Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/tHjuzYgWLJiy8uqeb5VekrLk7OE.roa
File: tHjuzYgWLJiy8uqeb5VekrLk7OE.roa (raw, json)
Hash identifier: wraezlXM2K1Ha/8mUb32dZuiFLIMrvcp0+YHWAutvso=
Subject key identifier: B4:78:EE:CD:88:16:2C:98:B2:F2:EA:9E:6F:95:5E:92:B2:E4:EC:E1
Certificate issuer: /CN=10953e607670ff738eee6a6b577d8c8b2804e1e1
Certificate serial: 01856B4A0849407034102235692C75C54155
Authority key identifier: 10:95:3E:60:76:70:FF:73:8E:EE:6A:6B:57:7D:8C:8B:28:04:E1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/tHjuzYgWLJiy8uqeb5VekrLk7OE.roa
Signing time: Sun 01 Jan 2023 03:04:51 +0000
ROA not before: Sun 01 Jan 2023 03:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 176.124.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:08:49:40:70:34:10:22:35:69:2c:75:c5:41:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10953e607670ff738eee6a6b577d8c8b2804e1e1
Validity
Not Before: Jan 1 03:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b478eecd88162c98b2f2ea9e6f955e92b2e4ece1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1b:39:32:99:3f:54:06:24:1e:ec:b0:38:1b:
d9:cc:27:82:0d:ca:cc:40:a5:b6:65:cf:6e:d0:b2:
3f:d5:54:c4:4d:aa:2c:56:a7:f8:93:41:fe:c5:30:
66:01:b6:a2:ea:83:58:05:4e:7f:3e:38:29:60:f2:
9a:0e:14:73:09:1c:ca:20:92:14:06:a4:44:76:a0:
50:29:fb:62:24:5a:04:f4:f7:21:61:ba:fb:f7:a6:
27:ee:ed:be:0f:af:65:76:8b:85:b9:52:09:5b:b0:
0c:19:9c:e6:45:b4:4f:61:d7:d8:58:2e:1a:a5:b5:
d1:49:ef:fb:fe:b0:e9:f2:66:14:4b:8c:cd:96:cf:
57:25:9d:42:fb:91:1f:09:b4:89:51:43:f1:0b:ed:
67:13:c1:a7:f6:2b:cf:31:01:75:7c:6a:5b:b4:1c:
1a:2a:3c:b2:bd:9e:03:13:55:e6:29:f1:fc:0a:5f:
47:7c:0e:cd:78:80:b8:74:2b:25:8c:43:4e:d7:f4:
fd:20:8f:5a:c5:81:19:2a:ef:cf:ec:df:a0:67:c0:
6a:4c:6a:17:5f:65:7d:ee:74:bc:72:98:02:18:4f:
2d:d6:5e:0c:38:9d:5d:cb:86:50:d3:b4:c5:0b:fb:
51:f9:f8:1c:1c:d2:ef:9b:ed:b6:f0:cc:5c:31:9e:
5e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:78:EE:CD:88:16:2C:98:B2:F2:EA:9E:6F:95:5E:92:B2:E4:EC:E1
X509v3 Authority Key Identifier:
keyid:10:95:3E:60:76:70:FF:73:8E:EE:6A:6B:57:7D:8C:8B:28:04:E1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/tHjuzYgWLJiy8uqeb5VekrLk7OE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/EJU-YHZw_3OO7mprV32MiygE4eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.224.0/24
Signature Algorithm: sha256WithRSAEncryption
53:82:ea:b7:a8:e4:67:3f:15:f2:5b:61:a4:ec:6b:d4:00:4c:
1c:95:64:e3:ec:b4:c6:18:d1:68:ba:79:b9:58:25:74:56:6a:
