Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/oZGPU8K3eCVsdNt7TgZoL6SCgy8.roa
File: oZGPU8K3eCVsdNt7TgZoL6SCgy8.roa (raw, json)
Hash identifier: 5UpwwoZjg0RkeL7QHsrzvA9e4U65UsCG8ZtBAYwdaCE=
Subject key identifier: A1:91:8F:53:C2:B7:78:25:6C:74:DB:7B:4E:06:68:2F:A4:82:83:2F
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018E750D3BEDB314966E96F00292AA2BDDF5
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/oZGPU8K3eCVsdNt7TgZoL6SCgy8.roa
Signing time: Mon 25 Mar 2024 09:59:45 +0000
ROA not before: Mon 25 Mar 2024 09:59:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 06:17:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:75:0d:3b:ed:b3:14:96:6e:96:f0:02:92:aa:2b:dd:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Mar 25 09:59:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a1918f53c2b778256c74db7b4e06682fa482832f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:58:a2:e3:99:0d:f3:88:05:b9:4d:ff:7e:04:
42:f5:8f:89:1b:68:47:97:2f:be:e4:ad:cd:8f:50:
20:4e:26:6a:77:31:4b:b3:3c:37:f5:27:5c:d0:46:
0c:03:2f:03:51:70:d1:3b:69:44:3c:8a:9e:70:88:
b4:e8:8f:00:65:16:ce:20:57:00:a9:cc:22:92:48:
da:13:94:77:b4:a2:c0:88:fa:fc:93:60:29:d1:62:
10:67:66:b6:ed:b7:c2:24:e9:7d:2d:e0:c6:34:51:
c1:56:f2:c2:27:77:c0:44:9b:6e:63:3d:4a:96:e5:
92:c7:67:e7:31:47:2c:d1:b4:c9:9b:d0:c1:c6:2c:
05:68:96:c0:0b:e7:20:b0:bd:af:57:88:02:19:a3:
79:9c:2c:1e:fe:d7:3a:b5:28:4b:96:42:76:15:55:
65:11:ff:2a:2d:b9:c9:97:71:d0:82:8e:75:20:41:
28:11:9c:eb:26:26:13:64:86:3a:cf:53:31:bc:5f:
ea:1d:f7:37:06:3c:3c:7a:89:76:99:da:f4:5a:aa:
f4:d0:da:66:2d:c1:1e:f1:4e:ab:a6:4e:46:5d:3f:
36:da:f0:ec:df:4b:d5:9c:56:1c:61:5d:ab:72:8f:
cd:e6:46:51:fe:4b:d7:47:98:21:1f:9a:7f:78:6c:
3d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:91:8F:53:C2:B7:78:25:6C:74:DB:7B:4E:06:68:2F:A4:82:83:2F
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/oZGPU8K3eCVsdNt7TgZoL6SCgy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
20:f4:93:75:e6:83:ee:a3:99:5f:e5:c9:84:e0:c3:ae:60:62:
67:a6:e9:87:22:05:66:ea:d9:97:66:c3:2f:e2:b2:4c:69:64:
e6:a9:d9:dd:a3:11:ac:d9:06:4d:f4:47:bc:7a:2c:8a:c0:1d:
9a:9c:17:8f:88:ce:9d:3a:ff:8e:a7:56:b8:8b:2c:73:ee:eb:
15:1d:c1:51:d5:ca:88:7b:b9:4e:e6:fb:c6:9f:4d:de:7b:38:
2a:ce:66:80:7c:42:53:96:49:d3:51:79:6f:8b:c1:36:c2:15:
fc:af:d0:87:7f:69:a7:9e:43:8b:51:1a:67:39:4f:e7:dc:37:
23:e2:42:e0:f1:db:d4:d2:94:f6:75:33:1c:8f:d6:2f:ac:5f:
32:1d:8f:66:ea:9c:3d:4c:06:5a:e1:85:aa:13:76:d3:39:49:
99:ac:93:09:05:dc:8c:c4:77:63:75:e5:b0:5a:63:17:6a:26:
88:60:bc:35:20:ca:44:26:0b:6c:64:4d:74:cd:57:05:09:0e:
cc:21:7e:be:3b:82:56:49:b5:02:86:3a:48:9e:8c:b9:d9:de:
45:27:63:e1:4a:86:43:37:96:6e:1b:e2:ba:62:08:73:b1:42:
57:98:01:98:30:3f:53:d4:5b:4a:05:d0:19:21:6f:1e:61:44:
01:a6:fc:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 09:14:57 2024 by rpki-client on console-ams.rpki-client.org