Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/jEEvCWS0g9mc7KEOw5Ku6vaAbXY.roa
File: jEEvCWS0g9mc7KEOw5Ku6vaAbXY.roa (raw, json)
Hash identifier: spaWpYTulyVbnxAQ2g/QKczC8RK9dXN0Ary5PjSckoM=
Subject key identifier: 8C:41:2F:09:64:B4:83:D9:9C:EC:A1:0E:C3:92:AE:EA:F6:80:6D:76
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018D8621250E5406C6815076290FB786DF26
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/jEEvCWS0g9mc7KEOw5Ku6vaAbXY.roa
Signing time: Thu 08 Feb 2024 00:32:15 +0000
ROA not before: Thu 08 Feb 2024 00:32:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.141.168.0/23 maxlen: 24
185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Feb 2024 07:18:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:86:21:25:0e:54:06:c6:81:50:76:29:0f:b7:86:df:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Feb 8 00:32:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c412f0964b483d99ceca10ec392aeeaf6806d76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:cd:3d:aa:ee:95:30:90:57:c1:a5:3b:af:a7:
54:ad:53:2d:e7:af:ed:e3:af:e4:16:ad:c1:48:f6:
e3:44:d4:37:47:41:0a:23:6c:33:b0:b5:a3:a2:a0:
aa:0a:94:15:f3:a8:4c:b5:ff:27:fd:69:79:aa:99:
cb:6c:0e:55:52:1a:32:af:22:74:38:0c:17:d6:2c:
fe:ed:9b:a9:ca:91:6d:4e:d1:76:8f:84:b3:7f:cb:
83:22:43:c3:fe:20:bc:8f:99:02:be:85:9e:50:dd:
b2:d9:a3:12:09:85:87:ba:a3:4b:a4:29:4a:8a:a1:
11:1c:cd:73:b9:83:bc:01:49:e3:31:1b:ba:73:a2:
ad:06:fd:18:8f:64:15:2b:4b:d4:4b:24:2e:e3:c6:
b3:f3:44:34:79:11:29:4a:18:1c:91:cd:5d:8c:b1:
b8:02:34:59:04:cd:fd:89:c3:bc:00:67:7e:ae:e6:
94:aa:aa:48:50:8c:e5:93:f4:b0:a1:00:49:29:d1:
a8:bb:a8:f5:33:d4:50:da:55:9a:6b:74:3a:31:6d:
18:6e:fe:9b:4c:9f:b3:c8:8a:12:27:50:44:ce:f3:
86:5d:48:92:3f:17:73:25:07:10:6b:83:21:01:44:
07:8e:cc:50:7a:f3:78:19:41:c3:20:c3:e6:62:4c:
3f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:41:2F:09:64:B4:83:D9:9C:EC:A1:0E:C3:92:AE:EA:F6:80:6D:76
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/jEEvCWS0g9mc7KEOw5Ku6vaAbXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.168.0/23
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:36:94:75:63:e7:08:ca:72:98:13:8d:67:ec:d6:9c:3a:84:
38:dc:04:7b:9a:23:cc:6c:d6:89:7d:ad:6e:91:1d:f0:f0:d5:
81:bb:36:70:d0:19:4e:5f:e0:b4:9f:2d:11:10:d9:e9:87:1d:
a4:4a:96:4a:71:3b:9d:fc:d9:1c:0d:c9:c0:8e:aa:b6:6a:18:
1f:e3:a4:ea:c8:ae:d8:56:27:39:0f:5d:06:0b:10:06:fe:38:
db:b4:1e:c1:0c:5a:c0:24:f5:af:95:bb:4c:a2:17:a9:1a:e6:
81:93:48:db:62:a9:f0:9c:9c:b2:bb:b6:c7:b8:80:5b:c6:b6:
60:98:79:b4:59:a8:e8:90:1b:a5:89:ea:95:26:55:36:24:94:
1c:bb:6f:43:b7:5e:3c:a7:5f:28:0a:3b:07:c4:dc:95:82:50:
2b:a8:93:ba:90:6b:44:68:0c:1c:8b:15:9b:d2:13:7a:93:47:
a8:b1:34:d2:83:56:cc:86:b0:44:b8:a1:57:14:c7:65:01:79:
b9:28:e1:c2:7c:b0:69:6a:67:cf:61:9e:33:30:f6:18:24:f5:
55:9c:40:a3:6a:13:2b:09:dc:ae:54:b7:31:76:07:79:09:c9:
32:a6:c1:9e:6c:2e:c0:b4:72:7c:b1:d3:d0:3c:89:89:d5:7d:
12:2f:4a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org