93:15:b7:dc:d0:7e:80:87:6d:d2:97:75:b8:02:74:53:69:a4:
40:c6:1f:b2:99:a9:b8:4a:94:89:22:c7:69:74:15:da:53:52:
61:f8:67:6d:21:bf:59:c2:03:5b:a2:ba:fd:be:00:9e:ec:ad:
be:00:a7:4a:6a:e3:ed:48:08:a9:63:ac:74:d9:c8:aa:74:6b:
5d:40:1a:45:87:c8:55:a7:b3:74:52:76:23:fe:11:f2:bd:e9:
67:04:47:a3:4c:ce:94:49:0a:56:e7:a5:7f:71:02:bb:5e:dd:
b5:56:73:8e:31:3c:6c:33:b7:ce:cc:90:71:47:bc:1b:23:00:
8a:95:33:88:03:7f:d5:c9:14:19:23:41:57:45:e3:9f:ba:ed:
99:6e:10:93:2d:a1:fc:f9:66:63:03:86:2d:ca:a1:40:d7:02:
d2:ea:8a:e9:04:d5:8e:fb:e8:29:a7:6c:b2:f2:69:6a:30:a8:
90:ec:b1:21:3c:f3:a4:b3:5b:8b:84:7c:36:a7:8c:8a:ba:fc:
a0:88:56:a8:c9:c8:2f:b6:99:b1:8a:61:09:8d:bb:70:57:51:
a6:1e:d1:46
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrSghJQHA0ECI1aSx1xUFVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwOTUzZTYwNzY3MGZmNzM4ZWVlNmE2YjU3N2Q4YzhiMjgw
NGUxZTEwHhcNMjMwMTAxMDMwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDc4ZWVjZDg4MTYyYzk4YjJmMmVhOWU2Zjk1NWU5MmIyZTRlY2UxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBs5Mpk/VAYkHuywOBvZzCeCDcrM
QKW2Zc9u0LI/1VTETaosVqf4k0H+xTBmAbai6oNYBU5/PjgpYPKaDhRzCRzKIJIU
BqREdqBQKftiJFoE9PchYbr796Yn7u2+D69ldouFuVIJW7AMGZzmRbRPYdfYWC4a
pbXRSe/7/rDp8mYUS4zNls9XJZ1C+5EfCbSJUUPxC+1nE8Gn9ivPMQF1fGpbtBwa
KjyyvZ4DE1XmKfH8Cl9HfA7NeIC4dCsljENO1/T9II9axYEZKu/P7N+gZ8BqTGoX
X2V97nS8cpgCGE8t1l4MOJ1dy4ZQ07TFC/tR+fgcHNLvm+228MxcMZ5eEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLR47s2IFiyYsvLqnm+VXpKy5OzhMB8GA1UdIwQY
MBaAFBCVPmB2cP9zju5qa1d9jIsoBOHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUpVLVlIWndfM09PN21wclYzMk1peWdFNGVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9hOTkzNTUtMmQwMS00ZGE1LThlNzMt
MWJjNTUyYzAwZGQ3LzEvdEhqdXpZZ1dMSml5OHVxZWI1VmVrckxrN09FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9hOTkzNTUtMmQwMS00ZGE1LThlNzMtMWJjNTUyYzAwZGQ3
LzEvRUpVLVlIWndfM09PN21wclYzMk1peWdFNGVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHzgMA0G
CSqGSIb3DQEBCwUAA4IBAQBTguq3qORnPxXyW2Gk7GvUAEwclWTj7LTGGNFounm5
WCV0VmqTFbfc0H6Ah23Sl3W4AnRTaaRAxh+ymam4SpSJIsdpdBXaU1Jh+GdtIb9Z
wgNborr9vgCe7K2+AKdKauPtSAipY6x02ciqdGtdQBpFh8hVp7N0UnYj/hHyveln
BEejTM6USQpW56V/cQK7Xt21VnOOMTxsM7fOzJBxR7wbIwCKlTOIA3/VyRQZI0FX
ReOfuu2ZbhCTLaH8+WZjA4YtyqFA1wLS6orpBNWO++gpp2yy8mlqMKiQ7LEhPPOk
s1uLhHw2p4yKuvygiFaoycgvtpmximEJjbtwV1GmHtFG
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:42 2024 by rpki-client on console-ams.rpki-client.org