Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6GjESW0u7bLSPvziY5lEy6E1rlQ.roa
File: 6GjESW0u7bLSPvziY5lEy6E1rlQ.roa (raw, json)
Hash identifier: hv+GSl7b/qFkpobfFo/iQ4JGp0BSlStUzpXpXzq5ikM=
Subject key identifier: E8:68:C4:49:6D:2E:ED:B2:D2:3E:FC:E2:63:99:44:CB:A1:35:AE:54
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01897E5DD84834FC5B351BCAA55142AC39B4
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6GjESW0u7bLSPvziY5lEy6E1rlQ.roa
Signing time: Sat 22 Jul 2023 16:10:26 +0000
ROA not before: Sat 22 Jul 2023 16:10:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31472
IP address blocks: 185.132.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7e:5d:d8:48:34:fc:5b:35:1b:ca:a5:51:42:ac:39:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jul 22 16:10:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e868c4496d2eedb2d23efce2639944cba135ae54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:2e:df:0f:fc:96:fa:e9:f7:eb:15:23:6e:5e:
5f:89:a2:a6:47:29:5f:03:a4:2a:18:0b:73:50:a6:
9b:dc:14:0b:b8:45:74:c8:f6:71:96:3d:ab:b0:ee:
ae:f6:6e:55:56:a4:be:d7:3c:c2:7c:fa:17:8c:ca:
35:3b:85:54:30:72:06:44:a3:7c:26:d4:00:08:6e:
09:d3:0c:46:51:ab:0b:45:a6:b3:62:15:e1:11:aa:
83:3d:66:67:1b:e4:53:c3:ae:eb:f1:25:dc:cc:c9:
c2:60:97:bd:09:0e:64:01:85:6a:a7:6b:3f:a7:85:
31:c8:6e:d4:18:6d:8c:03:7a:be:f2:85:e4:db:86:
60:00:cc:d7:4e:c8:fa:2f:29:57:99:0a:a1:57:d3:
ec:0a:ba:d4:74:4f:3d:a5:f0:8b:b6:06:68:9a:bf:
15:9d:59:ae:09:38:6e:83:b2:ae:e6:a8:dc:bb:e6:
cf:a8:fb:c6:e5:3d:0e:fb:ff:07:2d:f4:76:d2:5d:
01:5f:b9:ad:76:e0:04:47:a1:0b:70:a6:a6:d3:b3:
20:d3:08:ee:09:65:48:02:77:b3:00:ed:34:72:ba:
44:c8:44:f3:c8:12:98:df:3f:d4:23:91:72:88:39:
1d:76:ec:58:1b:60:f0:2e:5d:75:9e:97:90:ac:c5:
45:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:68:C4:49:6D:2E:ED:B2:D2:3E:FC:E2:63:99:44:CB:A1:35:AE:54
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6GjESW0u7bLSPvziY5lEy6E1rlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.52.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:4e:07:5f:58:80:ad:13:05:e7:e8:9e:74:56:ed:4d:2c:fb:
3a:22:6a:4c:65:c1:ff:9e:c4:2b:9d:60:4b:60:9b:d5:2a:36:
f5:47:be:86:f0:a7:04:e6:8d:3d:2d:e2:30:9f:5c:64:4e:43:
89:9a:42:25:ac:c4:97:06:e0:fc:17:52:e4:c9:85:6a:ac:96:
2d:fe:0e:69:3e:fc:df:fd:de:08:c6:25:a6:5c:6f:5c:c0:64:
a3:14:af:ee:ba:8a:05:9b:30:5a:a6:c3:06:34:f4:b9:87:bf:
d0:c9:30:c0:c1:a0:89:9e:db:1c:7f:9f:5b:2a:f7:d5:ae:df:
c4:92:ae:c6:8c:ef:bf:b1:8a:bf:07:4e:14:1d:49:90:ed:10:
a1:e8:9e:ff:43:c3:0d:cc:8f:39:68:08:98:16:27:c3:c8:9e:
08:54:3b:eb:9d:89:9d:da:07:f7:e0:4f:e6:83:72:06:90:f0:
7c:f3:6f:7c:f4:8d:c6:85:4e:76:55:0d:90:d0:99:7b:39:2e:
17:82:0f:d0:c3:d4:8d:b6:11:52:41:b3:9c:33:b2:78:ab:d5:
9a:f5:89:8a:b8:18:ab:2b:2e:e2:a5:73:c7:24:ec:17:b6:73:
ff:42:c5:2b:82:f9:1b:12:07:5e:49:62:fe:16:6b:e1:7f:03:
13:a2:6c:b5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYl+XdhINPxbNRvKpVFCrDm0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMwNzIyMTYxMDI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlODY4YzQ0OTZkMmVlZGIyZDIzZWZjZTI2Mzk5NDRjYmExMzVhZTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgC7fD/yW+un36xUjbl5fiaKmRylf
A6QqGAtzUKab3BQLuEV0yPZxlj2rsO6u9m5VVqS+1zzCfPoXjMo1O4VUMHIGRKN8
JtQACG4J0wxGUasLRaazYhXhEaqDPWZnG+RTw67r8SXczMnCYJe9CQ5kAYVqp2s/
p4UxyG7UGG2MA3q+8oXk24ZgAMzXTsj6LylXmQqhV9PsCrrUdE89pfCLtgZomr8V
nVmuCThug7Ku5qjcu+bPqPvG5T0O+/8HLfR20l0BX7mtduAER6ELcKam07Mg0wju
CWVIAnezAO00crpEyETzyBKY3z/UI5FyiDkdduxYG2DwLl11npeQrMVFLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOhoxEltLu2y0j784mOZRMuhNa5UMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvNkdqRVNXMHU3YkxTUHZ6aVk1bEV5NkUxcmxRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYQ0MA0G
CSqGSIb3DQEBCwUAA4IBAQA/TgdfWICtEwXn6J50Vu1NLPs6ImpMZcH/nsQrnWBL
YJvVKjb1R76G8KcE5o09LeIwn1xkTkOJmkIlrMSXBuD8F1LkyYVqrJYt/g5pPvzf
/d4IxiWmXG9cwGSjFK/uuooFmzBapsMGNPS5h7/QyTDAwaCJntscf59bKvfVrt/E
kq7GjO+/sYq/B04UHUmQ7RCh6J7/Q8MNzI85aAiYFifDyJ4IVDvrnYmd2gf34E/m
g3IGkPB882989I3GhU52VQ2Q0Jl7OS4Xgg/Qw9SNthFSQbOcM7J4q9Wa9YmKuBir
Ky7ipXPHJOwXtnP/QsUrgvkbEgdeSWL+FmvhfwMTomy1
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:27 2024 by rpki-client on console-fra.rpki-client.org