Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/meLaE7BRO9KuSycTgZpGtstxCKQ.roa
File: meLaE7BRO9KuSycTgZpGtstxCKQ.roa (raw, json)
Hash identifier: 4vtjsV6XiWmGkjYGYRWFb8sC/EmK5IcPJprPXP8N4iA=
Subject key identifier: 99:E2:DA:13:B0:51:3B:D2:AE:4B:27:13:81:9A:46:B6:CB:71:08:A4
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01879FFE63D388967609DFC3579A038C6EAE
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/meLaE7BRO9KuSycTgZpGtstxCKQ.roa
Signing time: Thu 20 Apr 2023 18:47:41 +0000
ROA not before: Thu 20 Apr 2023 18:47:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209043
IP address blocks: 176.125.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Jun 2023 12:36:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9f:fe:63:d3:88:96:76:09:df:c3:57:9a:03:8c:6e:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 20 18:47:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99e2da13b0513bd2ae4b2713819a46b6cb7108a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c7:f6:9b:f8:a7:da:db:29:8c:d4:ac:e1:f9:
e2:39:02:f3:02:75:d1:e1:e7:c2:9e:ad:01:a8:63:
41:08:a6:19:c7:1a:79:86:b7:cf:bd:8d:b4:ec:b7:
58:c8:f2:e0:06:2c:57:ce:be:37:57:42:85:e8:8a:
b0:78:51:b4:2c:0a:b0:1f:ca:13:7f:00:c2:a1:45:
8c:e9:b2:dc:be:79:62:83:25:fe:aa:ae:a8:30:cd:
d2:39:7d:d9:5d:b1:b2:5d:e5:0e:02:70:e2:89:52:
ba:46:44:92:c9:3d:41:23:c9:f2:69:45:4f:7c:6f:
f4:76:fa:0b:0f:52:cb:a8:7d:36:a3:d5:5a:bf:44:
c4:61:fa:96:ec:22:84:f4:24:e9:8d:18:70:d9:bd:
e2:e9:7d:b0:38:71:a8:83:75:71:b2:be:8f:65:cb:
76:cd:ad:55:24:cd:aa:27:3d:07:7b:2c:83:08:11:
9f:ec:58:d6:5b:de:6d:9d:07:f7:91:d2:b4:7f:42:
3e:15:9e:84:72:88:0e:71:3d:55:43:7f:82:53:3d:
94:6f:74:72:9b:8a:6f:c0:8a:8d:8f:70:c6:ad:31:
f3:72:af:46:7f:94:c2:28:10:80:e7:5b:74:b4:0a:
ef:e8:e5:ff:53:24:ad:25:9d:b9:e1:f8:0e:1e:60:
76:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E2:DA:13:B0:51:3B:D2:AE:4B:27:13:81:9A:46:B6:CB:71:08:A4
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/meLaE7BRO9KuSycTgZpGtstxCKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.250.0/24
Signature Algorithm: sha256WithRSAEncryption
95:41:f5:da:e9:48:9d:5c:75:22:13:5b:96:44:ed:d7:45:a0:
d3:28:32:19:46:d8:00:8d:6d:84:4e:13:cd:23:d4:02:8f:a3:
0a:d2:85:d2:84:5e:ef:ef:65:78:a6:2f:05:c2:3c:0f:cb:06:
f7:2b:1b:ae:5f:35:ca:43:22:d8:69:2e:eb:72:27:18:d5:5b:
d7:e0:e4:ba:ad:fe:c5:d5:9f:d5:b9:37:8a:fd:6a:34:ee:14:
93:7d:0b:d6:1a:71:f9:b8:0d:b5:5a:d8:f3:80:83:6e:39:8a:
da:f2:7c:8e:a9:f9:fb:65:0d:f3:43:8d:14:e7:b9:6c:47:1f:
a6:4a:8b:48:06:d9:af:6c:00:7f:8d:64:08:d8:70:a6:97:7e:
82:8b:60:92:75:01:11:34:a6:b2:0a:4b:ec:92:e5:95:2c:5b:
7a:f3:da:19:d0:be:74:09:34:6c:8d:a2:1e:c3:04:14:88:da:
15:2d:3f:04:31:d3:58:71:eb:c9:85:2e:e3:a7:85:01:9a:8f:
e3:1a:8f:4c:5f:af:f0:67:08:74:cc:47:c8:7e:2f:d5:7b:c7:
39:c6:57:e1:0f:54:fe:b2:33:5d:75:9b:19:27:3f:e7:7e:64:
bf:6a:ce:09:40:86:6c:37:01:a0:6b:48:b0:1b:c5:ea:2c:f5:
6b:a0:06:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org