Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/0pl5gzIYvT9WinJBCU0uDATgwDY.roa
File: 0pl5gzIYvT9WinJBCU0uDATgwDY.roa (raw, json)
Hash identifier: tTYignyMoL9JM8d9cEjywuqEopxNohHzAoPGU/GWD1k=
Subject key identifier: D2:99:79:83:32:18:BD:3F:56:8A:72:41:09:4D:2E:0C:04:E0:C0:36
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0186849E572AA3D352FC70AC9E1391237BBB
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/0pl5gzIYvT9WinJBCU0uDATgwDY.roa
Signing time: Fri 24 Feb 2023 18:10:14 +0000
ROA not before: Fri 24 Feb 2023 18:10:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 185.250.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 19:10:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:84:9e:57:2a:a3:d3:52:fc:70:ac:9e:13:91:23:7b:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Feb 24 18:10:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d29979833218bd3f568a7241094d2e0c04e0c036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:06:22:8a:11:97:e1:ff:38:37:f7:58:fe:4a:
c1:da:f8:cc:59:c9:e7:73:64:7a:26:3c:c8:e2:e1:
0f:7e:91:c0:ce:03:a8:7a:5a:04:1b:50:66:6f:89:
06:ca:23:4d:91:2f:c8:ef:c0:1e:f3:dd:90:bc:b7:
0a:b8:2a:d8:72:f2:02:41:78:94:fa:d7:d3:ae:c7:
ed:ad:36:2c:df:53:f3:8e:af:22:73:af:9f:52:5e:
e6:61:94:27:a2:e1:7f:18:e7:2c:35:89:f9:ba:e4:
6d:db:a4:13:9a:b9:b5:d1:1e:f5:d1:7b:b5:db:68:
02:df:e8:2c:7a:62:dc:f5:1d:25:66:06:bb:22:b0:
d7:78:93:cc:84:cc:58:80:48:28:17:bd:0e:aa:28:
b6:a1:d4:35:a4:22:47:25:fb:e8:63:5f:fc:64:92:
6f:98:f7:e0:ca:29:b5:0e:09:48:cb:56:e0:59:fa:
82:91:a5:66:4e:79:da:52:c6:4f:ee:bf:db:b3:8d:
4e:5c:11:3d:ab:8e:96:b4:1b:66:21:92:c7:12:6e:
1d:29:67:33:67:8d:19:94:68:02:2f:c2:12:f4:b9:
e2:a5:90:60:f8:e3:cc:41:6b:c3:6b:4c:62:b6:28:
25:f1:9e:b8:4c:0d:dc:76:1c:4f:c9:38:c9:81:89:
75:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:99:79:83:32:18:BD:3F:56:8A:72:41:09:4D:2E:0C:04:E0:C0:36
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/0pl5gzIYvT9WinJBCU0uDATgwDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.24.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:5d:be:d8:2c:79:1f:60:91:7b:9e:e2:6f:2b:72:2c:8b:3d:
34:b8:16:3b:07:22:cb:e9:5f:c6:bb:ad:c1:49:bf:42:03:1e:
f4:35:ed:ae:a4:33:70:39:1d:37:5c:ad:9c:9e:04:8f:87:71:
69:26:01:02:4f:33:df:84:df:e2:c6:c1:02:d5:cd:f7:b4:d4:
90:b2:dc:52:19:a1:61:01:db:b4:7f:9e:f4:10:1f:06:29:d5:
fa:d1:c3:46:20:93:7a:a5:63:8a:71:c5:44:fc:b7:bc:2b:5e:
62:0e:ea:19:e8:76:18:e1:54:1a:24:a8:2b:d6:8b:7d:64:71:
d8:41:8d:00:3d:bb:41:20:72:7c:60:ed:74:70:7b:4b:e6:a0:
a7:bc:fe:83:67:41:b8:c2:42:0a:6c:bd:c1:20:0c:e7:66:a6:
3b:12:c4:a7:2e:53:67:99:4c:9b:c8:cc:71:63:cc:7a:84:d9:
e7:a0:b8:c6:17:38:af:f0:27:72:47:d5:62:9d:fd:cf:49:d3:
ea:e1:b1:d1:20:be:8a:94:c4:15:82:e9:fe:c1:96:99:75:c5:
73:08:bd:1d:7b:69:23:ca:67:5b:fc:89:4f:f5:05:a5:96:95:
2a:ed:ad:52:2c:0e:5b:ac:94:7a:c5:8d:d6:8a:69:d3:9d:ff:
a1:2b:e0:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org