Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/lWtsHSalGTr-_SoCriM5WQVjMX0.roa
File: lWtsHSalGTr-_SoCriM5WQVjMX0.roa (raw, json)
Hash identifier: amQqQM0h7S6zUkKhgYrXwGnmrP+iobJbm1Foncv45lw=
Subject key identifier: 95:6B:6C:1D:26:A5:19:3A:FE:FD:2A:02:AE:23:39:59:05:63:31:7D
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018AFEF44DE1E6E7C2B43D6E8393AE2B1C90
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/lWtsHSalGTr-_SoCriM5WQVjMX0.roa
Signing time: Thu 05 Oct 2023 08:28:58 +0000
ROA not before: Thu 05 Oct 2023 08:28:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47504
IP address blocks: 2.58.196.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fe:f4:4d:e1:e6:e7:c2:b4:3d:6e:83:93:ae:2b:1c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 5 08:28:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=956b6c1d26a5193afefd2a02ae2339590563317d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ec:95:3e:a8:d9:7a:50:c0:24:14:16:09:20:
d1:dd:fe:19:90:a0:18:74:dc:66:53:12:ca:c4:34:
31:88:d7:60:95:83:4f:95:5f:17:7a:c5:e0:bd:a5:
9e:59:bf:2d:74:d0:13:9c:14:85:0e:67:93:ae:44:
8a:db:86:b9:2a:bd:5a:d0:20:c3:30:36:73:cc:83:
34:df:bb:ae:31:3d:5c:cd:a4:2d:23:1d:6e:1f:12:
c3:c1:56:61:a8:4b:30:f2:a7:14:a0:1f:6c:0c:ca:
42:32:2f:9f:e1:d3:75:8a:24:43:42:48:a7:15:f9:
78:0a:ac:ae:8c:8d:86:62:5f:32:9f:44:d2:f7:82:
a3:ae:02:48:1a:1c:a6:93:0a:43:bb:69:67:c7:41:
b1:d6:65:e4:13:b2:ae:57:fe:13:99:f1:cd:e7:01:
06:59:86:d5:91:e9:36:72:00:c0:43:62:ef:7c:ad:
c6:7d:4a:0c:06:c7:5c:75:a2:92:78:6d:b6:bb:fc:
98:42:93:5d:36:26:61:c5:f7:13:14:36:19:bc:0b:
be:1a:5c:79:2a:d2:1d:71:11:37:d0:b9:79:67:08:
f8:15:a3:fb:a8:3a:fb:fc:92:02:01:ca:af:e8:7f:
0b:d7:cf:bd:ae:f1:96:79:60:69:b6:93:06:d5:ed:
9d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:6B:6C:1D:26:A5:19:3A:FE:FD:2A:02:AE:23:39:59:05:63:31:7D
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/lWtsHSalGTr-_SoCriM5WQVjMX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.196.0/23
Signature Algorithm: sha256WithRSAEncryption
91:2b:8a:45:93:94:f9:ec:d1:e5:3b:5b:13:8c:69:61:34:07:
92:92:0d:f6:66:23:f9:05:08:2d:01:0e:74:46:ee:fe:5e:db:
82:30:58:97:6d:5f:66:99:83:b8:5f:50:f4:4e:f2:30:70:00:
6f:99:cc:cd:58:25:5d:dd:e6:f2:14:1c:d8:89:10:e4:0f:59:
12:54:f4:28:df:38:04:e6:a9:bf:4b:44:fb:73:bc:60:73:e7:
1a:85:96:f3:70:2b:e8:11:74:74:2e:2f:b5:e2:cf:cd:32:6a:
d5:96:16:7f:37:63:bb:98:bf:7c:dd:89:f5:c3:2c:3c:ca:df:
b4:fa:e7:16:40:9b:94:e6:6a:a4:e9:64:62:80:5c:d4:c8:56:
e5:e6:87:91:66:5c:5b:07:90:f5:2d:4f:f3:c1:a8:21:29:b7:
f4:d5:5b:90:66:56:fa:41:8e:43:9b:d1:7c:0c:13:8f:69:0c:
c9:9e:8f:c2:b2:aa:a8:59:6c:e9:c9:42:54:dc:61:34:2b:b3:
ec:da:cb:f1:e7:44:f5:56:ba:57:5a:43:3e:c1:d1:0f:3c:65:
8f:43:1f:96:05:89:0a:ea:01:f2:da:9e:08:d6:52:7d:04:e2:
5b:9f:8b:31:39:22:54:b1:ee:ef:3e:5f:f7:ec:59:b9:c8:89:
f5:2a:a1:19
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYr+9E3h5ufCtD1ug5OuKxyQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMxMDA1MDgyODU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTZiNmMxZDI2YTUxOTNhZmVmZDJhMDJhZTIzMzk1OTA1NjMzMTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5uyVPqjZelDAJBQWCSDR3f4ZkKAY
dNxmUxLKxDQxiNdglYNPlV8XesXgvaWeWb8tdNATnBSFDmeTrkSK24a5Kr1a0CDD
MDZzzIM037uuMT1czaQtIx1uHxLDwVZhqEsw8qcUoB9sDMpCMi+f4dN1iiRDQkin
Ffl4CqyujI2GYl8yn0TS94KjrgJIGhymkwpDu2lnx0Gx1mXkE7KuV/4TmfHN5wEG
WYbVkek2cgDAQ2LvfK3GfUoMBsdcdaKSeG22u/yYQpNdNiZhxfcTFDYZvAu+Glx5
KtIdcRE30Ll5Zwj4FaP7qDr7/JICAcqv6H8L18+9rvGWeWBptpMG1e2dAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJVrbB0mpRk6/v0qAq4jOVkFYzF9MB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvbFd0c0hTYWxHVHItX1NvQ3JpTTVXUVZqTVgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBAjrEMA0G
CSqGSIb3DQEBCwUAA4IBAQCRK4pFk5T57NHlO1sTjGlhNAeSkg32ZiP5BQgtAQ50
Ru7+XtuCMFiXbV9mmYO4X1D0TvIwcABvmczNWCVd3ebyFBzYiRDkD1kSVPQo3zgE
5qm/S0T7c7xgc+cahZbzcCvoEXR0Li+14s/NMmrVlhZ/N2O7mL983Yn1wyw8yt+0
+ucWQJuU5mqk6WRigFzUyFbl5oeRZlxbB5D1LU/zwaghKbf01VuQZlb6QY5Dm9F8
DBOPaQzJno/CsqqoWWzpyUJU3GE0K7Ps2svx50T1VrpXWkM+wdEPPGWPQx+WBYkK
6gHy2p4I1lJ9BOJbn4sxOSJUse7vPl/37Fm5yIn1KqEZ
-----END CERTIFICATE-----
Generated at Thu Oct 19 08:50:49 2023 by rpki-client on console-fra.rpki-client.org