Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/5E2ZcIgNHJ9NCwf1CQ6m0gckDmo.roa
File: 5E2ZcIgNHJ9NCwf1CQ6m0gckDmo.roa (raw, json)
Hash identifier: vqpoNZXjwCOPUfGksY/SbS6KGqrHyM3tsj1XCoUgI68=
Subject key identifier: E4:4D:99:70:88:0D:1C:9F:4D:0B:07:F5:09:0E:A6:D2:07:24:0E:6A
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018C80DE11714E6D7C545C4130DF4190991C
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/5E2ZcIgNHJ9NCwf1CQ6m0gckDmo.roa
Signing time: Tue 19 Dec 2023 06:58:06 +0000
ROA not before: Tue 19 Dec 2023 06:58:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
188.64.108.0/22 maxlen: 24
185.179.218.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Dec 2023 14:45:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:80:de:11:71:4e:6d:7c:54:5c:41:30:df:41:90:99:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Dec 19 06:58:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e44d9970880d1c9f4d0b07f5090ea6d207240e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:61:71:6b:5c:5a:f0:cd:af:ed:95:35:b6:c5:
e3:bf:8d:a3:ae:ff:00:5c:6f:72:61:49:82:68:4c:
e9:65:c8:b5:bf:bb:27:82:f7:33:4d:e6:6a:b8:31:
0f:0e:59:68:fe:86:70:97:9c:b3:a0:6d:88:c5:ec:
6a:e9:06:52:47:ac:f6:d4:b9:d3:ec:5c:5c:81:af:
0b:0e:6c:56:9a:c7:81:69:83:6f:a2:9b:29:ff:b8:
09:87:6a:05:35:87:9e:6e:02:f9:f0:bb:59:a3:26:
04:2e:60:3e:28:36:6d:97:20:84:ef:9a:89:ca:ca:
39:4e:58:25:29:af:84:37:92:67:a7:80:14:85:e4:
4f:c5:73:17:6b:ae:70:56:2d:9d:35:5f:cc:c8:01:
ce:3b:3a:68:49:cc:16:ce:93:b8:49:81:94:3c:ec:
df:52:cd:f8:5c:70:0c:10:e7:21:5d:02:e6:3a:e4:
8a:92:71:d0:42:c9:57:2b:e2:4a:60:0b:39:5a:95:
18:48:f4:8e:8c:11:67:9a:9b:87:f2:39:5c:99:ed:
d3:e3:53:90:8d:e2:52:1a:bf:54:3d:59:6c:d2:98:
63:b6:5f:aa:ce:9b:69:97:38:7d:92:0f:ce:c0:90:
a0:9c:da:3b:bd:13:d2:a7:de:ad:ed:e3:63:75:09:
4a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:4D:99:70:88:0D:1C:9F:4D:0B:07:F5:09:0E:A6:D2:07:24:0E:6A
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/5E2ZcIgNHJ9NCwf1CQ6m0gckDmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
185.179.218.0/23
188.64.108.0/22
Signature Algorithm: sha256WithRSAEncryption
56:c5:2c:7d:ef:23:28:a9:90:4a:12:63:61:94:40:46:d0:4e:
f9:bd:40:c7:ec:31:d8:2f:ce:ad:16:98:b1:f2:db:6f:08:38:
34:b5:f2:d5:fa:c6:20:71:f1:a6:0b:30:3a:9f:3d:ff:bb:ff:
86:86:8e:3c:e7:82:45:f5:30:49:66:32:26:f1:8c:3b:86:19:
c9:b2:6b:79:ab:f0:05:eb:6a:d9:b5:00:38:00:42:90:31:87:
a0:4a:fc:a6:6e:5b:88:d5:b0:00:b5:69:2f:b2:fc:8e:64:50:
5c:ee:57:34:06:82:b5:fe:41:69:1a:35:3c:38:af:5b:cb:b3:
f3:a1:8c:5f:8a:ba:d4:d7:80:4e:98:a9:da:51:c2:73:49:22:
27:55:1b:ff:f6:eb:de:5f:e8:22:aa:d3:c8:a7:09:5a:30:9c:
08:da:7a:87:c9:43:ff:82:b0:1a:ab:8d:19:75:4b:2c:57:3b:
a3:11:03:a6:9c:a0:4e:01:27:bb:a3:2d:6b:82:94:0e:62:3b:
65:0c:33:43:9c:70:56:8f:3b:e6:8b:72:57:b3:33:c7:70:06:
2f:a8:b0:b5:8b:8a:6f:47:59:a2:58:94:fd:60:76:4e:d6:8d:
8b:52:31:45:4c:9a:21:4a:d0:e7:73:28:a4:e4:fa:0f:93:6b:
ca:bb:e3:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org