Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/_EGkKCLzuh1vzPfbH-s_qhnMzEw.roa
File: _EGkKCLzuh1vzPfbH-s_qhnMzEw.roa (raw, json)
Hash identifier: 26pby9257LXzOYm1LiARgKxQTClJMX6oWDY66txEbHE=
Subject key identifier: FC:41:A4:28:22:F3:BA:1D:6F:CC:F7:DB:1F:EB:3F:AA:19:CC:CC:4C
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018BF1652C635A3F10D29DF4CE2B4CB5A3C7
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/_EGkKCLzuh1vzPfbH-s_qhnMzEw.roa
Signing time: Tue 21 Nov 2023 10:20:21 +0000
ROA not before: Tue 21 Nov 2023 10:20:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
185.179.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 Nov 2023 20:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f1:65:2c:63:5a:3f:10:d2:9d:f4:ce:2b:4c:b5:a3:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Nov 21 10:20:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc41a42822f3ba1d6fccf7db1feb3faa19cccc4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7f:a9:f6:07:7d:57:ec:01:dd:0a:da:d1:0a:
7a:31:bb:5e:f8:db:93:79:74:cd:13:f1:a2:0a:b8:
e5:d3:bb:16:9c:6d:fe:eb:09:21:67:16:6e:45:5f:
d4:a6:a8:b1:4d:61:f2:29:42:90:1b:c5:9c:c2:5d:
52:bb:a8:98:58:94:ad:e4:f6:c5:a5:1a:49:71:1a:
da:45:48:de:79:f4:2e:b1:e2:08:c2:97:a9:58:58:
47:5b:ad:b7:a4:b3:c7:a0:ea:76:87:73:6c:66:1e:
61:a5:12:54:80:27:f3:54:52:bc:e2:16:9d:33:33:
9e:b9:a9:d8:f7:70:02:6f:4b:1d:49:89:70:62:95:
6d:55:8d:1f:ef:e9:d0:da:79:de:53:f8:d3:90:14:
74:4a:11:1a:6c:13:0a:31:3f:f6:20:53:8c:c8:a4:
f4:5c:08:33:3a:96:68:e2:3f:8a:4f:40:65:4d:4f:
94:d4:ae:99:38:e8:c8:ac:9a:7d:83:79:19:ef:07:
32:b8:36:3f:ba:7e:35:63:46:ab:16:8c:12:05:5d:
c7:e9:c8:aa:4f:7c:2c:4d:cf:00:f3:41:83:37:04:
ef:aa:07:e9:5d:7c:fd:05:ea:aa:31:5b:6f:a1:14:
b2:60:50:7c:ad:11:83:ab:6e:9b:e0:b8:ef:5f:19:
ad:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:41:A4:28:22:F3:BA:1D:6F:CC:F7:DB:1F:EB:3F:AA:19:CC:CC:4C
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/_EGkKCLzuh1vzPfbH-s_qhnMzEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
185.179.216.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:50:9c:06:2c:1a:ea:a2:b0:b0:9e:e7:e6:e0:b2:9b:6f:52:
55:a7:b0:8a:df:08:b0:30:7b:a1:2e:0e:01:68:11:ca:6c:17:
27:b6:4d:5b:1b:d4:9e:ce:70:e2:dc:81:1b:65:03:b4:7b:91:
21:f3:bf:5f:83:3b:0b:a5:28:dd:1c:95:bd:76:df:83:77:83:
ff:cc:5a:d4:09:11:ba:1f:13:23:b5:be:2b:11:50:29:e2:2c:
de:07:4a:c3:11:44:25:0f:54:72:6e:13:cb:f7:5b:1b:ae:2e:
16:e0:18:a4:02:d1:49:cd:61:4b:6a:a1:84:18:fe:cf:da:e3:
79:7a:c1:a1:54:64:ad:36:a1:79:95:7b:7d:58:b8:8e:30:50:
93:4a:21:21:ae:a5:33:c1:b3:5c:80:17:db:f7:e3:c9:ef:3f:
86:c8:b6:f1:9e:7e:67:51:59:bb:4f:1b:43:2d:e9:19:29:12:
1a:57:2c:94:f8:d4:f4:34:c4:d5:1a:77:a4:d8:af:d2:f6:f8:
95:0c:2b:44:f5:61:cb:31:ed:c1:32:07:1f:89:0d:7f:db:18:
67:d8:ba:a6:e9:e0:04:76:f2:78:cd:b1:57:ca:5f:d1:fe:c7:
3c:a0:6a:e8:1e:50:ad:23:9f:e3:ce:d0:ba:d5:a4:07:5a:4d:
0d:64:22:55
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYvxZSxjWj8Q0p30zitMtaPHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjMxMTIxMTAyMDIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzQxYTQyODIyZjNiYTFkNmZjY2Y3ZGIxZmViM2ZhYTE5Y2NjYzRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAun+p9gd9V+wB3Qra0Qp6Mbte+NuT
eXTNE/GiCrjl07sWnG3+6wkhZxZuRV/UpqixTWHyKUKQG8Wcwl1Su6iYWJSt5PbF
pRpJcRraRUjeefQuseIIwpepWFhHW623pLPHoOp2h3NsZh5hpRJUgCfzVFK84had
MzOeuanY93ACb0sdSYlwYpVtVY0f7+nQ2nneU/jTkBR0ShEabBMKMT/2IFOMyKT0
XAgzOpZo4j+KT0BlTU+U1K6ZOOjIrJp9g3kZ7wcyuDY/un41Y0arFowSBV3H6ciq
T3wsTc8A80GDNwTvqgfpXXz9BeqqMVtvoRSyYFB8rRGDq26b4LjvXxmt1QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFPxBpCgi87odb8z32x/rP6oZzMxMMB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvX0VHa0tDTHp1aDF2elBmYkgtc19xaG5NekV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuVEcAwQA
ubPYMA0GCSqGSIb3DQEBCwUAA4IBAQA6UJwGLBrqorCwnufm4LKbb1JVp7CK3wiw
MHuhLg4BaBHKbBcntk1bG9SeznDi3IEbZQO0e5Eh879fgzsLpSjdHJW9dt+Dd4P/
zFrUCRG6HxMjtb4rEVAp4izeB0rDEUQlD1RybhPL91sbri4W4BikAtFJzWFLaqGE
GP7P2uN5esGhVGStNqF5lXt9WLiOMFCTSiEhrqUzwbNcgBfb9+PJ7z+GyLbxnn5n
UVm7TxtDLekZKRIaVyyU+NT0NMTVGnek2K/S9viVDCtE9WHLMe3BMgcfiQ1/2xhn
2Lqm6eAEdvJ4zbFXyl/R/sc8oGroHlCtI5/jztC61aQHWk0NZCJV
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org