Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/VOBEToqB5LONRugkZGDC39jTz0g.roa
File: VOBEToqB5LONRugkZGDC39jTz0g.roa (raw, json)
Hash identifier: 9TBGmT3163D0vR75h9/2Qn8ox5p/C8Yp/no4EaLqKyg=
Subject key identifier: 54:E0:44:4E:8A:81:E4:B3:8D:46:E8:24:64:60:C2:DF:D8:D3:CF:48
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018BA1FCB9791B44D3044C0C354A5B4A5080
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/VOBEToqB5LONRugkZGDC39jTz0g.roa
Signing time: Mon 06 Nov 2023 00:16:16 +0000
ROA not before: Mon 06 Nov 2023 00:16:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
188.64.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Nov 2023 10:16:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a1:fc:b9:79:1b:44:d3:04:4c:0c:35:4a:5b:4a:50:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Nov 6 00:16:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54e0444e8a81e4b38d46e8246460c2dfd8d3cf48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6c:51:c8:eb:15:19:a1:23:56:fb:8d:1a:50:
5f:6c:90:4e:af:8e:1a:e0:72:d8:7b:ac:d5:66:7c:
27:49:ce:dd:ad:5f:e3:c1:c8:e3:4b:86:f2:d9:fb:
5c:ef:0d:1a:db:f1:16:2c:5c:09:f7:a5:8c:88:05:
d8:19:a1:65:76:d3:7e:10:1c:0d:56:9b:a7:53:f7:
15:2b:99:f1:38:74:d1:4f:f7:7c:74:c3:bf:d4:c1:
f5:16:bc:8a:d2:18:46:6c:eb:c0:be:6a:8d:85:be:
88:8f:e5:ef:d8:86:15:46:fb:0c:b1:ac:a5:f1:33:
83:06:01:2a:04:9d:23:99:c2:12:2c:54:02:9a:ce:
6f:76:ca:6d:9a:0a:44:36:75:9d:60:9d:0f:13:92:
fa:ae:85:d0:1c:43:09:08:67:64:59:3b:29:b1:fd:
88:43:2d:7f:6e:bf:c1:a7:d4:e6:82:1d:34:e6:9e:
78:d3:3b:cd:71:0f:8f:1d:cd:b6:80:45:08:b8:50:
27:a2:d7:46:37:01:d3:61:c7:63:38:01:17:a7:84:
f8:b0:8b:35:3a:d5:9d:dc:ad:3d:78:1b:84:39:a2:
2e:2f:93:78:d6:fd:26:82:52:86:17:0e:f5:e8:4e:
f3:42:e7:e3:4c:0c:1b:1a:30:4c:96:11:c6:66:58:
2f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:E0:44:4E:8A:81:E4:B3:8D:46:E8:24:64:60:C2:DF:D8:D3:CF:48
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/VOBEToqB5LONRugkZGDC39jTz0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
188.64.108.0/22
Signature Algorithm: sha256WithRSAEncryption
11:29:89:5b:7c:3d:59:36:27:14:65:8c:0b:3f:7c:fe:71:90:
8e:e8:45:76:cb:54:5e:5c:6d:7a:fe:b2:5d:da:60:33:d5:63:
a2:76:e6:b4:90:cb:34:0c:f1:f2:34:52:a8:2b:aa:3f:8c:e3:
46:55:b6:9f:ef:22:4a:88:c4:90:18:b7:a6:e4:88:06:1e:a6:
50:df:4e:b7:0d:98:05:ef:3d:29:d5:dc:b4:88:f8:a9:d2:77:
47:90:a2:02:19:1e:41:a0:0e:0a:38:0e:1a:c5:9e:c7:ad:13:
81:c7:f5:d2:c0:70:4e:8e:50:69:b3:ea:88:e1:9f:e3:54:a4:
a2:2f:8c:45:da:48:d6:d7:23:6c:dc:19:04:12:2a:6e:04:e9:
76:3d:36:d8:b4:1a:b1:68:bb:53:0c:f9:f5:0c:e2:de:ce:02:
86:12:00:2b:e7:24:5a:03:42:88:69:1c:63:f4:1c:4e:28:21:
64:55:d0:9a:49:65:a3:f0:a3:a4:91:c3:f0:2c:7f:bf:73:84:
30:42:e2:e0:ba:86:49:61:64:50:5f:ce:70:9f:f7:f0:a8:1f:
96:a7:f6:7c:07:a8:07:04:fd:d4:ad:b9:57:9a:3f:44:d9:5c:
6a:86:02:9e:ac:bd:7b:de:68:03:29:1a:98:83:07:af:25:a8:
70:aa:e8:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org