Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/YghNr8uhnWqd0sHxL6xW-Q3y5B8.roa
File: YghNr8uhnWqd0sHxL6xW-Q3y5B8.roa (raw, json)
Hash identifier: eeH4mHPHld39S8JO0p/MBIL7wkpCO9CMkS1+Td75z7A=
Subject key identifier: 62:08:4D:AF:CB:A1:9D:6A:9D:D2:C1:F1:2F:AC:56:F9:0D:F2:E4:1F
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018D53FDD20BEF01B7A14D28143AFFA2022D
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/YghNr8uhnWqd0sHxL6xW-Q3y5B8.roa
Signing time: Mon 29 Jan 2024 06:52:39 +0000
ROA not before: Mon 29 Jan 2024 06:52:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 00:32:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:53:fd:d2:0b:ef:01:b7:a1:4d:28:14:3a:ff:a2:02:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 29 06:52:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62084dafcba19d6a9dd2c1f12fac56f90df2e41f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7f:cc:65:fb:bd:fc:1f:a7:f6:86:ff:97:d7:
5e:32:2a:a5:9c:a7:7b:11:58:ea:5f:c1:03:9a:33:
4a:3c:1e:86:93:e8:77:70:5b:6d:3b:15:1e:b2:34:
ec:37:24:90:98:a4:31:d5:48:a7:fa:89:a8:41:33:
9c:87:76:df:f5:5b:c9:0f:8b:fd:91:6b:9c:23:6a:
b5:15:2b:71:eb:ec:52:82:46:f6:f9:53:76:fd:fd:
98:2f:27:d7:0b:e8:56:53:4f:4b:e9:df:47:37:ff:
27:fa:d6:78:18:c3:ed:b5:84:1e:92:0a:85:2a:75:
ea:a4:19:0b:67:1c:58:ff:c9:28:18:6e:02:ab:ec:
d9:43:ac:78:62:be:86:bf:c0:de:7e:bd:ff:65:a8:
35:cb:10:c3:b2:f6:c8:f0:aa:20:5f:53:61:61:6e:
8f:b8:04:62:3e:0d:e1:32:be:9a:2c:b3:94:ac:d7:
83:a0:aa:b2:5c:ed:d5:37:46:d0:3e:9a:17:a0:a4:
e9:4c:72:6c:5b:d0:1e:cd:07:5f:b6:08:8c:0f:88:
e6:98:d0:31:52:29:81:51:85:90:a3:b6:28:d7:7d:
bf:78:ce:1f:6b:00:60:cc:a4:39:4e:e0:c7:28:30:
5f:1c:f5:a9:d9:63:aa:9d:da:7e:57:73:e1:84:07:
02:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:08:4D:AF:CB:A1:9D:6A:9D:D2:C1:F1:2F:AC:56:F9:0D:F2:E4:1F
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/YghNr8uhnWqd0sHxL6xW-Q3y5B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:2e:83:09:be:bd:30:7f:38:1d:90:0b:4d:b3:a2:f7:33:b9:
0b:ff:f5:09:46:ae:bf:e4:20:f5:af:77:b5:7d:c9:58:85:51:
59:34:40:e5:24:72:7e:6f:43:3d:b7:09:2d:39:fb:3e:32:50:
fa:34:8a:48:13:84:7f:98:11:11:c7:5a:8f:88:97:2b:b5:78:
0d:4e:2d:81:83:f7:44:ae:a0:48:0a:89:39:f9:5d:3f:d8:dd:
dd:4a:ad:f1:c8:ba:36:fe:c1:de:b1:14:d2:36:2c:f2:3b:35:
5a:6b:11:32:b8:f6:d6:46:52:1d:21:fc:c6:cc:d5:55:6a:26:
15:54:a9:17:29:48:10:4a:71:74:e7:10:4a:ad:80:ba:37:2e:
00:97:af:ac:31:f9:57:bb:21:5a:69:00:e1:43:6b:56:90:71:
b5:29:37:91:9c:4e:cd:f9:93:24:06:7c:c0:0e:f7:51:16:34:
bd:89:ce:6b:d3:3e:42:6b:e0:39:d2:5d:37:64:82:72:60:6e:
3b:05:4e:84:74:87:e1:68:80:fc:9e:03:4a:47:62:22:d0:08:
58:02:bc:2a:e4:e8:10:74:f7:69:11:ca:41:3c:11:2a:12:12:
d6:63:de:74:e1:f3:0e:28:c7:3f:cf:60:36:a6:0b:fe:1d:50:
7c:b0:51:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1T/dIL7wG3oU0oFDr/ogItMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjQwMTI5MDY1MjM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjA4NGRhZmNiYTE5ZDZhOWRkMmMxZjEyZmFjNTZmOTBkZjJlNDFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhH/MZfu9/B+n9ob/l9deMiqlnKd7
EVjqX8EDmjNKPB6Gk+h3cFttOxUesjTsNySQmKQx1Uin+omoQTOch3bf9VvJD4v9
kWucI2q1FStx6+xSgkb2+VN2/f2YLyfXC+hWU09L6d9HN/8n+tZ4GMPttYQekgqF
KnXqpBkLZxxY/8koGG4Cq+zZQ6x4Yr6Gv8Defr3/Zag1yxDDsvbI8KogX1NhYW6P
uARiPg3hMr6aLLOUrNeDoKqyXO3VN0bQPpoXoKTpTHJsW9AezQdftgiMD4jmmNAx
UimBUYWQo7Yo132/eM4fawBgzKQ5TuDHKDBfHPWp2WOqndp+V3PhhAcCkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGIITa/LoZ1qndLB8S+sVvkN8uQfMB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvWWdoTnI4dWhuV3FkMHNIeEw2eFctUTN5NUI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVEcMA0G
CSqGSIb3DQEBCwUAA4IBAQAMLoMJvr0wfzgdkAtNs6L3M7kL//UJRq6/5CD1r3e1
fclYhVFZNEDlJHJ+b0M9twktOfs+MlD6NIpIE4R/mBERx1qPiJcrtXgNTi2Bg/dE
rqBICok5+V0/2N3dSq3xyLo2/sHesRTSNizyOzVaaxEyuPbWRlIdIfzGzNVVaiYV
VKkXKUgQSnF05xBKrYC6Ny4Al6+sMflXuyFaaQDhQ2tWkHG1KTeRnE7N+ZMkBnzA
DvdRFjS9ic5r0z5Ca+A50l03ZIJyYG47BU6EdIfhaID8ngNKR2Ii0AhYArwq5OgQ
dPdpEcpBPBEqEhLWY9504fMOKMc/z2A2pgv+HVB8sFHe
-----END CERTIFICATE-----
Generated at Thu Feb 8 02:05:39 2024 by rpki-client on console-fra.rpki-client.org