Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/nyjvYRI8Y3HmCPpFuPdQ3agP8Ec.roa
File: nyjvYRI8Y3HmCPpFuPdQ3agP8Ec.roa (raw, json)
Hash identifier: tlKal7PVTdpeh7+N7LUgYhLiHJs+E8fRU1L+M6CwMF0=
Subject key identifier: 9F:28:EF:61:12:3C:63:71:E6:08:FA:45:B8:F7:50:DD:A8:0F:F0:47
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01891AC6D814B4A1ED72C0C88872869FCDD1
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/nyjvYRI8Y3HmCPpFuPdQ3agP8Ec.roa
Signing time: Mon 03 Jul 2023 08:03:06 +0000
ROA not before: Mon 03 Jul 2023 08:03:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 176.125.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Jul 2023 07:21:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1a:c6:d8:14:b4:a1:ed:72:c0:c8:88:72:86:9f:cd:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jul 3 08:03:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f28ef61123c6371e608fa45b8f750dda80ff047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:15:1c:26:21:ae:a7:93:8d:e9:bd:69:f5:c9:
22:82:07:62:15:85:c8:73:33:68:23:0e:55:bf:78:
10:08:24:c8:03:f0:85:de:6c:17:58:13:97:03:8b:
60:ff:bd:55:a0:91:d5:8b:b1:b1:93:7b:28:79:b7:
b6:51:0c:d0:5a:cd:f0:f7:7d:36:da:7d:29:5d:53:
70:0f:c7:13:34:7a:22:d1:25:c7:3e:7d:d3:52:4a:
0f:b1:5a:7f:19:da:17:52:be:72:f7:25:da:c6:53:
f4:f9:f7:04:88:d7:a4:4a:b2:11:4b:ef:db:79:ef:
11:02:ff:1c:88:2d:14:c1:59:67:04:f9:7c:cc:46:
a0:72:25:cd:94:45:cb:f8:8f:18:8a:4a:9c:f2:bb:
06:b4:a9:ce:8a:c9:38:f1:ce:66:ec:25:92:bc:6f:
b7:a6:c3:5e:64:f4:6c:fe:f6:12:58:e7:b5:12:9f:
f4:9a:53:02:68:74:a4:6d:52:d1:db:80:e7:34:62:
69:c0:59:b0:6b:ae:5b:8d:37:9a:4f:b4:10:57:62:
fd:de:97:6a:9f:d7:19:ec:4d:2d:e1:9c:cc:e2:49:
e9:59:38:92:13:2d:4e:5a:2d:0d:9e:50:7f:8b:93:
a7:95:39:4c:20:c5:d7:3c:ad:90:1e:db:fa:f6:eb:
3c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:28:EF:61:12:3C:63:71:E6:08:FA:45:B8:F7:50:DD:A8:0F:F0:47
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/nyjvYRI8Y3HmCPpFuPdQ3agP8Ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.250.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:5f:bc:2c:da:5d:d1:8a:28:1f:77:6e:d4:34:f6:42:73:7c:
26:68:08:5e:71:b5:b8:2b:72:7f:dc:8f:75:6e:43:d1:f4:a5:
03:29:04:41:1f:35:78:26:38:5a:be:7a:0f:ac:6c:92:45:3a:
f9:c3:aa:de:88:6d:02:a2:cc:6e:b0:74:3a:9c:52:31:ac:21:
3a:7f:74:34:7e:5d:3c:86:99:f0:b1:ad:29:3f:a2:53:e7:0b:
5d:ce:fb:79:6f:ad:e2:df:62:75:98:a6:27:8d:a1:c3:d1:23:
8b:c2:4b:11:c5:89:a2:83:e6:b2:c7:f7:86:a1:ee:d0:66:74:
a7:81:3c:fa:a5:0e:98:2d:dd:1c:7e:13:97:94:68:26:62:3c:
f3:d0:80:d9:29:b6:d3:a3:2d:b2:7b:e6:98:5a:4a:78:96:45:
7a:8b:a7:5d:8e:55:16:5f:be:5d:04:10:5e:13:0f:c2:d7:c6:
4a:96:7e:fd:1f:77:a1:5c:e4:42:3a:bf:66:54:ac:ae:e0:f3:
23:d1:b3:a5:28:e1:e5:49:73:2e:96:87:12:83:16:c0:58:8e:
1d:7f:5f:db:f9:36:c5:a3:8a:23:c3:d9:fd:76:4b:50:6d:8c:
23:ad:3c:0b:60:4a:20:13:1f:d5:6c:f3:66:52:14:9e:d1:11:
70:1d:db:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org