Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/aIB_owQU0T4PnjpmEz3j0FhCmC8.roa
File: aIB_owQU0T4PnjpmEz3j0FhCmC8.roa (raw, json)
Hash identifier: jkJe8D4DnQQv9/2o6QSEaRpCPV0qHHXEqGMMcDDReRg=
Subject key identifier: 68:80:7F:A3:04:14:D1:3E:0F:9E:3A:66:13:3D:E3:D0:58:42:98:2F
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01876144F7EDC67705EFEF9078A27C089071
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/aIB_owQU0T4PnjpmEz3j0FhCmC8.roa
Signing time: Sat 08 Apr 2023 14:28:42 +0000
ROA not before: Sat 08 Apr 2023 14:28:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8452
IP address blocks: 185.250.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Apr 2023 09:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:61:44:f7:ed:c6:77:05:ef:ef:90:78:a2:7c:08:90:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 8 14:28:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68807fa30414d13e0f9e3a66133de3d05842982f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:85:f5:14:ee:b3:63:3f:ba:3e:e2:38:da:a0:
7f:b1:a4:ea:c7:f2:8f:9a:10:db:5f:06:9e:ce:26:
f2:a2:2b:54:fa:8a:4e:8f:3c:d9:42:cb:98:78:d9:
49:4e:2b:8b:93:e0:d1:3c:dc:ee:7a:1d:90:50:ec:
d6:c8:f9:6c:a5:ef:93:4a:00:45:fa:2e:76:9b:55:
f5:2f:83:ef:18:c7:03:bb:ec:29:ef:36:88:48:5c:
3e:2c:3c:59:46:1b:d2:34:36:97:b7:a4:ae:54:58:
3a:5f:f8:61:6a:7f:ef:1b:9d:0e:ba:8a:c4:e1:4e:
8f:ba:93:2b:b5:bb:9c:a0:f6:c5:72:5e:32:49:bc:
83:ae:c9:03:67:13:5e:5a:93:f8:46:e8:5c:d9:d0:
78:a0:66:9a:e5:30:2f:c2:14:78:2d:4f:10:b4:8d:
4e:62:19:92:6d:41:bb:c0:ee:dc:e8:f4:f4:7e:e1:
ca:c7:f7:7b:9f:d0:86:62:9b:2e:30:52:0c:e8:8f:
8c:0d:d7:d4:54:f8:69:b2:6f:51:dc:ef:db:88:a4:
4f:63:59:3c:16:cb:86:7a:5d:59:1a:f2:07:c6:75:
fe:ec:f7:f5:6d:b0:cb:be:4a:a7:95:61:81:bd:2e:
ce:5d:34:26:6f:d2:31:4a:a5:83:cd:a3:53:db:a6:
24:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:80:7F:A3:04:14:D1:3E:0F:9E:3A:66:13:3D:E3:D0:58:42:98:2F
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/aIB_owQU0T4PnjpmEz3j0FhCmC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.25.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:db:1b:30:9e:04:53:6b:39:d9:7a:aa:7f:b6:32:f8:dc:4b:
af:1c:02:c8:26:8b:f5:27:76:3c:54:b5:b7:6f:20:4f:3d:1d:
62:73:0b:27:88:3f:e6:01:05:7e:80:d3:0c:a5:f8:28:92:41:
67:0c:e5:a5:c5:73:14:f7:3d:86:12:b3:18:d8:95:a4:af:03:
29:e4:b5:71:54:95:17:03:1f:74:7d:31:8c:d5:e6:58:a7:fc:
e7:7e:47:92:af:10:6f:24:84:ff:a2:54:17:d2:7b:d0:f7:0a:
d8:5d:4f:65:ab:34:5f:44:bb:e5:45:29:6c:3d:62:ae:63:c7:
1b:14:d8:ca:81:4b:4a:69:70:82:41:fc:f8:be:d5:4b:fe:71:
5b:87:53:49:85:24:ff:a0:45:bd:ed:c4:18:60:a4:6c:e8:f9:
f0:38:f9:8a:d9:43:d8:3a:f3:bc:9c:19:ec:b8:ce:26:b1:41:
f7:4b:27:29:c3:ae:2e:79:d9:b6:f7:32:90:9e:76:56:f8:8f:
6d:fa:0b:b7:bb:cc:b3:5b:15:51:ed:59:80:1a:89:e7:9b:ae:
70:85:cc:76:48:ba:47:0c:6b:da:59:a3:ad:35:0a:d8:87:42:
4a:32:82:4a:56:11:14:bc:0a:da:62:fc:de:74:cb:a0:5f:33:
32:78:4a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org