Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/BLGpH0WjtqESNqWdfa5Vo5q_VmA.roa
File: BLGpH0WjtqESNqWdfa5Vo5q_VmA.roa (raw, json)
Hash identifier: g89Kh/eYvn3xHCahM9Y4tDJjT+YBVtzoG9OLg5NP2bQ=
Subject key identifier: 04:B1:A9:1F:45:A3:B6:A1:12:36:A5:9D:7D:AE:55:A3:9A:BF:56:60
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE611218E4BB9953C78B930EEB85DE0
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/BLGpH0WjtqESNqWdfa5Vo5q_VmA.roa
Signing time: Sun 01 Jan 2023 10:34:55 +0000
ROA not before: Sun 01 Jan 2023 10:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31472
IP address blocks: 185.132.52.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:11:21:8e:4b:b9:95:3c:78:b9:30:ee:b8:5d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04b1a91f45a3b6a11236a59d7dae55a39abf5660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a7:be:1f:ea:20:4c:76:71:ad:b3:89:af:6e:
0e:b8:e4:25:0f:40:44:10:14:5a:cc:cf:12:eb:8e:
04:2b:61:d9:54:5a:61:75:b3:b6:a6:3f:87:6a:7e:
46:e0:ba:25:31:99:5a:83:b2:18:d0:15:cc:c1:a6:
04:64:76:57:5a:e6:bd:95:23:27:86:ac:e9:94:0a:
3c:84:93:68:2b:07:57:a9:d1:7d:7a:e1:03:51:ce:
5b:c4:a7:37:a8:70:8f:ad:83:5a:9a:8d:1f:2c:92:
3e:59:71:49:3e:d1:83:2d:ed:ea:36:f2:b0:29:df:
9e:c6:0e:67:84:4b:5e:2d:35:57:39:4b:11:9f:6c:
21:07:80:74:70:36:53:e4:7f:08:62:0e:1a:8a:27:
5e:b2:d1:cb:73:11:ec:4a:ae:86:03:c2:68:59:f5:
ec:86:29:37:7d:04:64:2c:1a:b5:6f:5f:5b:96:36:
eb:63:14:4f:1a:81:ec:67:c6:46:2a:3c:8f:6f:1c:
fb:34:69:38:07:c7:69:ee:c5:4d:d3:a6:32:b9:bd:
12:18:19:7f:fe:c1:c4:23:36:84:40:52:9d:5e:65:
dc:9d:4d:59:f5:5f:49:ab:47:12:a3:d2:2a:0f:e1:
e5:28:60:a8:3f:10:1a:db:ec:a5:e6:8a:1f:68:be:
2e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B1:A9:1F:45:A3:B6:A1:12:36:A5:9D:7D:AE:55:A3:9A:BF:56:60
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/BLGpH0WjtqESNqWdfa5Vo5q_VmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.52.0/24
Signature Algorithm: sha256WithRSAEncryption
79:93:1d:a6:32:bc:43:ab:c7:e5:24:7a:e4:f4:1b:a4:28:0c:
df:f5:cc:3f:f4:68:89:ae:51:8c:83:37:f5:67:4d:a7:ec:03:
7d:1b:02:cc:36:cd:c3:b4:2d:27:6f:ab:17:3f:cc:49:24:f8:
2d:99:78:be:1d:85:5e:a3:4e:98:1d:4e:ef:68:1b:4f:be:43:
0d:3f:94:b4:72:04:58:da:11:2e:04:c1:33:fd:4d:e7:af:14:
f0:1a:74:84:3f:8f:b7:61:b9:42:8d:a3:4a:d8:89:88:a8:5f:
9e:84:20:32:5f:c6:09:05:10:4a:e6:bc:88:d7:29:4e:b5:c0:
6b:05:ab:8f:c0:db:08:d6:6e:8f:1a:95:f1:4e:85:79:0f:4b:
4d:e3:ef:57:c3:ec:48:c9:0d:f2:61:a2:12:2c:12:4a:19:6b:
8a:e4:b4:ce:fb:19:a6:64:ac:44:8e:1e:c2:93:ec:38:b1:f9:
b3:c2:6f:6d:40:65:b6:0f:f0:b6:4f:c8:f8:42:3a:01:a7:ff:
0c:a1:c6:c0:f7:c7:22:b2:9e:f0:41:4e:eb:76:de:fa:98:e1:
56:9b:7e:95:20:e4:e1:e5:77:ab:ea:59:45:e4:a6:2a:1f:e7:
dc:5f:57:7f:89:67:87:d5:52:ce:65:9e:c3:91:3f:93:45:50:
6e:b7:52:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-ams.rpki-client.org