Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/971311-f47f-46db-8c57-e9782041cc24/1/0q8M90Cw1J261ymCNwxXb6PV9R8.roa
File: 0q8M90Cw1J261ymCNwxXb6PV9R8.roa (raw, json)
Hash identifier: O694CSqJVtST5lbbdzp6uKOkLtt2G2xFZDvkZwz0b6I=
Subject key identifier: D2:AF:0C:F7:40:B0:D4:9D:BA:D7:29:82:37:0C:57:6F:A3:D5:F5:1F
Certificate issuer: /CN=816d220b2b5a46fbeb27ef2d969fa21dd338c5b3
Certificate serial: 01913D8705919714178053FD229B03BD86BB
Authority key identifier: 81:6D:22:0B:2B:5A:46:FB:EB:27:EF:2D:96:9F:A2:1D:D3:38:C5:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gW0iCytaRvvrJ-8tlp-iHdM4xbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/971311-f47f-46db-8c57-e9782041cc24/1/0q8M90Cw1J261ymCNwxXb6PV9R8.roa
Signing time: Sat 10 Aug 2024 18:22:24 +0000
ROA not before: Sat 10 Aug 2024 18:22:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 45691
IP address blocks: 185.140.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Aug 2024 14:19:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3d:87:05:91:97:14:17:80:53:fd:22:9b:03:bd:86:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=816d220b2b5a46fbeb27ef2d969fa21dd338c5b3
Validity
Not Before: Aug 10 18:22:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2af0cf740b0d49dbad72982370c576fa3d5f51f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:16:68:05:af:79:02:80:cb:24:f1:34:23:25:
04:9d:e5:4f:1b:6f:35:50:1e:21:eb:28:e7:e8:b1:
20:b7:a8:1c:ce:82:76:7b:34:d2:6b:3d:49:0c:6c:
1d:68:c9:8b:49:da:c7:63:aa:ff:f8:47:f3:b4:82:
6f:87:e0:ea:3a:78:85:24:27:01:ca:eb:3e:2a:15:
5d:35:b5:9f:4b:95:ca:28:7f:75:5c:4b:65:62:d9:
be:c0:53:bb:b8:97:9f:3d:ee:9f:27:87:b6:fd:00:
1b:d7:86:61:64:34:8b:32:9f:c8:c8:f2:64:63:2f:
86:75:64:9b:92:57:df:2f:bb:fd:e4:e6:49:fd:ea:
67:34:cf:52:b7:63:de:ae:b4:be:a2:b4:5a:87:4f:
f8:e8:2e:68:12:f5:e6:a8:93:37:9f:fd:45:db:8f:
aa:af:fb:dc:8f:d2:ef:45:19:a9:dc:1f:03:58:27:
a4:af:15:40:59:48:5c:6d:3b:f4:e1:d4:e9:a7:81:
65:f0:d2:b6:57:c1:d3:e7:9e:f7:51:44:b1:9e:b5:
8b:50:1d:13:1e:98:53:80:03:f7:d4:b9:91:89:99:
cf:e3:a6:7f:e1:df:f1:5c:20:07:6a:68:a0:79:2a:
b5:32:0d:a3:ac:c4:62:8b:7b:30:6b:2b:3e:18:a5:
c7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:AF:0C:F7:40:B0:D4:9D:BA:D7:29:82:37:0C:57:6F:A3:D5:F5:1F
X509v3 Authority Key Identifier:
keyid:81:6D:22:0B:2B:5A:46:FB:EB:27:EF:2D:96:9F:A2:1D:D3:38:C5:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gW0iCytaRvvrJ-8tlp-iHdM4xbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/971311-f47f-46db-8c57-e9782041cc24/1/0q8M90Cw1J261ymCNwxXb6PV9R8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/971311-f47f-46db-8c57-e9782041cc24/1/gW0iCytaRvvrJ-8tlp-iHdM4xbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.53.0/24
