Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/zRkpvpEEtdw-XftUapJ2tpKzIVw.roa
File: zRkpvpEEtdw-XftUapJ2tpKzIVw.roa (raw, json)
Hash identifier: fsH4HoRfOeKE8LYFeCwFWP0jUoHKp2LRxbX3DfspK9g=
Subject key identifier: CD:19:29:BE:91:04:B5:DC:3E:5D:FB:54:6A:92:76:B6:92:B3:21:5C
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018B2FCAB5608547B8A7972E7EEB186E2546
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/zRkpvpEEtdw-XftUapJ2tpKzIVw.roa
Signing time: Sat 14 Oct 2023 20:04:55 +0000
ROA not before: Sat 14 Oct 2023 20:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
188.64.104.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Oct 2023 08:13:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2f:ca:b5:60:85:47:b8:a7:97:2e:7e:eb:18:6e:25:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Oct 14 20:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd1929be9104b5dc3e5dfb546a9276b692b3215c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3f:ec:01:a0:18:6c:6f:3b:57:e3:ca:7e:62:
a6:7d:10:17:fa:42:6c:26:9b:e9:94:8f:8f:fb:9d:
db:8c:2a:37:b3:a8:f9:96:ac:93:c0:53:aa:4d:fe:
13:82:3e:14:ce:5e:26:f7:b0:9e:d8:b1:a3:1b:71:
5d:a5:41:ad:31:09:ed:06:72:a4:21:4c:f2:5b:61:
78:5f:bb:b5:54:49:6d:b5:eb:ee:fc:2d:a4:03:51:
a2:20:97:b2:de:08:31:1a:a7:64:52:dc:7b:11:fa:
90:a4:98:99:46:40:02:39:79:ad:15:70:aa:5c:11:
26:87:85:24:22:86:88:62:e6:46:62:52:e7:23:41:
08:93:3c:67:e6:ac:94:52:56:ec:0e:2b:01:c8:eb:
07:3f:16:31:b6:27:e8:e1:d0:98:96:6f:e8:9d:8c:
ad:41:54:a5:9c:89:18:a3:cf:22:ef:47:bc:95:61:
c1:74:c6:1e:4d:6b:dd:95:16:bd:8c:68:fa:63:2e:
c8:10:34:1e:a6:fd:41:6f:a6:f7:f2:c2:b5:57:2f:
16:fa:0e:6b:df:b9:32:fa:0c:c0:e7:0a:67:e3:9e:
23:e6:47:82:6f:50:61:4a:f8:9c:72:0d:41:7f:a4:
62:0b:2c:41:54:e2:3d:12:3e:8e:04:08:78:6b:5e:
a3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:19:29:BE:91:04:B5:DC:3E:5D:FB:54:6A:92:76:B6:92:B3:21:5C
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/zRkpvpEEtdw-XftUapJ2tpKzIVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
188.64.104.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:c2:06:32:9e:46:ec:07:d1:bd:43:a6:82:cb:03:83:8c:d9:
9d:5d:55:6f:b4:fd:04:b5:19:b2:ef:44:e5:6a:8f:34:d2:7c:
b7:2a:f8:cd:2c:f0:c9:a9:cb:aa:6a:14:d7:dc:8c:56:f7:55:
27:54:06:6d:57:13:8e:d1:3a:85:41:b6:17:08:1c:57:33:87:
76:c6:08:3d:6b:e0:c6:16:31:2e:26:24:93:2e:45:0e:7a:e0:
a8:94:72:66:80:c9:34:d2:d2:54:04:70:8a:05:21:d0:e2:07:
49:ac:b2:2b:2b:29:28:4b:d5:4e:8d:a3:85:e6:8c:30:d9:02:
42:03:25:12:05:d1:85:3d:69:d2:f0:e4:bc:c5:6f:a7:99:1f:
79:aa:db:6c:2f:f4:3c:e0:5b:fd:75:19:09:20:d3:d8:de:01:
25:60:3f:60:cd:94:16:4d:4b:23:09:18:6b:1d:5c:e3:4f:5f:
fa:60:cc:1d:5c:92:2c:35:2d:15:a4:f1:a7:da:87:de:2a:8b:
25:48:dd:96:4f:8b:e7:b3:8a:64:91:5f:f6:b2:40:fc:06:65:
79:20:f2:6c:bd:ad:a0:47:b3:1d:93:50:7d:f6:02:8f:7b:51:
08:22:4b:38:91:29:59:aa:92:a8:00:d8:66:49:78:2e:e5:68:
db:ec:37:b2
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYsvyrVghUe4p5cufusYbiVGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjMxMDE0MjAwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZDE5MjliZTkxMDRiNWRjM2U1ZGZiNTQ2YTkyNzZiNjkyYjMyMTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAij/sAaAYbG87V+PKfmKmfRAX+kJs
JpvplI+P+53bjCo3s6j5lqyTwFOqTf4Tgj4Uzl4m97Ce2LGjG3FdpUGtMQntBnKk
IUzyW2F4X7u1VElttevu/C2kA1GiIJey3ggxGqdkUtx7EfqQpJiZRkACOXmtFXCq
XBEmh4UkIoaIYuZGYlLnI0EIkzxn5qyUUlbsDisByOsHPxYxtifo4dCYlm/onYyt
QVSlnIkYo88i70e8lWHBdMYeTWvdlRa9jGj6Yy7IEDQepv1Bb6b38sK1Vy8W+g5r
37ky+gzA5wpn454j5keCb1BhSviccg1Bf6RiCyxBVOI9Ej6OBAh4a16j5wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFM0ZKb6RBLXcPl37VGqSdraSsyFcMB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvelJrcHZwRUV0ZHctWGZ0VWFwSjJ0cEt6SVZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuVEcAwQC
vEBoMA0GCSqGSIb3DQEBCwUAA4IBAQBswgYynkbsB9G9Q6aCywODjNmdXVVvtP0E
tRmy70Tlao800ny3KvjNLPDJqcuqahTX3IxW91UnVAZtVxOO0TqFQbYXCBxXM4d2
xgg9a+DGFjEuJiSTLkUOeuColHJmgMk00tJUBHCKBSHQ4gdJrLIrKykoS9VOjaOF
5oww2QJCAyUSBdGFPWnS8OS8xW+nmR95qttsL/Q84Fv9dRkJINPY3gElYD9gzZQW
TUsjCRhrHVzjT1/6YMwdXJIsNS0VpPGn2ofeKoslSN2WT4vns4pkkV/2skD8BmV5
IPJsva2gR7Mdk1B99gKPe1EIIks4kSlZqpKoANhmSXgu5Wjb7Dey
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org