Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/251f4a-82d7-46a5-a130-0a9b06e16ddc/1/yNibdbJWFF0hIKIZhotUnaqreyI.roa
File: yNibdbJWFF0hIKIZhotUnaqreyI.roa (raw, json)
Hash identifier: C9SlFlm9BZMmVHb+ycbqFtM7vTbnab3w/VZsL0F26P0=
Subject key identifier: C8:D8:9B:75:B2:56:14:5D:21:20:A2:19:86:8B:54:9D:AA:AB:7B:22
Certificate issuer: /CN=5fcf5d25a3661a3e72d2729454f7ff804b43bdb9
Certificate serial: 018C624A1A72B80F16E825919B411471DA6C
Authority key identifier: 5F:CF:5D:25:A3:66:1A:3E:72:D2:72:94:54:F7:FF:80:4B:43:BD:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X89dJaNmGj5y0nKUVPf_gEtDvbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/251f4a-82d7-46a5-a130-0a9b06e16ddc/1/yNibdbJWFF0hIKIZhotUnaqreyI.roa
Signing time: Wed 13 Dec 2023 08:27:52 +0000
ROA not before: Wed 13 Dec 2023 08:27:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199524
IP address blocks: 185.105.1.0/24 maxlen: 24
185.105.2.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:62:4a:1a:72:b8:0f:16:e8:25:91:9b:41:14:71:da:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fcf5d25a3661a3e72d2729454f7ff804b43bdb9
Validity
Not Before: Dec 13 08:27:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8d89b75b256145d2120a219868b549daaab7b22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6f:b1:0d:e1:10:a6:23:54:0e:12:3b:91:e7:
c5:ff:ef:11:54:84:5a:58:e5:f8:ce:77:8e:3a:7e:
00:7f:6f:c1:f7:64:96:f4:fb:b1:78:8f:6e:f4:6a:
99:20:9b:52:66:7b:c5:bf:70:c0:56:7b:07:32:96:
45:f6:26:10:44:30:99:4c:55:f6:74:43:f0:f7:b5:
a3:ab:fd:1a:88:83:17:19:c9:e9:20:1f:05:5a:03:
a3:f7:ca:2e:02:e3:85:eb:f0:b5:df:3e:06:d4:d0:
3f:59:9f:98:a7:97:60:95:0b:04:42:cd:01:3e:69:
57:19:05:a1:68:66:cb:67:79:b5:96:4c:70:a9:c7:
9a:ad:02:df:c4:e6:01:43:96:03:1b:b4:84:61:1d:
06:f2:9e:ca:d3:62:d4:c2:44:c1:bd:fd:0d:38:02:
ea:36:2d:c2:38:23:f4:83:95:27:a2:02:23:43:2c:
10:92:62:a5:20:f6:e5:c9:6c:e8:22:1e:28:50:a5:
2d:7d:41:1b:6f:5b:e4:34:ef:3a:9e:9a:c2:46:13:
1a:ec:b4:9d:02:2d:aa:87:b1:57:37:8a:72:58:3d:
6c:2e:d3:51:b3:c0:c7:ed:f2:85:dd:ff:01:8f:fd:
15:a3:c9:6a:75:0f:9e:5b:4e:fe:c3:ed:eb:e2:8f:
bf:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D8:9B:75:B2:56:14:5D:21:20:A2:19:86:8B:54:9D:AA:AB:7B:22
X509v3 Authority Key Identifier:
keyid:5F:CF:5D:25:A3:66:1A:3E:72:D2:72:94:54:F7:FF:80:4B:43:BD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X89dJaNmGj5y0nKUVPf_gEtDvbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/251f4a-82d7-46a5-a130-0a9b06e16ddc/1/yNibdbJWFF0hIKIZhotUnaqreyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/251f4a-82d7-46a5-a130-0a9b06e16ddc/1/X89dJaNmGj5y0nKUVPf_gEtDvbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.1.0-185.105.2.255
Signature Algorithm: sha256WithRSAEncryption
0c:9c:7d:06:5e:25:21:ab:08:11:ec:1b:49:eb:a9:4e:dd:bc:
d6:97:d5:0b:a8:d3:f7:0c:2c:a4:8b:9c:04:8e:f4:10:56:7b:
29:ba:a4:87:02:61:03:5e:84:90:33:e6:18:e8:13:3b:38:50:
0f:04:4c:5a:25:28:7e:f6:6e:ef:35:68:88:a2:51:0c:c2:de:
a6:8d:1f:83:f7:c9:b9:23:5d:bb:ad:ee:45:71:b0:f1:be:95:
fc:c6:a4:78:76:95:e0:32:e8:d9:4a:ef:ab:37:fa:c5:7b:c7:
71:bc:e3:7b:82:ff:24:27:90:03:8e:88:e7:e4:5c:e7:bf:a9:
e3:07:32:5e:49:3d:a2:5b:a9:2b:d8:14:3f:80:12:d0:c0:67:
67:3c:23:fe:e9:38:78:11:b6:18:7b:57:b8:6e:8d:93:a7:47:
4b:69:0f:17:3b:e0:39:4a:d7:6b:6a:83:15:52:fb:e5:29:7f:
ed:65:28:1d:d6:fd:5b:ce:12:9d:39:26:bf:20:85:fb:b0:5e:
fa:57:03:49:bd:fc:60:9f:41:d8:8b:7e:1f:2e:ad:52:54:13:
08:83:27:03:3b:30:0c:5e:47:e9:46:a9:e0:7f:f9:3a:d2:8b:
c8:39:0c:83:b6:ce:e6:7a:94:0d:72:d3:5c:40:2d:ea:be:2c:
84:bd:72:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:40 2024 by rpki-client on console.sobornost.net