Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UWjkeN_TMZtoXeOULd6GXtiaZAw.roa
File: UWjkeN_TMZtoXeOULd6GXtiaZAw.roa (raw, json)
Hash identifier: OIXCNAOJweDy4AFPzR3YC3uxWyp56FOMFrFN4OUhwms=
Subject key identifier: 51:68:E4:78:DF:D3:31:9B:68:5D:E3:94:2D:DE:86:5E:D8:9A:64:0C
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0187958125400AE196A32FE0A193222B2B63
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UWjkeN_TMZtoXeOULd6GXtiaZAw.roa
Signing time: Tue 18 Apr 2023 17:54:41 +0000
ROA not before: Tue 18 Apr 2023 17:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 176.125.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Apr 2023 18:15:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:95:81:25:40:0a:e1:96:a3:2f:e0:a1:93:22:2b:2b:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 18 17:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5168e478dfd3319b685de3942dde865ed89a640c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d4:93:f4:b4:05:d5:e0:cc:7c:12:17:4b:f6:
a8:b9:a7:e2:e0:6a:8b:25:59:93:13:35:0e:30:b6:
c6:2d:98:e0:04:23:c0:49:94:ce:bd:1f:ab:e4:f2:
22:d3:1b:ab:f1:4f:d8:0c:f8:7c:b1:92:be:ec:98:
3f:9b:78:76:7a:b4:b7:46:0b:ec:f2:bc:8f:6e:8d:
d1:40:f7:4c:54:6d:b2:60:8c:38:bd:83:3b:9d:a0:
b9:73:9e:bb:d9:52:5a:a5:cb:a7:d9:e3:e2:dd:b4:
f9:45:6f:31:b7:52:01:bd:12:5e:76:77:bf:91:ad:
2c:a4:d0:f9:52:a8:6e:7f:4f:bc:8f:61:e5:c3:72:
60:14:47:6a:02:8f:ce:40:a5:a2:15:2d:0c:53:86:
79:6a:c8:e6:66:d3:2a:ea:2d:ff:48:c6:39:ea:17:
38:ec:26:2d:cb:ce:bc:36:2f:65:df:bb:68:84:8d:
09:ec:28:55:af:a3:6f:7e:74:2e:d4:c9:59:1f:79:
cb:57:25:f7:72:15:a8:36:a7:0c:e4:90:29:07:d4:
30:de:ce:32:e6:11:3d:83:f0:cc:46:26:ca:37:cb:
5b:45:24:f2:f9:d4:d9:f5:52:19:0d:f2:da:d7:55:
a9:41:cc:ab:1b:3d:4e:59:66:74:90:ea:50:ba:b4:
21:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:68:E4:78:DF:D3:31:9B:68:5D:E3:94:2D:DE:86:5E:D8:9A:64:0C
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UWjkeN_TMZtoXeOULd6GXtiaZAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.250.0/24
Signature Algorithm: sha256WithRSAEncryption
03:05:a4:df:ff:cd:1f:d2:12:8a:d6:b4:37:16:68:19:66:1e:
0d:54:47:99:69:15:94:ed:3d:df:e2:35:d0:b8:ff:eb:15:31:
fc:73:f5:fd:29:89:98:a5:c8:58:7e:1f:77:38:e6:b7:60:ea:
d0:82:e7:a4:27:88:e4:30:75:0f:0f:03:64:12:d8:6b:81:18:
cc:fd:fc:57:64:30:0c:4a:60:f2:14:f1:6b:dc:e5:ee:c8:0a:
7e:f3:5f:17:19:24:9a:9f:b6:61:09:e1:3b:f3:51:44:28:4c:
fb:0a:51:02:eb:74:00:89:6d:39:7e:58:dc:25:50:88:57:fe:
71:e1:76:74:3b:22:15:d1:ba:11:ae:35:17:c5:27:5d:99:ed:
af:1a:3e:d0:c7:2d:8d:ae:2e:3f:64:bd:af:42:31:24:cc:d3:
33:48:c4:6e:bb:23:12:fc:e6:dc:c8:3d:e1:1e:92:23:06:00:
04:fc:e2:a4:65:56:7f:90:c3:3b:59:05:65:ce:84:e5:e7:bd:
b2:69:b8:2e:40:0a:88:51:07:2e:3f:5e:6e:84:e3:2e:64:4d:
05:9d:2c:62:f1:29:93:3f:41:6c:d7:cb:70:05:b7:ce:88:72:
9e:c1:fa:0f:91:84:8a:77:d7:34:18:11:eb:de:a9:2c:5a:b5:
25:38:fc:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org