Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/D-IPgwTnnKBIVOAGZvFk_BeXhYM.roa
File: D-IPgwTnnKBIVOAGZvFk_BeXhYM.roa (raw, json)
Hash identifier: SeUlTc6NHdytdHRC8eze6VrLeyZTowI6KsPM71Xz1i8=
Subject key identifier: 0F:E2:0F:83:04:E7:9C:A0:48:54:E0:06:66:F1:64:FC:17:97:85:83
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018C3F81B7676F1E455F291A1F02ED52DA70
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/D-IPgwTnnKBIVOAGZvFk_BeXhYM.roa
Signing time: Wed 06 Dec 2023 14:21:54 +0000
ROA not before: Wed 06 Dec 2023 14:21:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215898
IP address blocks: 185.132.53.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3f:81:b7:67:6f:1e:45:5f:29:1a:1f:02:ed:52:da:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Dec 6 14:21:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fe20f8304e79ca04854e00666f164fc17978583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:79:2c:80:7b:61:1b:28:84:c9:36:ec:95:c3:
ac:1b:9a:86:48:59:4a:49:4c:ea:e0:6d:c1:8b:3a:
71:a7:f9:17:43:42:c2:67:3e:47:7f:87:85:4c:d8:
70:65:21:92:12:75:44:3c:37:e7:cb:95:f0:17:21:
aa:5e:a7:48:56:88:e2:53:a7:a3:e1:20:c3:50:e3:
b1:28:b8:fd:73:7e:3b:01:d6:e8:69:17:01:e6:19:
5d:36:9b:f1:c9:c7:6e:f8:24:02:f1:08:d8:60:af:
9e:5f:41:fc:30:03:21:74:86:1c:cf:0f:1d:96:3b:
3a:05:15:ae:e3:40:b7:aa:a9:40:55:7f:83:f4:81:
07:87:92:26:0b:06:b3:c4:ae:54:3b:18:d5:c7:17:
63:63:19:83:25:b5:3b:08:c2:e3:1d:87:09:49:fb:
08:d9:29:7c:af:af:a3:c7:c1:a7:f8:c3:a4:b2:c9:
e6:5d:68:b3:2d:fc:4f:95:e2:34:ed:f9:af:fe:3d:
25:73:c3:1c:b5:56:b4:c6:19:73:af:3c:22:c9:0e:
e4:90:9c:98:c0:af:50:62:69:3c:a8:07:e8:29:3f:
07:e1:75:45:43:ae:2a:e6:9e:8e:8c:66:d1:1c:f8:
82:0a:02:34:4d:a5:e3:09:5f:ae:fd:15:11:4d:45:
7b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E2:0F:83:04:E7:9C:A0:48:54:E0:06:66:F1:64:FC:17:97:85:83
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/D-IPgwTnnKBIVOAGZvFk_BeXhYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.53.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:7f:dc:1a:c0:69:bf:ac:7f:4a:5d:4c:fc:5a:3e:51:55:ce:
58:3f:99:65:37:62:54:33:c9:90:13:75:3d:e7:f6:6b:21:fa:
c7:c8:b1:5f:db:30:85:3d:10:e5:07:1e:a7:d7:ad:85:4f:f5:
7a:2d:28:a0:d6:80:12:20:ab:bd:75:83:4f:b8:5a:ae:62:11:
1b:55:ed:12:30:7b:ba:9a:b7:83:06:7b:a9:85:a7:eb:d3:ce:
08:05:31:a4:70:18:91:a1:38:d1:64:d7:0f:8c:25:a5:42:db:
e5:c8:cd:ed:8a:65:35:02:9a:60:40:08:5d:f1:23:9e:d1:32:
63:2e:04:ea:50:6a:9f:82:ad:b4:ab:2c:fc:34:f2:a3:c8:e2:
88:8a:c3:02:5c:58:f2:3d:22:8e:95:61:68:ce:e5:77:83:98:
a2:c1:b8:c0:b5:d9:e4:a2:47:1b:f4:b5:12:27:fc:57:72:fa:
a8:2e:d5:cd:35:5f:37:8c:76:ff:c7:e3:3a:e7:a2:6f:02:03:
4b:2c:34:24:74:63:45:2b:7e:a8:ed:6d:75:20:49:90:cd:9b:
d0:76:0f:a3:39:72:7f:1c:76:9b:d7:d8:5e:cb:03:cb:a2:24:
53:16:28:d0:2a:1d:b2:db:83:df:bd:11:db:0e:24:76:12:ff:
38:82:c1:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYw/gbdnbx5FXykaHwLtUtpwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMxMjA2MTQyMTU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZmUyMGY4MzA0ZTc5Y2EwNDg1NGUwMDY2NmYxNjRmYzE3OTc4NTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi3ksgHthGyiEyTbslcOsG5qGSFlK
SUzq4G3Bizpxp/kXQ0LCZz5Hf4eFTNhwZSGSEnVEPDfny5XwFyGqXqdIVojiU6ej
4SDDUOOxKLj9c347AdboaRcB5hldNpvxycdu+CQC8QjYYK+eX0H8MAMhdIYczw8d
ljs6BRWu40C3qqlAVX+D9IEHh5ImCwazxK5UOxjVxxdjYxmDJbU7CMLjHYcJSfsI
2Sl8r6+jx8Gn+MOkssnmXWizLfxPleI07fmv/j0lc8MctVa0xhlzrzwiyQ7kkJyY
wK9QYmk8qAfoKT8H4XVFQ64q5p6OjGbRHPiCCgI0TaXjCV+u/RURTUV7RQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA/iD4ME55ygSFTgBmbxZPwXl4WDMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvRC1JUGd3VG5uS0JJVk9BR1p2RmtfQmVYaFlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYQ1MA0G
CSqGSIb3DQEBCwUAA4IBAQANf9wawGm/rH9KXUz8Wj5RVc5YP5llN2JUM8mQE3U9
5/ZrIfrHyLFf2zCFPRDlBx6n162FT/V6LSig1oASIKu9dYNPuFquYhEbVe0SMHu6
mreDBnuphafr084IBTGkcBiRoTjRZNcPjCWlQtvlyM3timU1AppgQAhd8SOe0TJj
LgTqUGqfgq20qyz8NPKjyOKIisMCXFjyPSKOlWFozuV3g5iiwbjAtdnkokcb9LUS
J/xXcvqoLtXNNV83jHb/x+M656JvAgNLLDQkdGNFK36o7W11IEmQzZvQdg+jOXJ/
HHab19heywPLoiRTFijQKh2y24PfvRHbDiR2Ev84gsEL
-----END CERTIFICATE-----
Generated at Sun Dec 31 09:12:28 2023 by rpki-client on console-fra.rpki-client.org