Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/4qIRRHf_0e67AsMdx5E_qOZcc7E.roa
File: 4qIRRHf_0e67AsMdx5E_qOZcc7E.roa (raw, json)
Hash identifier: DE++bec0r8pWhbmmn0ImOpggpqiGkoZqW8+XBICOhF0=
Subject key identifier: E2:A2:11:44:77:FF:D1:EE:BB:02:C3:1D:C7:91:3F:A8:E6:5C:73:B1
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018EE066F2196157AE9DA2889482A1A13BB9
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/4qIRRHf_0e67AsMdx5E_qOZcc7E.roa
Signing time: Mon 15 Apr 2024 06:17:06 +0000
ROA not before: Mon 15 Apr 2024 06:17:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
185.114.144.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 08:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e0:66:f2:19:61:57:ae:9d:a2:88:94:82:a1:a1:3b:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Apr 15 06:17:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2a2114477ffd1eebb02c31dc7913fa8e65c73b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:13:e7:3a:05:d2:af:7a:79:a4:a4:8e:b4:ca:
2e:ee:8c:60:67:5b:d3:38:9b:0a:15:f2:16:17:2e:
89:12:2f:07:f6:04:c2:92:72:6b:76:43:44:36:44:
ab:59:10:0b:ba:a8:c8:cc:ca:ea:a1:41:2b:c1:d8:
6b:7c:8a:f8:e0:b3:1b:a8:b7:aa:6b:18:12:f4:77:
73:85:90:46:fd:be:8a:6c:32:58:c3:74:c8:50:0c:
0b:48:7b:6d:03:0a:a8:e9:28:e8:9b:82:88:db:5a:
9c:cd:de:fb:ba:05:f0:ee:05:26:db:4c:14:10:b8:
20:0c:bd:07:71:d2:e2:5a:c6:82:f2:f7:fe:6d:7c:
9a:ac:0c:b1:a6:af:d0:b5:19:06:47:e5:a7:40:6b:
1d:0b:91:eb:3c:0f:25:7b:63:b1:31:d7:cf:d3:47:
a3:58:4a:c7:59:8e:63:16:ab:32:26:39:dd:8b:2a:
d1:39:ba:4f:41:6d:60:60:38:08:b7:68:90:cb:72:
d5:cb:d4:89:dd:ef:da:c5:69:5f:17:19:5d:e1:77:
ef:db:12:3d:e4:ba:62:56:4e:e4:2f:57:62:e0:14:
f9:ce:bd:24:12:b9:eb:66:c3:63:63:d2:8c:7d:a0:
75:3b:9e:ed:b6:f6:c6:8d:e2:16:d4:e9:6d:88:3c:
18:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A2:11:44:77:FF:D1:EE:BB:02:C3:1D:C7:91:3F:A8:E6:5C:73:B1
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/4qIRRHf_0e67AsMdx5E_qOZcc7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
185.114.144.0/23
Signature Algorithm: sha256WithRSAEncryption
70:1c:8a:eb:cf:09:11:a4:97:71:0d:36:ea:56:cf:21:06:f0:
38:c9:24:00:cb:b9:23:9a:d6:51:f3:f1:e8:b6:76:b7:97:7a:
46:e4:d4:c3:ce:43:98:48:35:81:c0:9a:72:60:45:d2:8a:a3:
4d:78:51:0b:87:15:62:d7:ec:f5:60:74:98:a6:64:c6:92:2f:
0c:19:44:8a:14:1d:30:1f:97:04:17:37:b7:27:de:df:88:71:
dc:47:67:de:45:dc:c5:bf:0d:cf:5f:b3:62:24:97:b9:fa:47:
2e:eb:37:69:d2:ac:3c:2c:1a:14:7f:4c:5d:e4:b0:2d:b6:7f:
33:8b:33:9a:db:ab:cb:ee:ce:e0:cd:4f:7b:0d:0c:7e:d2:4e:
6c:b1:ff:1f:18:78:04:be:24:1e:04:fc:f7:28:ce:89:44:83:
36:88:5b:a3:cf:a3:5e:21:e5:4a:a4:e3:f3:6e:2c:47:e2:7d:
e4:d2:d4:01:6d:b3:bd:e6:cf:9f:f6:ac:71:e3:85:34:c5:fd:
d8:6d:8b:93:25:44:79:44:0d:9f:94:94:7f:85:ff:0b:29:dd:
86:4d:a4:f6:26:0f:8c:94:00:6b:49:6a:83:76:62:1c:ef:aa:
e7:ea:ec:2c:19:8e:d9:f2:52:70:f4:10:5a:f1:eb:85:d0:5c:
bf:fa:3f:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 17 10:56:27 2024 by rpki-client on console-fra.rpki-client.org