Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Nmu7Ndr8jXZgWGzGS1S8xBjNPd4.roa
File: Nmu7Ndr8jXZgWGzGS1S8xBjNPd4.roa (raw, json)
Hash identifier: BOoG3eLSxrZH3JEo7V8nNc6NSm7nGVjZntQWCjLAHUI=
Subject key identifier: 36:6B:BB:35:DA:FC:8D:76:60:58:6C:C6:4B:54:BC:C4:18:CD:3D:DE
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0187EBEB65B625A5136AD7ADDE953021D215
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Nmu7Ndr8jXZgWGzGS1S8xBjNPd4.roa
Signing time: Fri 05 May 2023 12:38:05 +0000
ROA not before: Fri 05 May 2023 12:38:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
148.222.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 May 2023 15:14:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:eb:eb:65:b6:25:a5:13:6a:d7:ad:de:95:30:21:d2:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: May 5 12:38:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=366bbb35dafc8d7660586cc64b54bcc418cd3dde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ae:f1:8b:d5:5a:f3:b7:c9:7c:9d:3c:53:03:
6e:61:1e:7b:f4:2a:83:8f:6d:73:c2:8f:12:31:be:
7c:df:bb:ee:da:21:a4:a3:4c:c2:ae:f8:da:fe:5a:
4e:ae:0f:b2:1a:ad:d6:fa:68:9f:d1:86:52:6e:69:
b1:9e:0e:80:78:78:c2:77:89:94:d6:58:f2:b3:40:
db:7c:29:7a:e7:e7:eb:90:7e:48:b8:7c:27:dd:19:
5f:7f:90:9c:00:5f:6d:f4:7c:7f:5d:d7:0b:fd:ac:
9c:6f:50:32:c0:a0:7b:70:b7:4e:81:6c:52:57:02:
51:25:9b:a5:48:10:eb:66:51:23:76:7c:15:de:cf:
00:f3:b6:a6:8e:ee:f6:0a:b7:01:ad:1c:ba:47:de:
c5:06:d7:5a:c2:27:34:bb:a0:a5:ab:98:2a:e2:cd:
a0:e9:40:eb:85:48:8c:8e:f2:fd:3d:c7:7a:5b:37:
4f:3f:71:ed:2c:9e:60:4b:9b:74:d4:04:af:f5:b1:
73:6b:55:e9:07:75:26:5e:6c:13:da:4b:2c:a6:bc:
d5:0a:9b:03:c5:ef:1d:a9:20:7c:09:2c:f4:e9:0f:
cb:ba:0d:4b:1e:b0:e9:6a:c7:ae:dd:34:af:64:55:
4b:c5:cf:7a:28:9a:2f:57:59:f0:a5:08:76:ec:97:
a4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:6B:BB:35:DA:FC:8D:76:60:58:6C:C6:4B:54:BC:C4:18:CD:3D:DE
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Nmu7Ndr8jXZgWGzGS1S8xBjNPd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.222.240.0/22
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
16:fc:58:00:c9:ff:a7:f5:ed:d6:2a:f3:16:31:f3:94:00:b7:
a0:5e:29:a5:5a:05:20:7b:f4:4e:cd:de:94:22:74:c6:7c:5d:
ee:5a:6c:b5:c4:36:91:79:b9:bb:9f:6d:1a:44:0c:f1:56:68:
a9:26:6e:a2:ea:f9:da:58:4b:2c:ed:d8:a8:14:b0:83:88:ac:
fc:e0:31:ff:3f:3e:d0:50:c0:16:50:93:e1:62:35:1d:d1:cb:
79:46:d3:be:7e:0b:c1:07:c9:30:7f:92:45:3c:fa:34:5c:d0:
6e:d6:2e:d1:3e:b8:e7:65:3d:e2:b0:ce:b4:9d:81:62:5a:10:
63:50:69:a4:d1:89:0a:54:99:77:4b:2a:89:f7:2e:a5:f1:79:
6f:03:0b:61:68:14:95:e4:80:91:1f:60:55:a2:16:20:0c:bd:
ba:1b:6f:01:82:0e:13:96:a0:64:69:b4:70:8a:e6:06:ea:63:
cd:e8:42:eb:02:69:6a:fb:ef:95:5a:db:c5:c8:49:b6:c0:88:
6d:44:ce:84:e6:76:06:da:61:43:37:94:f2:f0:e1:3f:8b:f1:
fb:6a:fc:da:f8:3b:f7:9f:7b:0f:f1:17:f3:3a:f2:2e:7e:8d:
20:5a:5b:30:60:9c:3f:2b:d7:2e:9c:79:cf:a8:0f:0e:05:76:
95:07:ab:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org