Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/JeD5wYk2a_6HtvsTEnvi5Es5f_E.roa
File: JeD5wYk2a_6HtvsTEnvi5Es5f_E.roa (raw, json)
Hash identifier: /bHQ0AAbTfcUaRNRkL65JZbop5lP8BuCKA/9Aj6Tyhg=
Subject key identifier: 25:E0:F9:C1:89:36:6B:FE:87:B6:FB:13:12:7B:E2:E4:4B:39:7F:F1
Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Certificate serial: 018988BA20C8BC07010E4406981E7C9CFC15
Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/JeD5wYk2a_6HtvsTEnvi5Es5f_E.roa
Signing time: Mon 24 Jul 2023 16:27:26 +0000
ROA not before: Mon 24 Jul 2023 16:27:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34996
IP address blocks: 90.158.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:88:ba:20:c8:bc:07:01:0e:44:06:98:1e:7c:9c:fc:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Validity
Not Before: Jul 24 16:27:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25e0f9c189366bfe87b6fb13127be2e44b397ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2c:e2:48:e5:52:d6:f1:96:80:b8:62:f1:39:
d6:b3:9b:d5:42:6a:9e:7e:f2:74:2a:60:d1:2d:76:
04:5f:2d:a3:ca:55:d8:9e:2c:49:4d:8f:5d:17:86:
7b:b0:83:f1:b4:c1:05:cc:de:38:2f:7a:9f:b2:5a:
63:b6:4b:da:ec:f6:a1:96:15:35:f3:9e:20:4d:68:
ee:25:58:f1:59:3c:20:2f:54:0c:65:62:67:f4:06:
01:c6:87:1d:bd:af:33:2c:34:ee:88:45:4d:e6:b7:
a7:33:25:42:39:33:47:ad:8c:58:b4:f9:d6:37:48:
5d:5c:1d:33:9e:aa:db:6a:0a:b3:53:fd:78:69:75:
7b:96:10:63:f8:2b:1a:24:4f:96:3f:54:8a:3d:24:
16:7d:fc:7e:c3:f9:c6:8c:e5:eb:f7:63:90:74:e0:
82:e0:80:1b:2b:69:dd:f0:7f:3c:ff:eb:3e:e8:8b:
a5:83:b5:ac:c1:59:c5:d8:3c:7f:f6:9c:d8:0d:4a:
0b:b9:fc:75:d6:f9:4a:6d:f8:a3:61:66:f7:5d:e4:
cf:a0:e0:64:ee:25:a0:34:bf:52:97:0e:99:79:b3:
73:ca:3b:66:06:5d:32:c0:01:dc:02:2c:6f:4d:80:
0f:1b:1e:c1:ca:36:6c:14:d6:ae:d5:b2:0d:78:eb:
9d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E0:F9:C1:89:36:6B:FE:87:B6:FB:13:12:7B:E2:E4:4B:39:7F:F1
X509v3 Authority Key Identifier:
keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/JeD5wYk2a_6HtvsTEnvi5Es5f_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.158.250.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:06:79:f6:9f:17:0b:0a:ed:b4:ec:df:31:c0:f4:05:4f:a4:
76:c8:18:71:51:54:89:15:e5:00:b5:25:9d:e9:ea:69:b7:a6:
49:8f:72:12:13:08:20:5f:33:67:fe:8d:53:25:59:0a:68:2b:
c7:3e:de:11:29:ad:73:23:bd:2e:c5:c3:86:23:97:ac:43:8d:
78:dd:e9:1a:a8:60:3d:98:57:4f:f4:a9:ab:64:9c:b5:68:f0:
27:a2:4b:66:d7:49:a7:2f:35:6a:c6:2f:be:0c:67:2b:2a:9f:
63:c4:64:6a:ac:fd:78:0d:a3:97:74:4d:56:85:e3:5d:68:f8:
e1:8d:24:41:b3:98:bc:d0:2f:c3:64:32:09:39:72:cd:ea:8c:
9b:07:11:2c:ea:be:b2:09:69:8c:aa:19:d3:26:eb:77:1c:e5:
44:2a:2a:1e:f2:78:8d:78:66:80:6f:cb:21:54:4c:49:9a:70:
11:ed:d4:fb:82:86:9d:ee:bf:37:70:3d:e4:65:64:35:27:72:
fd:39:f3:44:c2:af:65:a3:bb:30:7d:c7:4d:4a:15:ba:0d:5a:
7d:5e:90:47:65:e0:4b:14:79:d3:70:99:6c:18:d5:9f:40:62:
cd:87:cf:f7:15:52:f3:b5:79:a9:eb:66:1e:9b:57:d2:4c:e2:
4a:29:c3:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:14 2024 by rpki-client on console-fra.rpki-client.org