Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/_0Pvc3_vrehMkUHumO8AFTwoGiM.roa
File: _0Pvc3_vrehMkUHumO8AFTwoGiM.roa (raw, json)
Hash identifier: 1EKjOBLQj1ATaW0O371KE+uufFwc5UAOjkaMwTsC6NE=
Subject key identifier: FF:43:EF:73:7F:EF:AD:E8:4C:91:41:EE:98:EF:00:15:3C:28:1A:23
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0188063A13B3574D11DCA12D5BEE6C76BEFD
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/_0Pvc3_vrehMkUHumO8AFTwoGiM.roa
Signing time: Wed 10 May 2023 15:14:09 +0000
ROA not before: Wed 10 May 2023 15:14:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:06:3a:13:b3:57:4d:11:dc:a1:2d:5b:ee:6c:76:be:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: May 10 15:14:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff43ef737fefade84c9141ee98ef00153c281a23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c9:33:86:8c:da:7d:89:79:ed:c3:2b:0b:51:
d4:22:93:36:b4:12:6b:61:d0:27:c7:79:fc:1f:7b:
bc:49:1b:9e:b7:9c:34:be:95:80:82:93:50:44:3e:
8c:f4:5c:93:ff:2c:53:b7:d7:e0:a1:ad:bd:22:91:
f2:2a:0c:7d:cf:da:6d:84:ba:8a:53:63:d9:91:49:
56:f9:9d:ed:55:5c:9c:44:ed:f2:56:34:74:e7:ef:
1a:a5:0f:76:b2:69:53:4c:63:e5:6f:51:c0:d6:87:
7e:9e:40:56:53:e0:b2:fd:a6:50:ef:45:e4:1d:24:
cd:25:9d:e4:41:27:68:05:fd:0e:59:a6:e6:89:87:
3c:b0:72:fb:c8:ad:ec:f4:e0:ef:5a:d1:14:68:24:
bb:5c:a5:8b:19:64:9c:17:6d:26:60:59:7b:0f:8e:
e1:29:b7:4d:33:8f:12:5c:1c:3c:07:af:c4:26:0f:
b3:35:0f:49:82:fc:3a:2d:14:37:59:7a:d6:34:28:
f3:c9:2f:50:b4:2b:f2:ff:aa:34:97:b7:1e:88:f4:
b8:7f:79:d4:33:6f:98:a9:61:21:37:3d:79:59:ef:
88:9d:ae:02:7d:80:1e:df:5c:c5:68:3f:a0:bf:54:
5b:81:2c:81:e0:6d:3c:75:9b:9c:ba:f0:b4:25:35:
0e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:43:EF:73:7F:EF:AD:E8:4C:91:41:EE:98:EF:00:15:3C:28:1A:23
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/_0Pvc3_vrehMkUHumO8AFTwoGiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
33:6a:7e:23:b3:b6:99:b6:63:d9:ac:78:ef:5a:a2:94:d4:43:
7b:22:e4:b9:ab:5e:16:d2:c1:83:7c:ed:b8:ba:24:40:a5:d2:
b1:47:36:ef:5a:f0:60:5a:03:75:0c:c6:7d:0d:71:c2:e2:16:
2f:28:f4:91:b1:bd:0d:30:a9:31:14:c2:2d:a2:1a:b3:b8:99:
61:36:7c:70:83:d9:5e:f1:34:a7:14:35:e8:bb:cb:50:a1:e2:
f1:89:b9:ca:7b:5e:03:88:b2:79:44:f8:88:96:92:aa:0c:de:
cd:89:83:3d:ea:0a:3d:c2:26:99:2f:12:c1:bb:36:79:2f:94:
36:3c:0a:5f:dc:ba:82:81:bb:f4:02:72:5b:0d:64:2c:7c:0f:
9e:3e:9d:27:b8:02:79:26:b1:b1:4d:b6:d2:56:b2:52:7c:bb:
e4:4f:29:cc:11:f4:fe:5e:a7:cd:91:a4:96:46:83:03:93:f5:
4c:fc:ca:7f:ce:d8:07:25:60:c2:01:75:ec:d6:65:86:49:60:
bc:a8:84:69:d9:35:b6:e8:5e:9a:87:5c:43:56:50:08:27:e4:
67:9a:58:83:30:46:3f:55:a3:30:7b:2f:bb:d3:8e:6c:eb:be:
eb:86:52:6e:97:30:7c:45:e5:40:33:cb:d6:a1:a3:9b:84:5b:
a2:31:d8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:40 2023 by rpki-client on console-fra.rpki-client.org