Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/s9JvVO_BT1PbRbsoJL21WicwD0k.roa
File: s9JvVO_BT1PbRbsoJL21WicwD0k.roa (raw, json)
Hash identifier: /R+ooSIr5QI1hWezaixcZd/I6H49Zg5Yj9LTI8J9zh8=
Subject key identifier: B3:D2:6F:54:EF:C1:4F:53:DB:45:BB:28:24:BD:B5:5A:27:30:0F:49
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018C0D495F2C48864E64C0F809FE66D36D1B
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/s9JvVO_BT1PbRbsoJL21WicwD0k.roa
Signing time: Sun 26 Nov 2023 20:19:21 +0000
ROA not before: Sun 26 Nov 2023 20:19:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:0d:49:5f:2c:48:86:4e:64:c0:f8:09:fe:66:d3:6d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Nov 26 20:19:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3d26f54efc14f53db45bb2824bdb55a27300f49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:98:6b:96:95:7b:74:de:b9:17:4b:30:83:be:
4e:7e:44:db:50:51:6b:fd:8a:ce:f7:7c:91:82:b5:
c8:dc:73:1e:4b:75:df:4a:a9:9d:a8:a5:41:64:55:
8a:bd:ae:dc:2c:04:f6:68:c8:8c:88:17:00:15:e4:
98:fd:39:08:e2:6e:c0:1f:e5:cf:1e:f3:54:74:6f:
2f:2f:c5:e7:30:34:b9:78:0f:10:08:90:f0:8c:28:
2d:8a:61:6d:61:3c:0c:02:e1:ea:ac:22:cd:e2:ea:
a5:a3:2e:35:2b:73:88:41:5b:3c:fd:9c:70:0d:b3:
5c:df:e6:60:a7:69:44:03:54:7e:d1:a2:25:d2:10:
5c:06:4d:df:e7:cb:a4:f1:86:c6:50:39:64:99:ba:
a6:3d:e4:96:a3:8d:17:2f:94:20:da:c2:76:fc:23:
a2:e8:2d:7f:23:49:b2:7f:2c:54:e8:c4:47:c6:bf:
7a:74:21:51:ce:78:65:e4:05:f5:0a:fd:ff:7a:08:
af:ae:f2:6d:ac:c7:cc:27:48:47:cc:ae:eb:02:db:
11:b9:da:cb:76:0f:52:9c:ce:b1:70:12:82:a8:40:
6d:0f:19:f5:79:14:21:c6:c4:84:c7:d6:5b:19:16:
ea:55:d7:1f:01:5d:3c:83:ec:61:0b:32:d5:08:13:
7a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D2:6F:54:EF:C1:4F:53:DB:45:BB:28:24:BD:B5:5A:27:30:0F:49
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/s9JvVO_BT1PbRbsoJL21WicwD0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
98:0d:3c:ad:fe:38:be:32:91:58:bd:a1:2b:a7:e4:b2:73:0b:
90:7d:25:da:16:51:fa:5d:5b:12:83:7d:b1:9c:9f:40:91:24:
d8:f8:99:9c:74:8e:ef:5c:4b:75:ad:eb:f8:ce:ab:f2:44:2e:
5a:fd:ad:6b:b9:d8:8e:5a:d6:bf:dd:7c:aa:b4:0c:3a:22:07:
88:25:f1:53:37:ed:7a:86:a2:4b:7d:cf:01:02:1b:75:52:6f:
62:18:b6:37:68:4e:b0:2e:02:99:5a:aa:71:74:f6:0a:11:61:
d0:2d:89:b3:d8:35:35:44:06:be:7f:33:ec:1f:df:5e:c0:e4:
31:0a:ea:92:c9:e3:c9:55:d5:f8:be:e9:b0:e8:4a:43:3d:cf:
f7:1c:01:18:22:10:5a:16:c5:d5:e8:a0:a7:59:c9:df:94:54:
9d:da:87:8d:0a:cb:5a:9f:a0:6e:bb:90:27:6d:b8:70:7c:99:
56:4a:17:73:a8:f5:0d:84:8f:ec:43:72:2e:1e:8f:fd:e5:29:
a6:e4:8f:49:a3:9f:ce:1a:a3:74:66:33:0a:aa:d4:67:a4:76:
ac:33:25:40:0e:3b:fc:e9:e7:65:33:b0:71:39:15:32:73:bf:
3e:8e:0f:a1:29:54:11:7e:05:14:8a:84:e2:54:c3:ef:85:d3:
0c:5f:3f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 2 10:46:36 2023 by rpki-client on console-ams.rpki-client.org