Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/k1Q5JQnv_0LREtEaWh0WTpck2nU.roa
File: k1Q5JQnv_0LREtEaWh0WTpck2nU.roa (raw, json)
Hash identifier: qzbMo03zvtlR4CcTADZVdBlQQrWKM1+4qIKeCLmAFdA=
Subject key identifier: 93:54:39:25:09:EF:FF:42:D1:12:D1:1A:5A:1D:16:4E:97:24:DA:75
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01881EF31EC70ACE19CDA05E6F2CEEE05210
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/k1Q5JQnv_0LREtEaWh0WTpck2nU.roa
Signing time: Mon 15 May 2023 10:27:09 +0000
ROA not before: Mon 15 May 2023 10:27:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
185.114.144.0/23 maxlen: 24
185.114.146.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:f3:1e:c7:0a:ce:19:cd:a0:5e:6f:2c:ee:e0:52:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: May 15 10:27:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9354392509efff42d112d11a5a1d164e9724da75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:99:9f:a0:ea:22:29:8a:d5:e2:74:45:e2:a1:
88:cd:9a:0c:59:4f:3e:f8:b1:90:c6:9c:d9:f1:4e:
47:03:f0:04:f3:6d:40:d3:25:eb:6f:be:b9:c1:4b:
8f:d8:7c:f5:4e:4a:57:f4:f2:8f:23:5b:13:c7:c9:
46:25:49:1c:4e:e7:35:f9:b4:96:3b:d8:5e:2e:3b:
f6:17:86:fa:25:6a:16:65:00:86:41:e7:87:cd:61:
1c:c7:cb:40:d0:d4:84:96:5f:d7:c4:fd:b3:23:5f:
28:f3:9a:7e:88:97:38:7b:64:99:d1:f6:e5:5b:39:
18:22:88:15:f7:bd:9c:fd:59:a9:b5:9b:de:12:a5:
1c:30:a4:06:c4:9b:2b:ef:6b:2d:b1:bf:37:21:89:
1c:c0:7e:03:d1:bb:4f:1c:de:40:14:89:a6:ee:4c:
0b:a7:62:37:9f:8a:13:8b:bc:df:df:de:06:7f:19:
a2:61:0f:27:b4:11:b1:64:36:dc:b2:66:f4:25:3a:
f6:de:a7:20:a1:9c:97:81:ce:d4:5f:1e:12:a6:2a:
f2:0e:90:39:5e:c0:ab:47:2a:fa:0c:a7:e6:0e:01:
94:d5:a2:65:7d:f5:ab:5c:de:5f:fa:c6:b2:c7:95:
ad:b5:d6:44:27:89:58:dd:27:19:73:2a:bc:d7:cf:
a5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:54:39:25:09:EF:FF:42:D1:12:D1:1A:5A:1D:16:4E:97:24:DA:75
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/k1Q5JQnv_0LREtEaWh0WTpck2nU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
185.114.144.0/22
Signature Algorithm: sha256WithRSAEncryption
32:29:c6:2f:ec:60:2d:53:ba:40:38:7e:f3:45:31:ef:cd:c1:
61:f5:5c:2e:70:50:16:3c:3f:21:53:2e:3c:de:ce:cc:94:58:
f9:2a:66:9b:1f:59:9e:e8:20:c6:b2:76:63:97:29:20:2f:f0:
a8:5e:0c:0c:66:5d:b8:3d:fc:8f:21:f1:93:8b:b9:4d:65:78:
07:29:5c:a5:0b:5b:f3:47:aa:6e:2a:b1:4a:c3:a6:54:60:b5:
b8:59:88:a6:a9:bc:6a:8c:06:b9:0d:62:a2:58:d3:07:41:23:
84:3d:81:0b:2a:92:5e:c1:58:af:62:f4:5d:89:20:31:15:96:
5a:e3:76:72:9c:72:b3:21:4c:80:0c:78:73:05:d0:29:56:a8:
d1:bc:6e:82:e4:ea:83:22:6b:e8:ac:bc:ed:6c:ef:31:47:84:
83:65:87:69:fc:94:b1:37:51:23:6d:99:14:04:53:f3:30:97:
1a:0e:02:7c:67:57:8a:a4:d5:9c:19:a0:52:2d:30:a6:74:1d:
d6:7d:fd:a2:94:4f:29:4e:6e:9d:d7:c5:c5:99:46:b3:01:a7:
21:71:d7:2a:3b:f8:2d:c5:a9:7a:04:d0:92:ce:b0:94:44:45:
d4:6c:61:1d:24:e6:5f:9e:f0:99:b7:f4:1c:12:2a:f7:f5:e5:
3c:be:e8:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org