Signature Algorithm: sha256WithRSAEncryption
24:e1:d4:ca:0a:59:29:30:55:5e:5e:b5:e8:80:86:b5:ef:87:
c8:0a:be:6a:5c:d0:d1:43:d4:fb:19:45:7f:01:c9:15:cb:e9:
6d:45:cb:83:07:c5:3c:b8:77:3b:02:60:55:b6:f0:02:31:7c:
d3:3e:8b:ed:0e:ba:43:a9:7c:91:d8:1f:74:59:63:cb:4a:50:
76:69:a4:a0:4a:51:93:8b:57:54:4c:12:68:c8:4d:ac:3f:95:
a8:bf:03:07:cd:58:4d:c8:06:52:dc:59:40:4b:f7:97:2a:e3:
c4:68:17:10:4a:37:bf:f9:92:c1:3c:73:ff:14:36:9c:3f:8b:
51:02:2c:b2:a7:f4:de:4b:82:02:0e:3c:97:ff:bd:67:c5:59:
ec:90:f3:8e:86:e4:39:99:52:d2:b1:83:e0:86:ca:1e:bd:e7:
6c:9c:a0:b5:2e:ad:e3:3e:88:0b:c9:5c:f4:83:ce:12:2f:a1:
3d:38:96:ca:3a:d0:ff:3d:5d:1c:3f:0f:c6:5e:bf:c4:40:6a:
e4:25:03:55:76:5b:d3:43:40:a1:6b:db:e7:15:68:9d:a1:ea:
59:c3:7f:39:8d:87:2f:49:88:b5:ca:b5:b5:4c:42:a3:0a:0a:
bd:82:b2:b8:80:8f:3d:c6:09:8e:ca:83:5d:35:15:4f:23:b1:
c9:a8:08:7d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZE9hwWRlxQXgFP9IpsDvYa7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxNmQyMjBiMmI1YTQ2ZmJlYjI3ZWYyZDk2OWZhMjFkZDMz
OGM1YjMwHhcNMjQwODEwMTgyMjI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMmFmMGNmNzQwYjBkNDlkYmFkNzI5ODIzNzBjNTc2ZmEzZDVmNTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2xZoBa95AoDLJPE0IyUEneVPG281
UB4h6yjn6LEgt6gczoJ2ezTSaz1JDGwdaMmLSdrHY6r/+EfztIJvh+DqOniFJCcB
yus+KhVdNbWfS5XKKH91XEtlYtm+wFO7uJefPe6fJ4e2/QAb14ZhZDSLMp/IyPJk
Yy+GdWSbklffL7v95OZJ/epnNM9St2PerrS+orRah0/46C5oEvXmqJM3n/1F24+q
r/vcj9LvRRmp3B8DWCekrxVAWUhcbTv04dTpp4Fl8NK2V8HT5573UUSxnrWLUB0T
HphTgAP31LmRiZnP46Z/4d/xXCAHamigeSq1Mg2jrMRii3sways+GKXH+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNKvDPdAsNSdutcpgjcMV2+j1fUfMB8GA1UdIwQY
MBaAFIFtIgsrWkb76yfvLZafoh3TOMWzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1cwaUN5dGFSdnZySi04dGxwLWlIZE00eGJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC85NzEzMTEtZjQ3Zi00NmRiLThjNTct
ZTk3ODIwNDFjYzI0LzEvMHE4TTkwQ3cxSjI2MXltQ053eFhiNlBWOVI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC85NzEzMTEtZjQ3Zi00NmRiLThjNTctZTk3ODIwNDFjYzI0
LzEvZ1cwaUN5dGFSdnZySi04dGxwLWlIZE00eGJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYw1MA0G
CSqGSIb3DQEBCwUAA4IBAQAk4dTKClkpMFVeXrXogIa174fICr5qXNDRQ9T7GUV/
AckVy+ltRcuDB8U8uHc7AmBVtvACMXzTPovtDrpDqXyR2B90WWPLSlB2aaSgSlGT
i1dUTBJoyE2sP5WovwMHzVhNyAZS3FlAS/eXKuPEaBcQSje/+ZLBPHP/FDacP4tR
Aiyyp/TeS4ICDjyX/71nxVnskPOOhuQ5mVLSsYPghsoevedsnKC1Lq3jPogLyVz0
g84SL6E9OJbKOtD/PV0cPw/GXr/EQGrkJQNVdlvTQ0Cha9vnFWidoepZw385jYcv
SYi1yrW1TEKjCgq9grK4gI89xgmOyoNdNRVPI7HJqAh9
-----END CERTIFICATE-----
Generated at Fri Aug 23 17:38:59 2024 by rpki-client on console-fra.rpki-client.org