Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/nxyC51a5LR6NnhqClek4ujbZLTc.roa
File: nxyC51a5LR6NnhqClek4ujbZLTc.roa (raw, json)
Hash identifier: QUZZ7jhA15K5n5RaNiFofVfcR69GYLhONS4Miw3YHn8=
Subject key identifier: 9F:1C:82:E7:56:B9:2D:1E:8D:9E:1A:82:95:E9:38:BA:36:D9:2D:37
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018684A201C666D50C71D9F2089A8EE9AF9E
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/nxyC51a5LR6NnhqClek4ujbZLTc.roa
Signing time: Fri 24 Feb 2023 18:14:15 +0000
ROA not before: Fri 24 Feb 2023 18:14:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 150752
IP address blocks: 185.250.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 16:08:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:84:a2:01:c6:66:d5:0c:71:d9:f2:08:9a:8e:e9:af:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Feb 24 18:14:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f1c82e756b92d1e8d9e1a8295e938ba36d92d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a5:96:3a:38:9e:3b:62:86:42:12:39:14:40:
75:20:34:ca:b0:74:00:e3:b1:99:e3:ec:a4:e6:b6:
fe:35:1c:5e:dc:ec:d4:05:bf:fd:19:70:95:93:fe:
97:32:2c:6e:47:45:7f:4c:b6:18:74:ed:11:1c:43:
64:de:c6:59:8a:ba:60:d7:4a:ce:4e:a7:f9:af:9f:
6c:4f:6a:ed:42:17:c5:bd:e4:e1:7f:8b:2c:0a:ab:
2a:6b:d9:e6:84:e7:23:fc:68:c1:95:b6:f7:52:46:
58:80:8d:f3:86:17:91:06:12:75:65:0d:de:c4:fb:
f3:e5:50:e4:66:53:01:5d:6e:37:f2:5f:83:fb:d1:
1e:09:97:e5:f7:73:44:c9:ca:e3:e9:2c:e6:4c:ea:
b4:76:0b:5f:74:c2:3e:63:21:57:18:d3:18:6e:ae:
3d:10:78:66:05:39:db:af:d7:6c:3f:26:bf:ce:5f:
e0:fc:70:8d:fa:05:3b:40:d8:bf:61:46:0c:4c:04:
4c:50:1f:88:44:c5:57:c0:8f:ad:f1:fc:a8:fb:2d:
a0:ce:ba:1f:3b:68:9d:e7:4a:0e:21:63:aa:85:55:
f7:76:5f:98:57:fb:76:31:a5:e4:21:b0:6b:19:ea:
7c:d9:f9:37:a2:d1:6e:bd:71:a7:1b:ab:f1:80:ae:
a7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:1C:82:E7:56:B9:2D:1E:8D:9E:1A:82:95:E9:38:BA:36:D9:2D:37
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/nxyC51a5LR6NnhqClek4ujbZLTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.26.0/24
Signature Algorithm: sha256WithRSAEncryption
55:d7:d7:40:54:2c:64:c0:c5:fd:47:66:b8:3c:27:2a:bd:76:
b8:f9:d6:41:b5:4f:e7:ad:73:94:43:76:86:dd:f1:c9:40:66:
07:02:79:ce:c5:ce:e9:43:c7:19:50:85:33:97:bd:60:01:a9:
fe:fd:41:22:86:dd:13:69:ee:df:d3:f4:f1:d5:15:43:b0:84:
03:76:d2:40:be:16:ad:af:06:e2:28:5d:88:c5:c7:be:d1:38:
ab:5b:a9:4b:c6:d0:90:43:82:00:41:08:b1:aa:9c:90:43:c3:
1c:e9:02:85:61:d6:cc:87:34:d0:d8:0f:04:88:07:cf:ab:59:
0e:f0:6f:ea:97:61:ee:0f:23:06:97:e7:c4:97:f3:88:ae:af:
f6:2f:50:25:70:87:26:55:5d:bc:05:00:ad:e1:70:8e:33:f2:
0c:a6:88:02:8d:ae:72:78:06:1e:7b:1f:21:5c:d0:65:23:2a:
45:41:63:17:01:7a:b3:7a:85:73:c8:09:6c:7b:16:22:92:97:
b5:32:cf:da:d7:41:7a:6e:8a:92:d4:e8:ba:13:81:a6:36:af:
92:e8:d9:ee:a1:9e:9d:18:b8:b7:ed:d7:65:31:f7:9b:23:e1:
5a:09:57:f8:09:75:36:46:32:3b:b7:ed:8e:1b:eb:98:19:ba:
57:c5:e0:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org