Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/pKCmXDqprTwA_wMY6-JTioJ_Etg.roa
File: pKCmXDqprTwA_wMY6-JTioJ_Etg.roa (raw, json)
Hash identifier: 873ljGlOS0QI0zVeo7yy8T1DisyhwIJlwaAOVFY8uG8=
Subject key identifier: A4:A0:A6:5C:3A:A9:AD:3C:00:FF:03:18:EB:E2:53:8A:82:7F:12:D8
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CBF038E739A986C01ADBB8DE386B94252
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/pKCmXDqprTwA_wMY6-JTioJ_Etg.roa
Signing time: Sun 31 Dec 2023 08:35:30 +0000
ROA not before: Sun 31 Dec 2023 08:35:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2001363
IP address blocks: 185.132.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bf:03:8e:73:9a:98:6c:01:ad:bb:8d:e3:86:b9:42:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Dec 31 08:35:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4a0a65c3aa9ad3c00ff0318ebe2538a827f12d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cd:9f:18:71:50:84:1b:8d:73:09:a6:a9:58:
30:09:13:f6:5f:ad:70:a6:e3:50:a2:73:0a:1a:80:
96:28:8a:25:fa:ff:a7:ce:46:de:c1:a1:42:3d:ea:
85:4d:a0:e6:ed:38:2f:c3:c5:26:b3:b1:d7:e6:4b:
e6:48:0b:ec:07:31:1b:99:73:d6:51:5c:56:c7:7b:
a2:5d:5f:e1:c8:e6:5b:b4:03:df:29:2c:47:49:c4:
19:d9:ed:43:13:33:7e:f2:62:6b:0d:e5:8b:08:c0:
f1:df:63:d2:d9:3a:e7:66:8c:55:70:be:3a:45:bd:
28:79:72:22:53:ba:16:05:ff:eb:55:97:a4:c9:17:
38:47:c9:2d:f2:4f:64:14:d3:e4:a9:24:41:a1:d8:
30:91:86:df:e0:b1:c9:b5:d6:07:18:28:83:53:d9:
5a:5f:4d:22:e5:bb:01:27:c0:9c:81:49:61:6c:1b:
bc:ff:74:34:ef:b2:98:07:37:9e:37:57:a7:d3:3f:
f7:1c:35:0a:2f:5e:72:92:f8:d1:4b:55:8a:0f:7b:
ce:07:7a:47:d6:33:14:8a:26:59:3a:30:4a:0a:b3:
eb:d9:e6:0a:b2:86:49:d7:dd:7c:f3:b7:28:dd:75:
ed:ea:b4:1f:c1:bb:cc:f1:3e:a9:0e:d4:7c:ac:7b:
f4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A0:A6:5C:3A:A9:AD:3C:00:FF:03:18:EB:E2:53:8A:82:7F:12:D8
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/pKCmXDqprTwA_wMY6-JTioJ_Etg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.53.0/24
Signature Algorithm: sha256WithRSAEncryption
76:cc:d4:7b:af:50:bd:09:ac:bf:0f:a9:56:50:5a:68:e3:f4:
b3:2f:1c:3d:db:29:e0:29:7e:27:03:db:b4:85:d8:10:e6:c2:
80:1f:e2:19:8b:99:38:9c:73:27:0f:99:62:e0:c0:0a:21:42:
64:89:cf:46:ab:85:c4:c3:60:19:a2:42:11:96:37:a4:b0:6b:
25:70:3e:76:d6:6c:89:e3:70:e0:f9:b1:6d:28:71:cc:4c:f1:
85:45:7b:4e:bc:ca:d4:dd:23:64:2e:bc:3f:e0:ec:fd:d5:fd:
7b:3e:10:cf:ca:3c:66:99:bc:0e:f6:ae:97:c3:b5:d5:df:69:
ce:4e:43:86:4e:ab:9e:5a:cc:36:54:fb:43:32:a2:63:d3:bc:
c0:33:6a:69:de:d7:2b:5c:9c:36:ec:e6:10:65:31:33:3c:96:
36:38:77:d1:43:91:b2:4a:75:86:57:c4:de:59:4e:24:46:cc:
78:be:87:3f:8c:ef:51:ae:f7:a1:31:d7:88:62:b3:1e:14:c2:
77:74:d2:7c:8e:f3:b0:ab:b2:4f:67:f8:6f:b4:0e:4e:1c:52:
aa:75:1c:27:39:eb:8a:38:52:96:30:ff:e3:9e:a9:02:3e:ff:
cc:45:67:fc:b5:58:cb:68:42:3c:93:85:bc:28:4e:e6:f1:33:
6a:ea:5e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org