Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/mV5uW6qU0LjNRjwm38mzIzg4QnY.roa
File: mV5uW6qU0LjNRjwm38mzIzg4QnY.roa (raw, json)
Hash identifier: AUdSvCEa1lY6fISFYBP6aacgatCz8IUoCJcLEQCGFoI=
Subject key identifier: 99:5E:6E:5B:AA:94:D0:B8:CD:46:3C:26:DF:C9:B3:23:38:38:42:76
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018B7D8D540EA10EC9ABA040215E5B318471
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/mV5uW6qU0LjNRjwm38mzIzg4QnY.roa
Signing time: Sun 29 Oct 2023 22:28:15 +0000
ROA not before: Sun 29 Oct 2023 22:28:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9087
IP address blocks: 185.250.24.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:7d:8d:54:0e:a1:0e:c9:ab:a0:40:21:5e:5b:31:84:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Oct 29 22:28:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=995e6e5baa94d0b8cd463c26dfc9b32338384276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:69:d3:80:62:06:1f:a2:00:36:5a:5e:af:ad:
4e:10:0e:ce:0a:7a:f6:71:62:f7:97:a9:e7:4b:e9:
ce:ab:d1:6d:2a:23:3b:31:cd:b7:61:fe:6f:99:a7:
4c:ba:53:58:cb:00:fa:6a:c7:5a:d0:60:f8:c0:1a:
00:d3:f0:b1:00:b4:f3:db:36:21:74:fd:f1:79:08:
46:f6:35:6f:f9:63:9f:6e:73:a0:5c:03:f2:dd:e9:
25:ad:2b:c9:1d:4c:c7:6b:e0:8e:48:08:34:8a:e0:
e2:85:b2:2b:6d:19:27:15:d6:37:05:54:5a:f5:fe:
db:19:15:da:ad:6f:e3:5c:c4:cf:71:08:f9:f3:20:
1a:3d:f3:03:44:cc:e3:96:7d:6f:93:57:ce:f7:c3:
a5:dd:2d:d4:73:51:3e:f8:df:53:25:5f:53:d6:df:
b2:3f:44:bd:85:fe:37:6a:8e:24:0a:4c:c7:15:00:
54:8c:86:f8:d7:30:5c:bb:f7:44:b1:26:95:ca:aa:
33:61:19:be:de:bc:4c:c8:76:02:c1:35:de:80:7a:
4f:72:db:68:a2:28:c0:9c:7e:80:4f:b4:55:de:f4:
2f:bc:35:f3:6c:e5:81:99:2c:f6:36:fb:71:52:24:
f4:88:1e:fd:e7:88:d5:63:b8:97:26:27:81:b7:52:
59:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:5E:6E:5B:AA:94:D0:B8:CD:46:3C:26:DF:C9:B3:23:38:38:42:76
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/mV5uW6qU0LjNRjwm38mzIzg4QnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.24.0/23
Signature Algorithm: sha256WithRSAEncryption
23:37:4e:11:cb:af:de:b0:56:39:e6:07:77:17:e7:e8:42:1c:
22:18:ab:f8:fc:9f:8b:53:50:30:25:75:93:68:a8:9a:c8:7d:
87:a9:2f:a6:56:9e:8d:e9:f7:40:a0:ec:f3:cb:f7:ae:0a:b5:
29:6b:63:7a:bc:09:9e:63:73:f5:ef:cd:8c:c9:6b:76:aa:4a:
2c:c1:34:3e:ab:00:d7:7b:56:ed:b7:77:11:7a:64:b1:05:32:
b4:7b:8a:95:3e:9c:59:d7:85:41:0b:67:bb:69:f8:8a:9a:d6:
e8:4c:90:a3:57:87:7d:2a:82:2b:b3:a4:0f:a4:53:3f:5d:3b:
e9:f3:7e:1c:b9:97:9d:a1:93:05:31:f7:ca:6c:0a:02:e5:42:
9c:54:24:2c:96:d0:67:b8:28:46:d9:fd:44:e1:96:69:e8:8b:
9e:2e:5b:89:8c:37:d1:de:15:a3:d3:66:5c:69:0c:be:de:93:
2d:19:38:88:39:de:6d:37:28:ed:12:64:45:f6:ae:e9:35:1a:
69:4e:2b:2b:31:b3:fc:b5:5c:09:40:8b:66:0e:b0:9b:b9:8c:
85:12:56:15:b4:5d:61:63:28:b5:8c:67:9d:48:04:99:85:f0:
cd:35:75:07:00:4e:25:e5:56:8b:b6:df:33:1a:b2:62:90:9d:
ba:0c:0d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:14 2024 by rpki-client on console-fra.rpki-client.org