Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/a2kxI1R5bq7TbsBLrrAq2xDtLIw.roa
File: a2kxI1R5bq7TbsBLrrAq2xDtLIw.roa (raw, json)
Hash identifier: xa1Y47NmN0jcuYm4n9r0EB0QriKhuM+eMRIp+AfqF6E=
Subject key identifier: 6B:69:31:23:54:79:6E:AE:D3:6E:C0:4B:AE:B0:2A:DB:10:ED:2C:8C
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01856F66ED333BFD3BF2924C642D265330BF
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/a2kxI1R5bq7TbsBLrrAq2xDtLIw.roa
Signing time: Sun 01 Jan 2023 22:14:54 +0000
ROA not before: Sun 01 Jan 2023 22:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Feb 2023 15:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:ed:33:3b:fd:3b:f2:92:4c:64:2d:26:53:30:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 22:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b69312354796eaed36ec04baeb02adb10ed2c8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:24:55:db:ef:1a:58:00:ad:84:73:0d:e8:e7:
63:ae:d0:8c:15:b1:a9:a7:c5:8f:53:0a:06:31:40:
8e:c7:7c:43:c8:91:9c:f7:e2:90:c4:ba:fa:19:d1:
be:2d:04:7f:1b:5e:e8:8b:c0:8e:65:2a:5e:49:94:
e5:83:b1:25:2d:2c:ea:57:0d:cf:99:53:3f:44:69:
96:67:b1:bc:4c:05:a9:fb:4e:49:0f:4b:b6:e3:f0:
2c:d2:31:8b:64:be:62:c5:aa:3c:0f:1f:3b:66:f1:
de:0f:16:37:c5:5e:b0:db:e3:88:ed:9c:45:b3:4a:
f5:38:83:b3:ee:a5:3d:b7:08:d6:48:98:ab:ab:2b:
17:44:e0:78:39:8e:03:82:c3:be:9f:ae:e3:78:8b:
c4:bb:1e:2f:48:05:01:5b:2d:e6:04:61:5f:8a:46:
c1:bb:90:ea:22:7a:24:42:0a:0a:38:99:70:75:80:
70:dd:7b:c3:4a:e5:c0:60:8d:19:9c:77:8c:01:ac:
28:03:02:9c:8a:0f:21:5a:10:17:45:12:8a:02:6e:
88:76:96:b3:db:f5:98:6b:61:3e:70:66:2e:7b:b6:
25:01:b6:e2:31:36:79:58:7d:20:37:29:4a:e5:d5:
3f:28:f5:d8:8a:07:0d:af:ca:80:02:45:12:00:0c:
90:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:69:31:23:54:79:6E:AE:D3:6E:C0:4B:AE:B0:2A:DB:10:ED:2C:8C
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/a2kxI1R5bq7TbsBLrrAq2xDtLIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:54:3a:25:fd:d0:91:d0:37:6d:34:79:7a:b0:1b:55:c3:05:
8d:e7:38:92:e8:62:9d:f7:87:85:e1:22:45:54:c5:60:d5:9b:
c9:e3:ea:e3:59:96:aa:c1:81:04:53:74:46:c4:7e:b4:04:90:
7f:44:9e:18:62:d0:8a:2a:2c:a2:b1:d8:c2:4b:9b:b9:27:1f:
3a:e2:0e:74:4a:f5:c3:ac:36:c9:32:ef:41:a2:cf:46:d8:0b:
57:bd:80:2d:45:2a:ed:59:77:20:be:ce:2c:22:ce:15:fc:18:
e8:ca:72:13:a0:c9:38:e5:d5:27:e3:77:d7:46:60:69:40:42:
5c:f0:d0:26:3a:87:48:2a:0b:9a:5e:67:a2:21:4f:d3:ab:70:
0a:52:a7:fb:6d:53:7b:73:ed:8b:7f:04:be:18:a3:26:ba:48:
e5:e8:04:c4:24:23:aa:c0:c1:93:6c:b8:62:97:5e:73:f3:10:
24:9c:bd:57:33:bc:60:35:3b:81:8e:17:74:71:03:f8:3a:58:
ff:d9:48:50:9a:8a:1c:1e:ec:da:11:bf:9c:75:e0:ac:72:71:
b6:84:0a:b5:22:d2:d4:5a:9d:a0:da:31:1a:eb:75:48:03:ee:
b5:23:1b:4c:7d:72:e2:3c:eb:77:18:17:19:a5:46:41:71:c5:
bd:a0:a1:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org