Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/oVS5Y4LcfXTCM2G6KcaOsrVnEkA.roa
File: oVS5Y4LcfXTCM2G6KcaOsrVnEkA.roa (raw, json)
Hash identifier: jwBAimU2ZqzrBwBupnwXsSLi8rJfRPq97RwaTkh99Ag=
Subject key identifier: A1:54:B9:63:82:DC:7D:74:C2:33:61:BA:29:C6:8E:B2:B5:67:12:40
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018CE7FA47738F069455251D29822D8E6B36
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/oVS5Y4LcfXTCM2G6KcaOsrVnEkA.roa
Signing time: Mon 08 Jan 2024 07:29:48 +0000
ROA not before: Mon 08 Jan 2024 07:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jan 2024 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e7:fa:47:73:8f:06:94:55:25:1d:29:82:2d:8e:6b:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 8 07:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a154b96382dc7d74c23361ba29c68eb2b5671240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:00:f5:d1:2a:6e:77:10:2c:43:f9:b2:0f:85:
ff:1a:21:90:ee:f5:be:70:c0:92:f8:63:fa:d2:af:
2f:bb:7f:a4:b6:01:79:b3:fa:ae:53:98:2e:53:75:
e4:a8:f8:b0:16:da:17:8d:63:66:4f:b4:10:c2:69:
75:a7:22:36:47:d9:6b:5b:8e:83:4a:6b:d9:e7:15:
73:3c:8d:23:16:79:1b:a8:c8:ec:2c:d3:66:64:b0:
b3:80:cd:be:3d:2a:32:0d:6d:f1:0a:1e:5e:b1:0f:
4e:d5:1f:e1:1e:1d:10:ae:94:72:c7:7a:eb:8f:21:
06:dd:d8:aa:2e:d5:37:7d:f7:b9:c8:7a:f1:88:72:
f0:a4:f0:7e:65:c4:a6:9e:d6:4d:7e:5b:d4:4b:08:
91:86:db:aa:b7:bf:5f:e5:6d:9b:70:59:83:04:b1:
d2:74:76:24:87:e3:d5:f5:d1:b0:00:99:ae:58:87:
dd:0d:2a:18:d1:db:72:d7:81:09:57:3c:40:23:b0:
8f:55:3b:1d:91:80:13:0d:f0:1a:7b:8e:08:34:8d:
39:f1:39:50:68:62:b7:5e:18:08:81:7e:b4:ce:ce:
9a:9c:ae:c4:1e:0d:17:61:85:f2:af:27:93:c4:16:
8d:54:3e:9d:2a:17:3c:61:95:9c:ac:15:bf:1d:f3:
c2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:54:B9:63:82:DC:7D:74:C2:33:61:BA:29:C6:8E:B2:B5:67:12:40
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/oVS5Y4LcfXTCM2G6KcaOsrVnEkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:3c:4c:1c:0d:8f:c0:6f:02:97:76:ec:d2:66:b8:9c:57:d5:
c0:66:fa:65:94:c6:b1:b8:ea:9b:47:c6:39:9c:bd:d1:08:d0:
3b:3a:73:5d:c7:ee:32:d1:95:f9:16:43:f9:04:17:6b:9d:cc:
42:7e:11:57:a3:30:90:89:bf:52:73:cb:27:4b:6b:24:25:3b:
f4:3e:41:e0:94:b9:5b:e0:1a:89:1f:60:48:23:c7:01:ee:50:
fb:8f:b2:9a:19:d7:7c:f2:fb:14:50:fe:40:d7:c7:4c:d5:1a:
fb:74:71:fe:c1:26:d4:41:39:3b:04:30:a4:97:43:33:c6:7b:
86:eb:df:86:2a:79:ab:fe:18:32:3e:f0:13:f4:85:86:a0:e9:
6c:58:dc:2a:e1:ce:ee:69:1f:1e:b7:91:bc:f0:7f:2d:b1:2f:
c2:bf:1c:a3:a9:e0:c5:02:d4:a2:89:90:13:d6:24:f8:66:04:
36:10:97:da:4f:ef:f1:92:16:d0:3e:28:c7:f4:40:bb:01:8b:
fc:db:51:db:34:bc:78:47:50:73:17:d9:63:e2:a3:10:90:ed:
3a:51:41:a5:66:6c:43:43:c7:0f:d9:b4:48:7b:44:de:9e:fb:
6c:3b:42:23:29:09:00:bc:44:a9:7c:85:bd:23:0d:48:1b:ff:
28:00:90:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org