Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/9b18tF2Cc9DjIReX9OQ1fksXZVs.roa
File: 9b18tF2Cc9DjIReX9OQ1fksXZVs.roa (raw, json)
Hash identifier: mapJFq3e6xjaV+VFAV6ZhNSIMXZ+2NYuyQTtyr4ogT8=
Subject key identifier: F5:BD:7C:B4:5D:82:73:D0:E3:21:17:97:F4:E4:35:7E:4B:17:65:5B
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018847FA488528C550DE68993A5B36A943FE
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/9b18tF2Cc9DjIReX9OQ1fksXZVs.roa
Signing time: Tue 23 May 2023 09:39:24 +0000
ROA not before: Tue 23 May 2023 09:39:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198767
IP address blocks: 185.250.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jul 2023 18:26:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:47:fa:48:85:28:c5:50:de:68:99:3a:5b:36:a9:43:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: May 23 09:39:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5bd7cb45d8273d0e3211797f4e4357e4b17655b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f1:95:c4:a8:d3:f7:40:d4:d4:34:f0:08:59:
d7:2a:be:92:7c:3c:7b:24:2e:71:86:ae:9f:f5:e5:
34:3c:83:05:96:25:24:a9:5f:63:54:3b:3b:93:79:
25:b6:3f:e6:72:01:d5:a2:72:cb:b2:b6:8c:b7:0f:
61:c8:00:50:17:c5:bf:a0:25:31:ec:f9:5b:57:5e:
df:99:bc:91:cc:f4:da:ce:54:93:db:b4:aa:c2:b0:
81:2b:91:7b:5e:9a:1c:90:60:37:57:b3:f2:78:f3:
03:09:05:af:a2:f2:a8:a8:2f:bc:ac:56:d1:d6:a1:
c7:71:41:69:c9:c0:f2:02:d4:e6:09:85:d9:bd:4d:
0f:8d:5f:12:bc:78:3b:de:36:37:d4:a0:ab:c7:7d:
2b:80:77:b6:6d:e7:3d:02:b4:c5:fb:8c:cf:85:ef:
a2:1d:80:c2:b3:a4:b4:13:70:c5:29:d5:2e:48:7c:
1b:f2:cc:b2:92:13:f1:fa:c7:59:14:ed:78:d8:0b:
bd:ec:09:8c:99:67:6b:d7:07:19:14:c3:52:20:12:
a6:68:61:ea:c6:13:74:61:42:fd:17:e4:74:b6:dc:
37:4b:4d:d3:ac:01:a5:f8:e6:07:79:03:85:99:ae:
d8:d7:c4:e2:e5:67:47:86:f7:b1:4b:7c:d6:18:fe:
33:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:BD:7C:B4:5D:82:73:D0:E3:21:17:97:F4:E4:35:7E:4B:17:65:5B
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/9b18tF2Cc9DjIReX9OQ1fksXZVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.25.0/24
Signature Algorithm: sha256WithRSAEncryption
90:c6:05:97:37:76:95:ac:22:fe:05:91:ad:a8:1e:ce:9b:ae:
c9:dd:12:42:7f:53:07:f6:a1:ae:76:75:b5:0e:91:3d:0f:f8:
65:fc:fc:c6:ca:4f:21:ae:5d:aa:92:f6:ea:d2:b3:89:9f:63:
2d:91:c6:20:c8:de:46:d6:5b:ce:d5:a9:c7:b3:dd:53:46:82:
7d:07:12:1a:54:46:ea:d4:ce:11:c1:49:d2:7b:39:56:38:ee:
fd:d3:14:49:84:e6:af:a6:3c:54:f6:18:2e:10:d1:53:22:a6:
13:4c:39:84:5f:80:fc:ff:59:86:4e:59:1b:b5:c6:79:88:2c:
89:d9:05:43:29:f3:32:b4:8e:c6:fa:b3:91:fb:99:49:12:cc:
dd:6f:8f:f0:5d:99:99:59:30:da:4a:03:30:93:d3:49:1e:01:
12:c0:55:a2:db:46:ff:10:02:df:c6:31:30:b5:e6:fa:c0:a4:
aa:d0:f1:14:45:0c:bc:ee:c3:7d:53:cd:8c:5e:66:84:c5:fe:
0e:36:d6:6b:12:e7:00:55:7c:7e:d0:eb:18:42:00:eb:88:ac:
1b:27:ae:86:5b:0f:93:fa:0c:24:a7:7b:f6:ee:4d:b9:69:be:
dc:a2:84:a7:c3:96:5c:04:2c:24:38:3b:22:9c:d9:bc:ed:db:
5f:99:3c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org