Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/NsDYZSDTI2Y9ryWVuPxivsEc9pc.roa
File: NsDYZSDTI2Y9ryWVuPxivsEc9pc.roa (raw, json)
Hash identifier: JBWazng21d+xUDJ8eNh/qlj/GPw7oIMETjC3KZAhIDg=
Subject key identifier: 36:C0:D8:65:20:D3:23:66:3D:AF:25:95:B8:FC:62:BE:C1:1C:F6:97
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018B7C7AAC060D7D8F61EF5538CCB04E77E0
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/NsDYZSDTI2Y9ryWVuPxivsEc9pc.roa
Signing time: Sun 29 Oct 2023 17:28:16 +0000
ROA not before: Sun 29 Oct 2023 17:28:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9087
IP address blocks: 185.250.24.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 29 Oct 2023 22:28:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:7c:7a:ac:06:0d:7d:8f:61:ef:55:38:cc:b0:4e:77:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Oct 29 17:28:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36c0d86520d323663daf2595b8fc62bec11cf697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:66:69:05:d4:57:71:1d:14:7b:41:c2:56:
87:3e:37:b4:2e:de:f8:8e:b3:4e:45:0c:5a:c1:8a:
94:6c:d4:df:5b:27:9e:3d:08:44:73:4c:7e:57:1e:
e2:01:15:c4:a9:da:f6:1c:7e:59:fc:f5:90:a6:cc:
9f:df:9a:b4:bf:f6:34:e4:57:8c:cd:3f:92:b9:b2:
0e:65:19:ee:5e:cd:5c:6e:08:c8:40:1e:f8:4e:51:
8b:b0:4c:dc:6f:2e:40:e0:1f:19:5e:94:06:29:a6:
6f:47:95:54:6e:c8:f4:f0:c0:53:d8:86:7e:7a:17:
bc:1b:0e:70:30:e7:b9:bd:9b:3d:7f:c9:99:25:01:
49:82:80:11:a5:79:fc:8b:35:bc:3c:6e:54:e7:99:
ba:bb:9c:c7:85:5e:66:26:98:ce:f1:fd:40:3e:3e:
50:ad:57:a4:f7:b9:1f:8c:f3:ad:04:2b:2b:ba:95:
99:45:4c:21:50:36:60:45:c6:0c:3d:6c:b6:dc:dd:
c2:23:cd:76:4f:15:1c:cf:05:f9:c7:c1:3b:9e:c6:
0e:85:35:c8:1a:c6:92:ee:79:6e:67:e0:cf:e3:b8:
ea:b3:7f:ce:86:64:11:f3:f0:f0:4f:49:3c:25:7f:
38:c4:99:f0:01:2c:29:6c:43:c0:70:07:ab:6e:a2:
69:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C0:D8:65:20:D3:23:66:3D:AF:25:95:B8:FC:62:BE:C1:1C:F6:97
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/NsDYZSDTI2Y9ryWVuPxivsEc9pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.24.0/23
Signature Algorithm: sha256WithRSAEncryption
45:62:8b:49:ce:8d:fc:6b:52:aa:69:be:a8:78:96:db:10:24:
9e:34:a6:75:67:ff:77:43:a8:18:4e:60:c4:88:6f:e4:84:b4:
dc:b3:06:eb:39:c2:0c:c7:31:6f:ca:4a:e0:05:b4:91:41:71:
66:90:4f:12:c8:98:92:17:c3:05:7c:8b:bc:05:34:b8:81:88:
1e:ed:16:da:92:82:73:db:dd:b2:a5:f4:bb:84:0c:ce:ed:9e:
51:23:2e:4d:f2:33:de:9e:58:74:53:7b:87:7e:ae:21:39:25:
ff:79:11:0d:f2:56:77:64:0d:cc:1d:76:71:89:0d:bf:0f:0f:
80:13:f8:7d:ef:25:73:e1:54:89:6c:3b:4b:39:5b:40:6a:91:
ca:d7:97:6b:18:69:72:0b:b2:bb:8e:3b:a7:03:18:10:55:1d:
25:be:cd:e9:39:c2:31:db:1c:36:b3:e0:03:b3:30:e6:b6:cd:
de:1a:d4:d1:98:f2:82:a6:3d:1f:62:38:23:aa:b2:1f:c2:fb:
c5:46:99:28:24:50:d5:2c:10:27:3b:5e:fb:81:ce:66:e4:be:
27:2d:6a:2b:e7:0f:e1:b7:e0:32:10:74:6f:33:08:3e:2c:25:
5d:1f:1e:6e:ab:25:cb:1c:1e:f8:2c:c2:1a:85:c8:b8:2b:c2:
93:49:ab:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org