Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/00Hori50l29yvV1u-Ody2H_jUsg.roa
File: 00Hori50l29yvV1u-Ody2H_jUsg.roa (raw, json)
Hash identifier: zeIv4nIKD+qrbIZIWm3+am68khDq4P5H8Asizhr6TV0=
Subject key identifier: D3:41:E8:AE:2E:74:97:6F:72:BD:5D:6E:F8:E7:72:D8:7F:E3:52:C8
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0186F070C3B8E38741BA720ABAE24050CC29
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/00Hori50l29yvV1u-Ody2H_jUsg.roa
Signing time: Fri 17 Mar 2023 16:39:27 +0000
ROA not before: Fri 17 Mar 2023 16:39:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54252
IP address blocks: 176.125.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 May 2023 07:21:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f0:70:c3:b8:e3:87:41:ba:72:0a:ba:e2:40:50:cc:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Mar 17 16:39:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d341e8ae2e74976f72bd5d6ef8e772d87fe352c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:72:d0:5f:76:cd:7b:f1:06:cc:e1:81:b0:95:
7a:ce:b7:ad:9e:9e:84:49:d6:d5:cc:c8:6f:e6:a6:
c3:68:30:e5:df:2e:f8:71:78:5e:1a:c3:44:d4:5e:
86:c5:aa:50:07:c6:9c:19:da:a6:cf:fa:6b:38:11:
91:b2:10:49:45:74:97:34:be:fe:a6:5d:06:0c:5b:
09:6e:bf:8a:99:66:ab:fe:6c:fa:18:bd:dd:37:6d:
4e:ef:3a:da:0e:e8:7b:7a:19:66:d3:e9:f0:bb:3c:
46:a8:ce:93:72:6e:17:0c:67:f6:3f:a2:6a:e6:b5:
36:4a:c3:1a:d5:53:bd:db:67:d3:bf:7b:86:dd:f6:
23:c5:c0:95:03:e4:fb:70:0b:c4:5e:2a:c0:ef:54:
06:37:64:9e:dd:51:52:e7:75:18:c0:37:95:f9:ab:
b0:60:39:72:f2:18:d2:a2:8d:aa:4c:49:33:2d:ab:
7f:54:4e:d5:48:28:91:ef:c1:69:19:0a:46:85:8d:
fd:2f:12:51:6b:14:e9:06:b5:a2:8f:0f:2e:40:b5:
2f:4f:ab:9a:40:d4:41:cc:b9:83:44:e0:f6:3a:60:
3f:c6:c9:a6:bc:d0:7a:eb:9c:ab:4a:9b:8b:06:7c:
6d:40:00:f0:ec:ba:92:48:6a:a8:61:68:5a:76:73:
51:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:41:E8:AE:2E:74:97:6F:72:BD:5D:6E:F8:E7:72:D8:7F:E3:52:C8
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/00Hori50l29yvV1u-Ody2H_jUsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.251.0/24
Signature Algorithm: sha256WithRSAEncryption
05:52:c0:68:bf:1a:fd:a2:e0:1d:f0:e6:89:29:2a:47:04:39:
97:46:64:fc:82:cf:cc:87:55:eb:c7:e4:3b:95:9b:d8:36:3a:
98:ea:6a:d5:0b:e6:52:6f:73:79:e9:43:78:de:f0:66:8b:2b:
bb:ae:54:ea:e9:09:a9:f8:c8:f7:f7:08:94:ea:7e:98:68:83:
ad:87:f0:85:27:66:8c:67:c6:3c:9f:fc:b4:4e:ba:aa:c6:18:
9e:60:4d:22:14:e2:5f:2c:cf:a2:ae:76:c5:43:b2:e4:ca:45:
1b:dd:db:6b:38:9a:02:0e:86:92:b5:2c:54:73:17:9b:a7:ce:
82:0e:c8:d5:89:60:ec:45:20:61:ad:b0:53:8b:c7:a5:60:36:
6f:8c:53:0a:57:14:a0:52:db:4b:fe:31:3c:5d:38:81:b1:4c:
c9:6b:4b:bb:dc:20:a5:67:e1:d4:e6:7a:82:cc:e8:67:65:ed:
28:df:98:fb:e7:d5:b3:42:3c:51:b5:bf:2d:1b:2f:92:fa:39:
ca:e8:13:de:14:53:41:fb:7c:3c:df:eb:34:1b:a4:51:93:ec:
0a:bb:3f:78:f8:29:65:b2:68:28:6e:8b:07:e1:2f:73:17:41:
b5:04:70:65:fe:8b:ca:03:c5:52:e8:1d:92:c3:58:11:af:07:
bc:4f:82:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org