Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/eRHqzjMxNMleR4bMkdQuNUsLyfs.roa
File: eRHqzjMxNMleR4bMkdQuNUsLyfs.roa (raw, json)
Hash identifier: ct0lIoiNxcd08RgnhLzPhi5FSbL/zlLffA4oxCZv41I=
Subject key identifier: 79:11:EA:CE:33:31:34:C9:5E:47:86:CC:91:D4:2E:35:4B:0B:C9:FB
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018B46F9527FCA050B5C2D358F5C0E5E02E0
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/eRHqzjMxNMleR4bMkdQuNUsLyfs.roa
Signing time: Thu 19 Oct 2023 08:07:06 +0000
ROA not before: Thu 19 Oct 2023 08:07:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47504
IP address blocks: 2.58.196.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:46:f9:52:7f:ca:05:0b:5c:2d:35:8f:5c:0e:5e:02:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 19 08:07:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7911eace333134c95e4786cc91d42e354b0bc9fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:66:bd:cd:d1:47:22:18:87:24:b1:74:17:11:
90:d8:61:fe:dd:29:51:43:9e:41:97:9c:08:0a:1d:
b5:84:0a:25:c8:39:53:ff:1a:cb:b9:8d:b1:0a:1b:
6c:66:50:30:41:93:22:58:6d:63:26:8e:65:c5:ce:
2b:17:07:af:3c:93:12:98:88:50:03:12:6c:eb:e1:
c6:1d:79:7b:c5:35:67:9f:f9:14:f1:90:bd:b0:e1:
05:e5:95:7d:f5:cd:a2:e7:64:b3:68:79:81:32:89:
08:5f:7d:01:ba:fc:ba:54:00:d5:76:12:45:f1:6e:
ff:96:b6:e5:78:7f:b3:eb:c9:cd:db:95:f0:d5:6b:
b5:49:81:54:54:e2:77:fe:a6:08:92:1b:ad:9a:8e:
72:0f:7d:d2:b3:01:f8:08:a4:43:65:3e:83:3a:00:
67:35:12:67:cd:a7:4f:21:20:99:d5:e0:d7:46:8f:
82:a0:56:8a:46:e6:3a:e8:4a:cc:e1:20:56:d9:36:
d6:5c:02:b4:57:69:e3:6c:1a:95:a4:f1:a8:6c:d1:
9d:39:f6:ba:72:2c:15:0e:fc:c5:a6:05:94:cf:6b:
e2:85:2c:4c:78:00:67:17:20:16:99:c9:c2:5d:cb:
e6:58:ef:ab:bd:7d:4a:43:2c:34:bd:97:b0:75:b6:
04:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:11:EA:CE:33:31:34:C9:5E:47:86:CC:91:D4:2E:35:4B:0B:C9:FB
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/eRHqzjMxNMleR4bMkdQuNUsLyfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.196.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:84:75:d9:d7:c1:33:79:c4:aa:fc:76:cc:64:46:6e:40:af:
92:04:10:12:f4:5b:bd:ac:b1:8e:94:9c:83:e3:a7:04:d3:9a:
6d:22:2b:ff:d6:85:5e:c7:af:2b:fb:fd:cd:7e:a3:6b:e6:83:
dd:5e:55:5b:fc:76:ee:c4:20:9c:70:df:a4:58:b8:ca:be:4a:
cf:7a:df:23:68:16:c2:2f:60:78:de:1b:0a:e3:84:da:83:fd:
e1:56:a6:fb:54:98:15:72:90:6b:b5:d6:e4:ca:79:47:41:7e:
e5:f1:f6:fc:d8:3e:b4:3d:c0:e7:48:7c:53:a4:e0:04:be:e2:
67:e0:3e:1b:bd:3f:08:5a:7a:74:a8:17:cb:cc:df:50:2b:fe:
ec:cc:e7:a6:8c:05:bb:e3:e3:55:10:66:06:6d:ab:77:ec:10:
7a:87:a5:93:66:f5:bf:b7:14:80:cb:14:70:ae:17:c8:95:2a:
6a:a2:ab:2f:a2:9e:3f:06:83:2d:d5:11:55:9c:b5:0e:29:89:
b1:90:bf:d3:47:28:ea:22:c3:cd:07:ba:de:0e:00:8a:06:bc:
e9:1a:85:a6:42:42:a8:45:2b:e2:3f:7e:29:af:e1:c0:d6:0a:
29:02:c8:4b:dd:b3:f6:1c:46:0d:a1:ad:20:f3:10:27:b1:bc:
37:71:fb:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtG+VJ/ygULXC01j1wOXgLgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMxMDE5MDgwNzA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTExZWFjZTMzMzEzNGM5NWU0Nzg2Y2M5MWQ0MmUzNTRiMGJjOWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWa9zdFHIhiHJLF0FxGQ2GH+3SlR
Q55Bl5wICh21hAolyDlT/xrLuY2xChtsZlAwQZMiWG1jJo5lxc4rFwevPJMSmIhQ
AxJs6+HGHXl7xTVnn/kU8ZC9sOEF5ZV99c2i52SzaHmBMokIX30Buvy6VADVdhJF
8W7/lrbleH+z68nN25Xw1Wu1SYFUVOJ3/qYIkhutmo5yD33SswH4CKRDZT6DOgBn
NRJnzadPISCZ1eDXRo+CoFaKRuY66ErM4SBW2TbWXAK0V2njbBqVpPGobNGdOfa6
ciwVDvzFpgWUz2vihSxMeABnFyAWmcnCXcvmWO+rvX1KQyw0vZewdbYE7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHkR6s4zMTTJXkeGzJHULjVLC8n7MB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvZVJIcXpqTXhOTWxlUjRiTWtkUXVOVXNMeWZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBAjrEMA0G
CSqGSIb3DQEBCwUAA4IBAQCLhHXZ18EzecSq/HbMZEZuQK+SBBAS9Fu9rLGOlJyD
46cE05ptIiv/1oVex68r+/3NfqNr5oPdXlVb/HbuxCCccN+kWLjKvkrPet8jaBbC
L2B43hsK44Tag/3hVqb7VJgVcpBrtdbkynlHQX7l8fb82D60PcDnSHxTpOAEvuJn
4D4bvT8IWnp0qBfLzN9QK/7szOemjAW74+NVEGYGbat37BB6h6WTZvW/txSAyxRw
rhfIlSpqoqsvop4/BoMt1RFVnLUOKYmxkL/TRyjqIsPNB7reDgCKBrzpGoWmQkKo
RSviP34pr+HA1gopAshL3bP2HEYNoa0g8xAnsbw3cftj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org