Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/tgHwHR3p3MByinAkxXMqAf8IVkc.roa
File: tgHwHR3p3MByinAkxXMqAf8IVkc.roa (raw, json)
Hash identifier: EoY7k1mbnOEPyXTTpxRM7mZqQLzLp5naU2Pny66q/3c=
Subject key identifier: B6:01:F0:1D:1D:E9:DC:C0:72:8A:70:24:C5:73:2A:01:FF:08:56:47
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018777655302E5BEAF0AD0E66EA08F99981E
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/tgHwHR3p3MByinAkxXMqAf8IVkc.roa
Signing time: Wed 12 Apr 2023 21:35:41 +0000
ROA not before: Wed 12 Apr 2023 21:35:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22822
IP address blocks: 176.125.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Apr 2023 17:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:77:65:53:02:e5:be:af:0a:d0:e6:6e:a0:8f:99:98:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 12 21:35:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b601f01d1de9dcc0728a7024c5732a01ff085647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:46:3e:b7:e7:0f:c3:32:6d:8b:fd:99:4a:c4:
c6:b2:40:44:76:63:f7:e0:2a:cc:8b:95:12:ee:d2:
3f:2f:49:c4:11:bd:bb:91:d2:57:c7:50:47:d4:7d:
8d:56:e5:bc:c4:af:82:cb:ac:b5:10:91:82:04:e7:
92:ae:cc:e8:f8:90:1c:ce:6a:9f:e6:73:c8:b5:97:
45:ac:41:a3:af:8d:a6:4d:1d:78:e6:2e:96:9e:0a:
75:51:48:28:52:77:26:b6:ae:b8:e3:da:54:c4:6d:
b8:a8:b3:b9:f4:ff:ca:08:64:5f:a1:52:c9:75:45:
9c:d3:23:20:ad:25:78:86:6c:17:bb:a0:3c:c4:fe:
27:77:f6:f7:c7:77:3c:f1:f7:1c:c1:63:a9:fd:2f:
5e:34:1b:f5:0e:d1:7a:14:3c:ce:3d:02:b5:a6:07:
93:cf:e1:76:3a:5b:a4:c3:b2:1a:9e:29:ce:82:b6:
2a:e9:b4:74:59:df:a0:eb:e2:5f:84:10:fe:70:4a:
e4:52:f4:dc:8a:73:1e:4c:4a:88:19:85:7b:b6:75:
98:a0:a1:b7:52:33:58:0c:c0:23:7a:a9:bc:cc:8e:
a3:c9:03:12:5f:53:6d:41:d4:22:81:bd:11:19:de:
04:bb:a3:13:ab:4d:7c:37:70:e3:fb:c9:cc:22:2e:
1f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:01:F0:1D:1D:E9:DC:C0:72:8A:70:24:C5:73:2A:01:FF:08:56:47
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/tgHwHR3p3MByinAkxXMqAf8IVkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.250.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:f5:b8:a3:b8:f8:b6:bf:cf:c4:50:60:7b:96:5a:a8:b0:e2:
97:b3:d6:18:28:a0:45:96:97:77:17:12:98:f2:3e:d7:8d:47:
5f:25:a6:19:bc:59:9b:7a:54:b9:7d:33:08:b0:6f:b0:6e:b4:
0f:4b:4d:90:49:e9:ac:e7:2c:f8:34:57:80:92:24:fc:8a:10:
c8:21:ea:4d:d8:65:99:5d:c6:f5:d1:28:9c:f9:65:7a:20:e0:
f5:32:08:47:d1:66:47:ff:29:af:22:01:cb:4a:38:66:53:f4:
c9:7f:a4:5a:cf:4f:fd:04:14:25:1f:8b:2f:27:02:32:e9:23:
af:4f:df:f0:9c:cf:7a:e1:54:65:28:74:93:de:12:c9:06:2f:
6e:2e:bb:7b:aa:f5:4a:58:1c:4b:9a:e5:94:95:60:12:00:77:
ee:7a:b8:c5:d7:d8:00:df:59:37:be:85:5f:59:26:7d:7a:21:
a1:c2:e9:46:53:6b:b5:b4:b9:82:d6:79:6e:73:49:9d:9e:6f:
6b:a5:64:1c:d7:26:44:9e:85:8b:7e:a8:1c:64:bd:41:c5:5e:
14:2d:38:e9:ec:db:f6:8d:f1:b9:3e:a1:21:51:5e:c0:84:bc:
20:37:95:9f:5a:97:d4:41:66:32:11:15:58:8b:1f:cb:46:16:
6b:73:46:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYd3ZVMC5b6vCtDmbqCPmZgeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjMwNDEyMjEzNTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjAxZjAxZDFkZTlkY2MwNzI4YTcwMjRjNTczMmEwMWZmMDg1NjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEY+t+cPwzJti/2ZSsTGskBEdmP3
4CrMi5US7tI/L0nEEb27kdJXx1BH1H2NVuW8xK+Cy6y1EJGCBOeSrszo+JAczmqf
5nPItZdFrEGjr42mTR145i6Wngp1UUgoUncmtq6449pUxG24qLO59P/KCGRfoVLJ
dUWc0yMgrSV4hmwXu6A8xP4nd/b3x3c88fccwWOp/S9eNBv1DtF6FDzOPQK1pgeT
z+F2Olukw7IaninOgrYq6bR0Wd+g6+JfhBD+cErkUvTcinMeTEqIGYV7tnWYoKG3
UjNYDMAjeqm8zI6jyQMSX1NtQdQigb0RGd4Eu6MTq018N3Dj+8nMIi4fUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLYB8B0d6dzAcopwJMVzKgH/CFZHMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvdGdId0hSM3AzTUJ5aW5Ba3hYTXFBZjhJVmtjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsH36MA0G
CSqGSIb3DQEBCwUAA4IBAQDN9bijuPi2v8/EUGB7llqosOKXs9YYKKBFlpd3FxKY
8j7XjUdfJaYZvFmbelS5fTMIsG+wbrQPS02QSems5yz4NFeAkiT8ihDIIepN2GWZ
Xcb10Sic+WV6IOD1MghH0WZH/ymvIgHLSjhmU/TJf6Raz0/9BBQlH4svJwIy6SOv
T9/wnM964VRlKHST3hLJBi9uLrt7qvVKWBxLmuWUlWASAHfuerjF19gA31k3voVf
WSZ9eiGhwulGU2u1tLmC1nluc0mdnm9rpWQc1yZEnoWLfqgcZL1BxV4ULTjp7Nv2
jfG5PqEhUV7AhLwgN5WfWpfUQWYyERVYix/LRhZrc0Yn
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:36 2024 by rpki-client on console-ams.rpki-client.org