Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/tS9OMuXVFlPaRMSs3sijjvQQ3P0.roa
File: tS9OMuXVFlPaRMSs3sijjvQQ3P0.roa (raw, json)
Hash identifier: HaA3TV09lyXhsZRwnbAMRgfOxU3LAUHzpPb/sUX10Gc=
Subject key identifier: B5:2F:4E:32:E5:D5:16:53:DA:44:C4:AC:DE:C8:A3:8E:F4:10:DC:FD
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0189089211C2DD0DE77937CBEA26E73E2E15
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/tS9OMuXVFlPaRMSs3sijjvQQ3P0.roa
Signing time: Thu 29 Jun 2023 19:12:17 +0000
ROA not before: Thu 29 Jun 2023 19:12:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 29 Jul 2023 13:56:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:08:92:11:c2:dd:0d:e7:79:37:cb:ea:26:e7:3e:2e:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jun 29 19:12:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b52f4e32e5d51653da44c4acdec8a38ef410dcfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:00:4f:1a:ee:1b:e8:e3:05:4d:ee:66:01:f9:
62:ff:b7:67:b7:e5:64:ea:e3:e9:50:72:2d:69:8c:
01:ad:09:55:a7:d1:1a:27:69:c1:97:2d:e5:06:6c:
3c:0d:a5:1c:f5:3b:90:73:52:b5:3c:c9:dc:db:b6:
34:d7:c1:8d:37:c4:04:e9:ad:21:07:be:82:e8:f3:
a3:a2:ba:54:4d:59:fd:0c:56:50:9b:61:cb:07:49:
1d:82:df:ad:2f:6d:ab:c1:d7:28:1e:b4:10:fd:7f:
0a:54:14:b7:c0:4b:ea:04:58:bf:1d:6c:24:f0:1f:
23:3c:a9:54:9d:05:68:d6:da:1f:33:04:96:b9:d8:
25:15:21:4f:23:b3:ac:1e:59:e9:30:c8:7b:3d:48:
96:ac:19:13:52:ac:8f:b8:ce:b3:a0:a6:f0:61:17:
87:33:59:cf:38:06:c3:5d:f4:9a:b5:2b:a1:f2:4f:
e4:ba:f6:df:b6:f9:07:ad:11:75:91:72:6f:86:58:
42:b9:d4:cf:05:d3:84:32:fe:8c:c9:10:5a:3c:2d:
62:3c:57:5a:c1:57:ed:b5:42:a0:52:89:17:11:04:
e8:39:b5:c9:8c:08:61:d4:27:ec:ce:ff:ce:e1:cd:
75:87:f0:8c:f8:51:52:81:d6:56:25:f8:8d:e9:49:
0e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:2F:4E:32:E5:D5:16:53:DA:44:C4:AC:DE:C8:A3:8E:F4:10:DC:FD
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/tS9OMuXVFlPaRMSs3sijjvQQ3P0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
09:db:12:c8:79:ce:d8:a7:3e:94:34:8c:a8:de:62:60:90:2d:
3d:ff:89:47:21:d7:d9:2b:08:ae:e0:9f:02:e8:fa:29:7a:1b:
ff:e8:08:a4:56:a8:b5:34:52:af:b7:52:c8:fd:25:44:2a:37:
02:6b:a6:06:ea:58:29:fa:4d:67:4d:58:38:23:a6:3b:03:04:
d7:3b:75:33:73:66:9d:18:9b:5c:f3:00:72:95:37:94:2a:f4:
52:64:05:8a:df:f3:7c:54:86:36:f8:a9:f5:32:cd:c6:96:e6:
40:d8:8a:67:18:2c:e6:62:56:6a:99:6f:2e:d6:22:06:17:9e:
bf:38:4f:04:ac:d8:d6:a8:3e:5c:ec:46:3c:6f:11:3e:26:33:
8c:7a:42:30:15:d4:1f:80:70:b9:c3:a2:f2:ee:40:02:61:e9:
55:ea:e3:42:72:e0:33:8f:bb:8f:aa:8b:61:8e:b0:fb:32:46:
c1:be:4c:8c:5a:70:e7:3e:f0:eb:fc:43:b6:34:e8:da:0f:d6:
ce:d0:52:38:00:df:00:da:4f:13:d0:cf:0b:bf:70:dc:a1:17:
82:92:23:46:af:fb:43:e6:1b:3d:03:c8:1f:22:5b:2b:c2:e7:
4b:e8:21:ff:62:94:d6:8f:4b:f2:c8:74:ca:2b:df:0a:25:bc:
6e:f1:4e:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkIkhHC3Q3neTfL6ibnPi4VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjMwNjI5MTkxMjE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTJmNGUzMmU1ZDUxNjUzZGE0NGM0YWNkZWM4YTM4ZWY0MTBkY2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhwBPGu4b6OMFTe5mAfli/7dnt+Vk
6uPpUHItaYwBrQlVp9EaJ2nBly3lBmw8DaUc9TuQc1K1PMnc27Y018GNN8QE6a0h
B76C6POjorpUTVn9DFZQm2HLB0kdgt+tL22rwdcoHrQQ/X8KVBS3wEvqBFi/HWwk
8B8jPKlUnQVo1tofMwSWudglFSFPI7OsHlnpMMh7PUiWrBkTUqyPuM6zoKbwYReH
M1nPOAbDXfSatSuh8k/kuvbftvkHrRF1kXJvhlhCudTPBdOEMv6MyRBaPC1iPFda
wVfttUKgUokXEQToObXJjAhh1Cfszv/O4c11h/CM+FFSgdZWJfiN6UkOywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLUvTjLl1RZT2kTErN7Io470ENz9MB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvdFM5T011WFZGbFBhUk1TczNzaWpqdlFRM1AwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVEcMA0G
CSqGSIb3DQEBCwUAA4IBAQAJ2xLIec7Ypz6UNIyo3mJgkC09/4lHIdfZKwiu4J8C
6Popehv/6AikVqi1NFKvt1LI/SVEKjcCa6YG6lgp+k1nTVg4I6Y7AwTXO3Uzc2ad
GJtc8wBylTeUKvRSZAWK3/N8VIY2+Kn1Ms3GluZA2IpnGCzmYlZqmW8u1iIGF56/
OE8ErNjWqD5c7EY8bxE+JjOMekIwFdQfgHC5w6Ly7kACYelV6uNCcuAzj7uPqoth
jrD7MkbBvkyMWnDnPvDr/EO2NOjaD9bO0FI4AN8A2k8T0M8Lv3DcoReCkiNGr/tD
5hs9A8gfIlsrwudL6CH/YpTWj0vyyHTKK98KJbxu8U6m
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org