Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Rk_XNjq9khssbrghTi7uXtEUXhA.roa
File: Rk_XNjq9khssbrghTi7uXtEUXhA.roa (raw, json)
Hash identifier: zeDZM/J+MpGG3nUhYPuSJ4Rvy4LcHlkbvRQJT+Nt7Mo=
Subject key identifier: 46:4F:D7:36:3A:BD:92:1B:2C:6E:B8:21:4E:2E:EE:5E:D1:14:5E:10
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018A1362022484DA5A3028F344D3AF2F19D0
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Rk_XNjq9khssbrghTi7uXtEUXhA.roa
Signing time: Sun 20 Aug 2023 14:38:24 +0000
ROA not before: Sun 20 Aug 2023 14:38:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
45.146.232.0/23 maxlen: 23
45.141.170.0/23 maxlen: 23
45.141.168.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 21 Aug 2023 13:05:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:13:62:02:24:84:da:5a:30:28:f3:44:d3:af:2f:19:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Aug 20 14:38:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=464fd7363abd921b2c6eb8214e2eee5ed1145e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:70:22:46:a8:2e:ed:2e:1e:ad:f2:c7:20:f9:
cf:a7:4d:d2:a0:5e:c1:cc:32:ca:5a:7e:b2:2a:3c:
2a:47:ae:8e:b4:19:f9:e4:67:be:49:1d:98:9c:c8:
04:78:7c:e0:8e:ec:e9:93:de:55:00:0d:96:a5:82:
24:98:27:95:55:7c:64:7e:59:2c:f0:40:f8:9b:f0:
85:9e:a4:f3:4c:4b:34:30:49:d8:45:df:84:b6:cd:
1e:89:a2:7c:a9:df:9c:44:32:3c:a7:28:a1:06:0f:
b1:20:d7:97:ce:64:67:5b:0c:6c:d8:b9:e7:de:99:
82:84:2c:b0:d3:75:f6:38:21:60:a5:c0:cd:00:06:
4e:23:8a:6e:4e:60:f8:56:e7:6c:b6:03:06:a5:d2:
0b:9e:fd:55:00:1d:b1:bf:c5:25:ba:3a:9c:f5:22:
cd:c3:49:ad:b1:ec:8c:e9:45:c7:1c:d9:6f:d5:39:
78:45:fc:25:0d:e9:d6:9d:8d:e5:75:c3:c6:6d:2e:
b0:de:05:28:2d:6a:14:12:11:d1:79:fc:0c:c8:22:
34:a3:5a:f5:14:c6:5f:b9:ee:56:e5:8e:1e:6c:f3:
ee:6b:9f:98:4d:c9:b7:a6:15:61:e5:15:6c:a3:e6:
10:da:7a:28:df:24:db:54:f6:d4:fe:06:dd:26:43:
9c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:4F:D7:36:3A:BD:92:1B:2C:6E:B8:21:4E:2E:EE:5E:D1:14:5E:10
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Rk_XNjq9khssbrghTi7uXtEUXhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.168.0/22
45.146.232.0/23
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
37:53:2c:58:9f:fe:f7:04:59:60:51:de:8e:e3:10:47:79:57:
0e:e5:08:38:76:49:df:2c:ab:08:a1:57:1e:99:6c:59:ec:fb:
ab:84:ee:0a:e0:3c:cd:b5:47:3a:5b:ef:ba:7e:00:c7:3a:2f:
35:b9:58:32:57:21:d0:99:b1:68:0e:36:5c:9a:a4:4d:ba:68:
6d:94:db:e5:92:2b:7e:ff:a3:74:30:03:65:75:4d:7a:4e:39:
9b:1d:57:e6:55:27:5d:d4:a9:fe:65:61:87:48:de:fb:8b:51:
73:1a:e8:cf:43:cb:8e:fe:e0:7a:74:a9:b9:f5:3f:7e:b9:2b:
cf:e7:91:e1:34:d3:1b:cb:8b:9b:a5:eb:7e:e2:17:42:f6:23:
84:40:46:b3:91:88:f2:58:b3:ac:88:14:3a:7c:37:35:97:fa:
ad:29:38:e5:6f:91:e4:dc:de:67:b9:8d:50:bb:4a:c9:b2:43:
45:f5:52:ab:dd:f5:be:e0:f5:3e:5e:46:6f:a3:fc:d5:d7:d1:
2b:5e:4e:d2:16:20:54:73:b4:90:c3:44:f4:51:db:75:7b:8d:
f5:ee:de:69:d9:31:6e:96:2b:4b:df:41:d6:fc:a7:e5:77:cb:
e2:e1:21:70:fb:ce:82:f5:7b:89:08:22:6c:08:92:ea:b0:6f:
9f:1e:e2:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org