Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/0GlaVjHG0E-gsatTHVKstWFEeCQ.roa
File: 0GlaVjHG0E-gsatTHVKstWFEeCQ.roa (raw, json)
Hash identifier: A1PNSIgoxwtI7UW2DXp0FJYAuD9dkA/15EWugQK3l1Q=
Subject key identifier: D0:69:5A:56:31:C6:D0:4F:A0:B1:AB:53:1D:52:AC:B5:61:44:78:24
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018A18333ACF3C53E2C9907C296E689DB929
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/0GlaVjHG0E-gsatTHVKstWFEeCQ.roa
Signing time: Mon 21 Aug 2023 13:05:25 +0000
ROA not before: Mon 21 Aug 2023 13:05:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
45.146.232.0/23 maxlen: 23
45.141.168.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:18:33:3a:cf:3c:53:e2:c9:90:7c:29:6e:68:9d:b9:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Aug 21 13:05:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0695a5631c6d04fa0b1ab531d52acb561447824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fb:e8:d7:cc:0e:db:36:a4:ac:2e:c6:d9:31:
af:0b:0e:3f:74:98:64:01:10:91:f2:fa:3d:53:ac:
0f:6b:35:ff:37:c8:f0:2b:22:ac:40:f6:5a:af:19:
28:f7:83:71:e8:c5:d5:38:9a:cf:40:85:20:26:2d:
8d:49:9d:4c:2b:35:0d:54:00:2e:d8:0f:a0:db:ba:
85:7c:1e:03:09:93:bc:0d:89:40:42:93:58:9c:82:
8d:ac:a7:ef:94:51:f0:d7:d9:ee:a3:ba:20:b1:cf:
59:0f:89:df:65:e9:da:cd:4b:94:e4:44:55:5c:4a:
e3:7b:48:b7:ad:93:04:40:23:64:f5:25:2e:d3:f8:
88:1a:6f:15:0b:21:ca:51:95:e9:af:cc:36:8b:6c:
b5:03:1e:17:ce:25:e7:3d:db:15:85:be:27:29:1a:
9f:83:1e:e9:ca:41:7c:cb:ad:ff:53:8e:41:2f:4b:
0a:7c:ad:ed:48:ec:79:79:33:f2:11:8d:de:aa:56:
6e:27:05:84:7d:70:a4:f2:6e:f8:26:2f:cc:86:f6:
28:c6:45:d9:c4:21:1c:17:c2:64:a2:a6:d6:b8:ee:
b8:64:48:79:29:14:d8:67:c4:76:4a:6c:78:ec:ff:
81:71:20:26:1c:3e:b3:b7:aa:75:b3:a8:e6:b3:64:
82:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:69:5A:56:31:C6:D0:4F:A0:B1:AB:53:1D:52:AC:B5:61:44:78:24
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/0GlaVjHG0E-gsatTHVKstWFEeCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.168.0/23
45.146.232.0/23
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
38:16:7a:be:3c:fb:66:c5:e3:ea:c9:34:bb:6f:ea:38:e1:15:
ff:84:85:b3:0b:64:3e:be:10:72:2d:7b:1d:e5:ff:eb:65:3a:
3b:1e:a5:9d:07:17:9c:d9:02:25:42:5b:e8:70:60:a6:b0:05:
ee:61:e0:a9:83:2a:81:e5:bf:f7:44:d0:4e:2f:f4:0a:02:3c:
e1:ec:65:ab:86:2e:40:7f:37:13:0a:21:ed:e6:c0:bb:71:5c:
57:25:12:d6:f9:f7:f2:f6:95:1d:83:c4:a2:71:ee:c7:30:e8:
70:e7:5a:e7:1e:15:63:f6:e0:51:20:48:db:d0:82:d2:8c:a4:
06:54:07:df:77:8a:01:1f:1d:82:21:73:88:85:ef:d2:50:16:
7b:6e:98:57:4f:ff:16:54:8b:91:53:5c:39:fb:26:fb:a5:b2:
64:d3:4d:62:e5:4e:c9:20:1c:22:10:44:08:53:60:f7:6e:fc:
6e:fa:a8:17:fe:1b:ce:5b:b7:9f:dd:a9:93:2f:b8:bb:c2:23:
a2:a3:79:fa:05:b5:36:08:15:a4:fa:b2:c6:42:2f:16:3b:57:
c2:47:55:ce:aa:10:98:2a:e8:ff:b0:c7:50:38:de:be:46:cc:
5c:8c:55:15:4e:c7:05:4e:3b:b2:87:89:27:76:9e:49:2c:cd:
77:3b:f9:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 29 19:02:51 2023 by rpki-client on console-ams.rpki-client.org