Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Di6s5yL-6v-LeNOLroEVX-o4ET8.roa
File: Di6s5yL-6v-LeNOLroEVX-o4ET8.roa (raw, json)
Hash identifier: aEs1t0uVboSjZ8th12Z4J7oyWcXTynbjYVAk4MQ1ijM=
Subject key identifier: 0E:2E:AC:E7:22:FE:EA:FF:8B:78:D3:8B:AE:81:15:5F:EA:38:11:3F
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018AF6012154B566F1A5662C52F20F432294
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Di6s5yL-6v-LeNOLroEVX-o4ET8.roa
Signing time: Tue 03 Oct 2023 14:46:23 +0000
ROA not before: Tue 03 Oct 2023 14:46:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
185.81.30.0/23 maxlen: 24
188.64.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Oct 2023 18:12:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f6:01:21:54:b5:66:f1:a5:66:2c:52:f2:0f:43:22:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Oct 3 14:46:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e2eace722feeaff8b78d38bae81155fea38113f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:97:4b:d9:2e:4f:e4:42:c4:ec:ff:6e:88:bd:
58:55:6b:13:bc:6e:61:90:a1:7c:1c:8d:2e:d3:32:
9b:c0:57:d4:98:47:d9:44:62:db:b4:2f:21:80:b8:
b0:6e:2e:98:ea:90:7d:3f:57:ab:96:d6:70:26:c1:
3a:97:13:5e:f7:87:5a:be:05:e4:57:40:0f:9e:25:
04:58:98:dc:f7:f8:00:0f:b1:ad:a8:db:40:70:db:
a8:34:12:fb:e0:b8:d0:82:f6:16:ad:a7:47:21:2a:
9e:0f:f7:8f:78:b0:fc:8f:8d:28:94:a8:98:41:59:
39:98:f2:34:9c:11:a8:ff:68:68:50:fd:7c:2f:a5:
df:2d:82:98:f0:91:01:ab:33:54:8b:5f:4d:90:c2:
a4:f7:46:0c:0a:66:46:67:be:73:f5:3d:91:78:38:
a1:28:12:47:cc:26:ad:d5:3c:81:25:c8:35:47:fb:
cc:85:81:f4:f3:ce:06:bf:27:8f:6c:53:23:39:6b:
c1:94:11:ae:ba:bf:06:89:d0:ca:e8:07:20:6f:51:
2f:db:df:13:6b:7d:47:7c:9b:e9:25:7a:51:95:54:
4b:0d:50:26:a2:c2:ef:1a:81:9a:77:1c:fd:22:e4:
bf:63:50:79:14:fb:78:3b:bd:13:9b:32:96:d5:ca:
9b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:2E:AC:E7:22:FE:EA:FF:8B:78:D3:8B:AE:81:15:5F:EA:38:11:3F
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Di6s5yL-6v-LeNOLroEVX-o4ET8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
188.64.108.0/22
Signature Algorithm: sha256WithRSAEncryption
53:a2:9a:dd:c5:8b:92:99:d3:8f:9f:47:8c:91:06:2e:8f:e4:
a4:72:c4:83:25:88:85:7b:b2:e3:9e:86:dd:35:0d:d6:96:46:
c9:84:7f:2b:52:78:fa:3c:45:16:9d:29:e7:da:a6:56:41:f8:
f7:51:f4:b3:7c:b4:de:ba:32:4e:d1:6d:a2:29:1f:fc:79:8c:
73:cb:25:e3:55:e4:2f:ce:88:27:b7:2b:2c:22:8a:45:3e:25:
5e:cb:fa:d6:9f:35:e1:8d:52:09:1f:89:98:d0:e0:8f:b1:a8:
b2:94:cd:c4:fd:68:17:77:3d:2a:9f:55:fe:8b:cf:6f:6b:40:
78:64:dd:ba:4d:fc:14:2b:5f:5b:02:59:22:8a:e0:c3:80:b9:
b2:8a:d6:af:89:7b:90:7a:b9:73:32:5c:c6:09:6a:64:b0:75:
6e:ff:da:9c:5b:df:a9:af:ee:5a:f4:d8:22:8b:3c:cf:7e:ea:
1a:c3:de:05:2d:a9:3a:84:b6:0c:54:53:7e:79:c6:95:67:f1:
84:6d:05:25:7a:1c:81:cf:a8:48:e2:c9:51:b1:2c:99:2c:43:
bb:c4:f3:d2:fe:c4:96:93:f8:9b:1f:04:42:c3:d3:70:01:85:
8a:d5:fb:46:3b:7b:30:08:54:11:fa:23:0b:a7:a3:08:75:45:
aa:41:79:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org