Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/JfKa5NBsbmwd-Haiz9-47UjBUqY.roa
File: JfKa5NBsbmwd-Haiz9-47UjBUqY.roa (raw, json)
Hash identifier: 6LhbMYmG7LYQlHzzYyq4VK/6mdie+vSG7ZYbLRrxunQ=
Subject key identifier: 25:F2:9A:E4:D0:6C:6E:6C:1D:F8:76:A2:CF:DF:B8:ED:48:C1:52:A6
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01876145E1747E615F3795E9A3ABCAA2F93A
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/JfKa5NBsbmwd-Haiz9-47UjBUqY.roa
Signing time: Sat 08 Apr 2023 14:29:42 +0000
ROA not before: Sat 08 Apr 2023 14:29:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 176.125.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Apr 2023 09:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:61:45:e1:74:7e:61:5f:37:95:e9:a3:ab:ca:a2:f9:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 8 14:29:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25f29ae4d06c6e6c1df876a2cfdfb8ed48c152a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6b:c2:56:09:71:2b:fa:85:3d:5e:c4:5e:45:
5b:5e:02:29:c6:e7:63:c5:d6:6e:34:96:45:59:34:
b5:3c:61:7c:87:0b:62:c3:d1:1f:c1:17:88:5b:b9:
86:41:52:c3:85:6b:c3:de:7d:e1:9a:17:96:0b:bc:
cc:89:8b:92:64:88:1a:4a:7e:18:b0:92:fa:01:05:
43:30:65:35:54:ce:18:ba:aa:4a:8c:54:c1:ee:58:
ae:74:92:f6:fc:43:fd:dc:95:ac:8d:9e:71:58:39:
cc:87:a2:7d:ac:73:14:9a:cc:51:39:11:31:1d:47:
74:1b:2e:c4:d4:c8:78:51:0e:2d:f5:f8:c8:fc:cf:
cc:8a:2a:37:71:a6:5f:20:9e:0c:9d:ad:26:08:16:
48:b5:5b:37:be:87:12:8a:26:39:66:55:3d:2a:2e:
62:d9:5a:9c:14:00:14:b1:1f:1c:74:cb:76:2c:c9:
81:f5:e8:91:d3:e4:51:fd:f7:e8:49:d0:26:fc:a4:
68:59:52:3e:7e:45:6a:cc:3a:d0:d9:92:aa:7f:d6:
cd:5c:e7:15:58:91:6b:20:f9:57:a6:34:7f:a8:8f:
3d:8f:7f:0f:d7:01:cc:24:05:d5:0d:08:23:d4:cc:
a9:2a:f5:ff:27:c3:23:6a:ae:5f:d9:30:09:d1:fa:
94:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F2:9A:E4:D0:6C:6E:6C:1D:F8:76:A2:CF:DF:B8:ED:48:C1:52:A6
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/JfKa5NBsbmwd-Haiz9-47UjBUqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.250.0/24
Signature Algorithm: sha256WithRSAEncryption
58:5b:94:62:93:f8:2f:2a:41:a1:6a:37:4b:fd:8a:fa:5d:0b:
86:97:49:17:63:cc:5b:50:24:5c:d7:2c:63:43:0d:7e:c4:1d:
73:53:93:2b:c3:f9:2a:ad:2a:37:93:d3:70:d8:29:22:86:61:
6f:b7:9e:7d:e0:43:30:24:ae:c0:ac:4c:c9:ce:a3:23:97:e3:
f6:54:33:41:4e:2a:b8:23:21:7f:e5:9e:04:52:16:c8:10:41:
10:94:37:cc:65:cb:99:aa:5c:c5:7a:a6:6e:4b:49:fb:4e:d4:
d0:4e:e8:47:1a:eb:dd:1a:02:b7:1b:81:f2:7a:42:15:e0:40:
a5:38:11:ce:60:9c:4a:45:72:37:3d:7b:c6:74:b9:b0:32:e0:
10:e2:65:a0:d0:65:f2:75:96:ec:d0:ef:d4:ef:94:e5:c7:c8:
d9:ca:e3:a0:8d:1f:98:e5:bf:7b:ff:57:e2:4f:70:94:61:0d:
52:3a:8f:a3:e3:a9:88:2b:42:68:7d:66:3a:dc:f5:d5:6d:5f:
a8:3d:8b:59:d9:95:c1:44:7b:b6:7a:fc:78:8a:e5:8f:7d:85:
6d:a5:9e:95:d0:80:d9:19:21:78:3d:c5:60:15:e3:9b:f9:a5:
7d:75:66:d6:13:4b:1a:49:39:53:84:4e:c3:99:54:99:24:3e:
af:4d:bc:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org