Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Iv3IIzWS4uwDcHSZxVGkCw_UzC0.roa
File: Iv3IIzWS4uwDcHSZxVGkCw_UzC0.roa (raw, json)
Hash identifier: 6uSYpIIsO5TXnFpS7BOzPmnXUcFiZBQ1yR9hkGq9sgM=
Subject key identifier: 22:FD:C8:23:35:92:E2:EC:03:70:74:99:C5:51:A4:0B:0F:D4:CC:2D
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0185D3DCBD767DF5B407B4144F4DB7002AC2
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Iv3IIzWS4uwDcHSZxVGkCw_UzC0.roa
Signing time: Sat 21 Jan 2023 10:25:37 +0000
ROA not before: Sat 21 Jan 2023 10:25:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 185.81.30.0/23 maxlen: 24
185.81.28.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Apr 2023 10:46:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d3:dc:bd:76:7d:f5:b4:07:b4:14:4f:4d:b7:00:2a:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 21 10:25:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22fdc8233592e2ec03707499c551a40b0fd4cc2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e0:c1:96:42:f6:dd:14:ee:50:3d:28:c2:40:
51:cc:eb:b6:31:d2:ff:0b:9a:1f:54:64:c4:59:00:
03:d0:0e:7d:f3:80:cf:b1:2b:8d:83:f0:33:94:57:
e8:a9:b5:c5:26:44:c4:ea:96:12:13:59:6b:92:c3:
c4:ae:80:8f:6a:ad:00:be:df:08:1a:cc:43:dd:de:
16:ca:b0:89:90:76:5c:8d:3b:f4:ee:f5:06:e3:ec:
08:30:0e:e3:ae:0f:13:01:c8:13:0e:27:6c:8b:47:
2b:d0:4c:7e:95:1a:a2:b6:1f:fc:0e:91:3c:38:a2:
a5:f6:d1:35:2d:40:91:58:12:5a:10:19:a7:07:f9:
71:29:54:dd:cd:31:d6:4e:d1:0d:a4:2e:34:2d:87:
7f:e8:6a:19:94:2a:24:e0:e4:fb:b4:60:21:3f:73:
97:9f:f7:e8:ab:34:61:f4:b1:5b:90:c8:50:f8:51:
02:69:0a:83:7e:d8:3d:0c:f6:d0:60:2f:79:ce:27:
77:2b:ab:f2:a0:cf:86:e5:16:d3:d3:52:1e:2d:49:
42:dc:27:43:49:54:19:9c:7b:f7:80:f8:02:c4:11:
f0:ff:8c:08:c0:3a:b5:24:df:09:c9:9b:83:59:6b:
21:6b:64:10:c1:ad:a0:7c:fd:d6:d8:c1:f4:c3:52:
fd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:FD:C8:23:35:92:E2:EC:03:70:74:99:C5:51:A4:0B:0F:D4:CC:2D
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Iv3IIzWS4uwDcHSZxVGkCw_UzC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
51:2b:d9:c4:5b:82:08:17:97:06:67:fb:07:f7:80:f6:ee:41:
ee:e6:1c:a5:d9:4f:6c:2d:3d:d8:6a:af:27:00:99:19:bf:36:
7e:6f:42:2a:18:ba:68:64:39:e1:48:a6:89:a7:65:90:44:8a:
50:d9:c8:5e:db:0f:58:46:ec:c8:a0:42:bd:8f:e9:ff:8c:8e:
67:8a:c5:f9:5a:1a:56:c6:b5:ca:b9:6c:f9:36:d9:27:e1:61:
3b:ab:35:62:0a:92:38:e7:e6:4c:44:c4:a0:b2:12:4c:cf:49:
eb:c9:48:e6:34:f7:fb:13:5b:5e:a4:e9:b1:3d:f4:a2:97:fa:
d5:56:14:75:f4:08:52:08:8d:f0:7a:c2:2d:d1:ac:44:30:72:
6f:64:30:59:6c:1c:5c:b3:6f:bb:90:f4:38:d7:d5:bb:74:22:
e6:84:c6:d6:9d:d9:35:ab:f7:df:b7:1b:89:17:fa:8e:18:3a:
ed:41:46:a4:15:e7:f4:49:24:89:8a:11:61:78:d7:e3:33:ea:
10:c2:4f:94:31:29:d3:41:31:e8:8a:68:ce:b7:bc:f7:44:b2:
13:55:bd:eb:0a:57:42:cb:33:59:0b:b7:56:78:e8:79:33:01:
e3:25:39:4f:2a:3c:31:09:95:ae:94:27:a0:c4:1d:62:14:c0:
9f:99:0f:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXT3L12ffW0B7QUT023ACrCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjMwMTIxMTAyNTM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmZkYzgyMzM1OTJlMmVjMDM3MDc0OTljNTUxYTQwYjBmZDRjYzJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAleDBlkL23RTuUD0owkBRzOu2MdL/
C5ofVGTEWQAD0A5984DPsSuNg/AzlFfoqbXFJkTE6pYSE1lrksPEroCPaq0Avt8I
GsxD3d4WyrCJkHZcjTv07vUG4+wIMA7jrg8TAcgTDidsi0cr0Ex+lRqith/8DpE8
OKKl9tE1LUCRWBJaEBmnB/lxKVTdzTHWTtENpC40LYd/6GoZlCok4OT7tGAhP3OX
n/foqzRh9LFbkMhQ+FECaQqDftg9DPbQYC95zid3K6vyoM+G5RbT01IeLUlC3CdD
SVQZnHv3gPgCxBHw/4wIwDq1JN8JyZuDWWsha2QQwa2gfP3W2MH0w1L9CwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCL9yCM1kuLsA3B0mcVRpAsP1MwtMB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvSXYzSUl6V1M0dXdEY0hTWnhWR2tDd19VekMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVEcMA0G
CSqGSIb3DQEBCwUAA4IBAQBRK9nEW4IIF5cGZ/sH94D27kHu5hyl2U9sLT3Yaq8n
AJkZvzZ+b0IqGLpoZDnhSKaJp2WQRIpQ2che2w9YRuzIoEK9j+n/jI5nisX5WhpW
xrXKuWz5Ntkn4WE7qzViCpI45+ZMRMSgshJMz0nryUjmNPf7E1tepOmxPfSil/rV
VhR19AhSCI3wesIt0axEMHJvZDBZbBxcs2+7kPQ419W7dCLmhMbWndk1q/fftxuJ
F/qOGDrtQUakFef0SSSJihFheNfjM+oQwk+UMSnTQTHoimjOt7z3RLITVb3rCldC
yzNZC7dWeOh5MwHjJTlPKjwxCZWulCegxB1iFMCfmQ8n
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org