Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/a0faca-db7f-4ed8-b11a-eec46ca82a33/1/qSDc4OGxBfJnSSzhM-RLfvF--8s.roa
File: qSDc4OGxBfJnSSzhM-RLfvF--8s.roa (raw, json)
Hash identifier: sqETdY0kpNjRI93Y4ipwpH5oeZKk1tA/2wz1Mw5/H18=
Subject key identifier: A9:20:DC:E0:E1:B1:05:F2:67:49:2C:E1:33:E4:4B:7E:F1:7E:FB:CB
Certificate issuer: /CN=3558bb47de354e09e0fc2cb2c1fa14d71d926ee8
Certificate serial: 018F237738AAF9F859D6EAC8B780934C8298
Authority key identifier: 35:58:BB:47:DE:35:4E:09:E0:FC:2C:B2:C1:FA:14:D7:1D:92:6E:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVi7R941Tgng_CyywfoU1x2Sbug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/a0faca-db7f-4ed8-b11a-eec46ca82a33/1/qSDc4OGxBfJnSSzhM-RLfvF--8s.roa
Signing time: Sun 28 Apr 2024 06:49:26 +0000
ROA not before: Sun 28 Apr 2024 06:49:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56548
IP address blocks: 185.199.208.0/24 maxlen: 24
185.199.210.0/24 maxlen: 24
185.199.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jun 2024 09:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:23:77:38:aa:f9:f8:59:d6:ea:c8:b7:80:93:4c:82:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3558bb47de354e09e0fc2cb2c1fa14d71d926ee8
Validity
Not Before: Apr 28 06:49:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a920dce0e1b105f267492ce133e44b7ef17efbcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fd:f0:10:2e:54:f2:07:2f:01:eb:bd:3d:78:
b2:03:91:7c:83:d1:78:62:99:7e:c7:0a:3d:27:db:
7c:a6:94:da:fb:ef:08:5d:6e:ba:e0:20:2a:a5:77:
10:9f:2d:9e:6b:03:e7:54:49:7c:37:e4:87:2b:a9:
06:3b:9e:b5:3a:cc:fd:7e:98:e6:51:d4:c1:e3:91:
dc:0b:bf:16:62:60:a7:36:ff:7f:61:80:a0:20:2b:
2a:c8:5b:ca:54:05:19:3f:19:80:c5:35:24:2b:1e:
a4:16:21:a4:04:68:60:98:14:a4:8d:58:26:5f:d3:
43:d3:26:3d:10:2a:e2:e3:c6:9e:6b:44:3c:20:60:
7a:07:16:44:3f:43:02:00:46:03:fb:43:2c:e3:40:
7a:fe:c8:6a:42:ff:f1:f8:b5:04:2c:3d:6e:55:86:
30:2a:5c:0f:7c:6e:5f:17:ab:cc:8e:46:0f:31:17:
30:12:87:12:a8:72:4e:8d:34:23:27:10:2b:87:e5:
55:bd:37:b1:ed:47:59:a1:8a:3f:1c:90:f4:4f:bd:
9d:34:8c:c5:a8:f7:2a:20:8a:35:d3:a3:7d:86:7e:
08:90:5f:62:b4:fc:7c:2a:47:07:7a:c1:11:67:1a:
22:6c:2b:7b:a2:c4:ed:f5:2f:3b:52:11:45:a2:19:
f9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:20:DC:E0:E1:B1:05:F2:67:49:2C:E1:33:E4:4B:7E:F1:7E:FB:CB
X509v3 Authority Key Identifier:
keyid:35:58:BB:47:DE:35:4E:09:E0:FC:2C:B2:C1:FA:14:D7:1D:92:6E:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVi7R941Tgng_CyywfoU1x2Sbug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a0faca-db7f-4ed8-b11a-eec46ca82a33/1/qSDc4OGxBfJnSSzhM-RLfvF--8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a0faca-db7f-4ed8-b11a-eec46ca82a33/1/NVi7R941Tgng_CyywfoU1x2Sbug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.208.0/24
185.199.210.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:86:4c:f0:e7:6b:22:48:47:4b:8a:b1:7b:7d:c3:b7:c2:2c:
36:44:b1:5c:87:4b:12:e2:5b:c0:d2:bb:55:cc:9f:e5:37:03:
24:9d:80:3b:a1:7c:a1:07:bf:ad:49:f6:ee:7b:5e:0a:bf:10:
b2:c6:8b:91:1c:18:0e:62:a1:bd:bc:32:6c:45:da:bd:35:ae:
5f:ee:ce:64:63:c5:60:79:cf:ad:c3:c5:be:8c:91:25:82:89:
61:2e:d9:e4:75:52:5a:7f:ea:45:9d:63:ed:bb:5c:0e:fd:91:
13:93:97:d6:de:d8:c2:b5:9c:ec:15:21:01:fe:a0:82:29:2d:
03:83:64:35:65:44:ab:5d:77:73:65:b4:4f:7b:4f:8c:76:85:
ba:d6:66:8c:32:37:10:d6:b8:f1:a5:c6:a3:2d:da:f2:c6:04:
d7:d3:fb:e2:09:d2:81:07:6f:e9:91:1f:0b:1d:ec:7b:c8:85:
f7:c6:72:1f:19:20:ba:6b:75:0f:02:2b:9d:5d:47:4e:00:6e:
b3:36:54:d0:02:9c:58:23:3e:a2:05:85:a0:56:fd:e1:46:6e:
fb:42:54:63:69:08:56:cc:a0:4f:2a:20:a0:e9:b2:93:9f:b4:
57:1f:e6:0a:ed:4a:52:a0:e9:30:e7:95:f6:8e:de:06:67:b0:
42:c7:93:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:00 2024 by rpki-client on console-fra.rpki-client.org