Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Omh3p4gw-6j5HUKz6c3gJ30ZOuY.roa
File: Omh3p4gw-6j5HUKz6c3gJ30ZOuY.roa (raw, json)
Hash identifier: r5xtns3TmDQTlBmxLrrcdbZ7B9+04tl57+zobEzOEDo=
Subject key identifier: 3A:68:77:A7:88:30:FB:A8:F9:1D:42:B3:E9:CD:E0:27:7D:19:3A:E6
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018C90FA86F813D3F9001492E7EF0A110C97
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Omh3p4gw-6j5HUKz6c3gJ30ZOuY.roa
Signing time: Fri 22 Dec 2023 10:03:06 +0000
ROA not before: Fri 22 Dec 2023 10:03:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Dec 2023 08:24:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:fa:86:f8:13:d3:f9:00:14:92:e7:ef:0a:11:0c:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Dec 22 10:03:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a6877a78830fba8f91d42b3e9cde0277d193ae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0d:c4:13:67:b4:8a:f0:5f:b3:05:c7:87:0d:
2c:30:50:e4:3f:68:30:ca:cb:8e:9a:de:a6:03:c9:
ec:65:c2:14:52:b9:84:1f:af:52:2f:2f:28:c2:75:
10:98:39:39:80:3b:96:20:ba:7c:f0:fe:91:92:19:
93:c9:10:ed:50:ba:4f:b2:75:04:fd:46:88:af:94:
8a:54:41:ac:4b:c1:d3:25:92:b6:eb:a9:43:48:33:
16:20:91:74:a8:ec:6e:0e:a7:ab:90:79:93:a9:17:
62:b8:28:76:0e:35:79:c2:6f:08:15:b2:f5:42:09:
67:17:ed:71:54:ae:57:02:27:02:80:82:e5:a3:b4:
ff:64:c7:0e:d5:2c:fb:9f:75:4b:cc:5f:70:ef:ba:
5e:1a:6c:85:17:88:14:15:c1:ac:81:67:3d:c6:f7:
5d:26:b2:aa:9c:65:d9:9a:bc:fc:ab:10:33:e4:84:
77:0c:7f:ca:85:57:e7:02:80:90:43:5f:e6:37:90:
fa:df:d3:26:56:1d:6c:57:f8:56:83:85:86:02:21:
ea:2a:74:6b:8c:bd:de:d6:f2:ee:d8:3c:5b:9f:83:
36:08:d9:87:09:94:b7:77:9f:59:10:11:cf:4c:ef:
27:2a:bf:3c:d6:df:c7:0c:3e:75:dc:d7:a0:17:e0:
00:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:68:77:A7:88:30:FB:A8:F9:1D:42:B3:E9:CD:E0:27:7D:19:3A:E6
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Omh3p4gw-6j5HUKz6c3gJ30ZOuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
85:d2:7f:33:0d:60:ed:fd:8d:fd:9b:8b:9c:56:50:3e:28:68:
1a:bf:23:a3:5e:e2:27:52:6b:4e:40:e4:d8:da:3a:c1:94:1e:
66:4c:e5:be:2b:4f:01:d9:f5:95:22:33:28:a3:6d:38:dd:cc:
a7:b4:88:10:76:e9:6a:84:64:5a:f4:77:a7:c7:a1:9f:43:77:
ad:08:4c:90:39:88:f6:c2:a8:f8:7b:cf:8e:76:4a:eb:64:1a:
7b:8f:01:13:72:97:be:44:92:4f:27:f4:63:0e:d3:cd:ca:2b:
9e:37:e0:8a:40:92:a8:c8:81:52:81:3f:85:d5:5b:2b:9f:f0:
9e:68:72:9e:f3:65:29:5e:a1:61:4d:0a:c1:aa:91:5d:d5:3a:
69:a7:b1:bf:64:ad:00:c3:72:30:31:f0:f5:14:45:e3:d3:c2:
8b:1e:32:bf:05:78:bf:6e:1d:60:b4:12:aa:48:a5:50:7d:ad:
e3:9d:c1:64:4c:15:be:67:0c:07:84:89:9d:d4:7e:99:8d:9b:
a7:91:ec:ae:33:10:2e:81:b7:f1:d0:73:15:26:53:62:10:16:
c3:a5:ab:73:b9:ea:e5:31:44:4b:4c:35:2d:fe:00:8a:18:75:
4c:1b:ef:00:b2:83:8c:3b:c8:b3:96:1b:e9:27:4b:92:63:19:
90:1e:40:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org