Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/VZjNVLaKsvmC5mdrlKMQRRTiWk8.roa
File: VZjNVLaKsvmC5mdrlKMQRRTiWk8.roa (raw, json)
Hash identifier: t1Bq8IEVhM75i7fkWrBhnlV24ZwuF4jNRodZ0O6Tug8=
Subject key identifier: 55:98:CD:54:B6:8A:B2:F9:82:E6:67:6B:94:A3:10:45:14:E2:5A:4F
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018B06236118D0F6AB1C675C46CE834770E1
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/VZjNVLaKsvmC5mdrlKMQRRTiWk8.roa
Signing time: Fri 06 Oct 2023 17:57:43 +0000
ROA not before: Fri 06 Oct 2023 17:57:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:06:23:61:18:d0:f6:ab:1c:67:5c:46:ce:83:47:70:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Oct 6 17:57:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5598cd54b68ab2f982e6676b94a3104514e25a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:02:6c:9a:ca:39:9a:08:f9:67:5a:6e:74:dc:
0c:a8:4c:25:a2:03:17:c2:5f:fd:8c:ba:d4:0c:44:
64:77:cd:b7:33:c7:28:d3:f0:0f:5c:26:e1:0c:b1:
d7:22:dd:e6:a9:16:9a:13:a2:03:e3:b3:81:21:82:
e3:b2:8e:a3:c7:a2:b0:75:24:6f:7f:27:4b:02:c5:
89:f9:67:5d:97:a8:fc:20:44:04:ea:5d:e5:82:9a:
dc:5d:3b:22:c5:2b:24:83:4b:d7:3d:52:34:86:0e:
9b:de:a7:95:5c:b0:8b:16:47:00:23:fb:59:09:ed:
31:e6:36:26:f9:e8:2a:43:45:44:56:c3:08:e1:02:
19:9c:6f:1b:60:16:b0:23:f3:68:2e:ad:30:29:a7:
c7:93:45:2a:02:da:4d:70:06:9c:6e:b9:eb:b0:f5:
6c:7c:fe:c2:32:7b:f5:8f:35:45:0c:de:cb:fb:30:
b8:52:ca:ad:c4:21:3b:f7:fb:68:54:a4:4d:4b:d2:
36:00:0f:71:d0:82:2d:4e:e4:d5:52:2b:65:6d:2e:
0c:e4:fe:02:2b:56:47:db:5c:19:4b:93:a5:22:8a:
10:fb:df:bc:3e:c1:f0:30:80:82:4c:21:51:43:0a:
8c:da:80:9c:c2:9e:05:1e:9f:46:9c:5d:72:61:bd:
6a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:98:CD:54:B6:8A:B2:F9:82:E6:67:6B:94:A3:10:45:14:E2:5A:4F
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/VZjNVLaKsvmC5mdrlKMQRRTiWk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
94:17:10:e0:e9:cd:42:61:34:0a:91:17:9e:3d:c0:37:98:5d:
fe:4e:0c:e1:3e:66:ca:c2:ee:f8:3a:d7:f9:16:8c:93:1d:d2:
d0:5e:e0:7c:c2:7a:50:39:a3:f7:22:17:fc:8d:6f:46:c1:8d:
60:95:55:56:ed:a6:8b:01:0d:79:eb:b2:94:8d:a8:c7:d4:67:
f7:27:0b:c1:52:d8:3b:48:7f:50:c3:f9:2f:cf:be:16:5e:04:
50:1e:e2:41:db:e9:35:50:f3:06:f8:55:dc:ae:34:55:db:a4:
0f:2e:94:7c:92:8e:b5:ab:2e:5f:7b:b8:1b:10:f6:69:7c:17:
e8:cd:45:3a:6e:54:b2:a5:8d:85:d1:be:60:60:8c:db:00:e5:
2b:20:e6:1e:7b:ca:e1:4e:2b:38:49:97:b6:e1:1b:00:5a:4a:
b1:36:71:5b:3c:3f:75:6f:7b:cb:1b:20:f6:85:b1:a4:1e:2f:
f6:6e:c8:5c:22:4f:d5:fa:14:69:4f:82:e5:9b:c1:e1:55:78:
a3:98:3c:53:fb:0f:de:c8:39:04:c6:c7:ad:27:d6:a8:84:d9:
a6:5e:3a:22:da:12:1f:ce:d7:c0:ad:a6:1e:44:33:67:3c:d3:
86:c3:19:d4:58:90:dc:8a:41:7c:2b:7d:f8:98:5d:af:9d:08:
6b:1c:90:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 14 20:50:05 2023 by rpki-client on console-ams.rpki-client.org