Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/JqfysSWHVDbic_oF5t6Di1KZsrg.roa
File: JqfysSWHVDbic_oF5t6Di1KZsrg.roa (raw, json)
Hash identifier: bmUYOqzZsu+7gPgTBO5dBPynPbf27XLW4abXk+j0mxY=
Subject key identifier: 26:A7:F2:B1:25:87:54:36:E2:73:FA:05:E6:DE:83:8B:52:99:B2:B8
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01856ECB95B5B44279509C8079F32514E8DE
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/JqfysSWHVDbic_oF5t6Di1KZsrg.roa
Signing time: Sun 01 Jan 2023 19:25:13 +0000
ROA not before: Sun 01 Jan 2023 19:25:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212384
IP address blocks: 185.242.108.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:95:b5:b4:42:79:50:9c:80:79:f3:25:14:e8:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jan 1 19:25:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26a7f2b125875436e273fa05e6de838b5299b2b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:17:9d:62:2f:aa:0f:47:9f:3a:b5:97:95:d9:
47:74:28:a3:af:f8:88:e4:e5:5a:aa:f4:38:54:0b:
c9:28:af:84:51:9c:17:ec:54:dc:ac:98:bd:c4:b2:
02:3c:ea:12:4b:11:b9:d1:4c:4f:16:cf:e0:dc:88:
73:85:cf:e7:a7:59:7b:b2:00:9e:31:6a:c1:52:5a:
e5:2b:23:79:66:39:02:a8:5c:b9:ad:3c:96:a3:e8:
46:e7:1e:b5:83:b8:27:84:5f:59:30:ef:d2:65:8d:
57:db:eb:4b:19:96:3b:96:e3:49:55:75:05:f4:b7:
a7:ab:9e:5c:32:e8:01:f0:6e:43:cf:2a:db:9d:39:
9d:e2:3e:77:35:3a:77:68:29:82:80:64:9a:e8:50:
70:b7:37:01:c0:03:a9:c3:66:d9:47:d3:22:69:45:
c0:03:a4:87:d2:f5:24:05:19:2a:37:8d:d8:24:2f:
1d:30:c1:ea:69:4a:0e:b3:56:bc:ea:31:b4:48:d4:
44:0e:7d:7a:f2:21:92:85:76:a5:d0:bb:af:77:d5:
9d:48:49:30:55:2b:01:f2:4c:e0:f8:e5:6e:b0:db:
a5:58:4b:a1:96:a1:0a:9b:c2:31:d6:cd:a5:81:46:
e3:4a:bf:10:11:b1:0c:72:c4:00:57:da:9d:05:cf:
61:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A7:F2:B1:25:87:54:36:E2:73:FA:05:E6:DE:83:8B:52:99:B2:B8
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/JqfysSWHVDbic_oF5t6Di1KZsrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.108.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:6a:fb:b4:45:71:fa:12:c7:d5:17:7a:36:34:72:cb:dd:3f:
53:83:cf:08:69:b8:67:48:9f:c5:47:d5:f5:f0:df:45:59:57:
8d:15:72:d7:38:a2:ae:6b:cf:31:fa:f5:95:c4:56:20:e0:e6:
3b:a2:56:45:05:16:2a:d5:30:ef:a9:08:ca:ff:4d:f3:45:dc:
3f:27:f1:b3:14:ef:11:8d:0a:32:c6:5d:16:c2:68:31:91:21:
20:64:b1:09:5e:d3:2c:ab:fe:d4:39:df:54:32:91:70:64:56:
9e:44:97:ec:1a:64:15:f8:fe:7b:98:8d:36:db:11:18:4d:1c:
f6:05:15:52:ce:c6:7c:2e:84:3c:0a:37:01:ca:4b:1d:ab:59:
40:4d:ed:b0:e8:d1:e0:5e:24:57:bd:4c:c7:c5:21:85:fc:a5:
d9:16:8c:0c:8d:43:0b:d2:94:14:47:58:70:b1:77:1c:de:b5:
6e:4f:ad:e0:60:ef:19:f8:32:26:6e:b6:11:46:ae:25:7b:8d:
7b:5c:db:9e:11:e7:63:de:3d:59:a9:35:a9:93:fe:18:a1:f4:
d9:56:0c:bb:c5:ec:03:a3:dc:bf:e4:c6:98:ec:d8:47:bd:4d:
45:36:cb:cc:36:8c:a1:cb:31:cc:ee:3e:ec:8a:c7:00:49:1f:
fd:90:33:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:33 2024 by rpki-client on console.sobornost.net