:53:05:0b:51:f1:fe:51:3d:af:
c4:71:4d:a8:cf:b0:46:b9:44:30:88:5e:d8:5f:34:83:92:35:
66:39:60:2c:28:28:29:8f:a8:f9:89:c2:df:a4:1f:2e:8e:49:
25:e4:29:41:bc:58:b9:35:1d:af:ef:58:b9:5b:53:97:fc:06:
ac:7f:a3:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:51 2024 by rpki-client on console-ams.rpki-client.org