Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/sBRyIQU92C6IEJSXkVqQEHuBKJE.roa
File: sBRyIQU92C6IEJSXkVqQEHuBKJE.roa (raw, json)
Hash identifier: 2qz5VJyrqdGWBqWqH4COqSHbG+eOBdTEoQHXnmGIfVg=
Subject key identifier: B0:14:72:21:05:3D:D8:2E:88:10:94:97:91:5A:90:10:7B:81:28:91
Certificate issuer: /CN=cebf65e0069dbcc76b7b556e8c1d705889df27e9
Certificate serial: 018CC7956555C9E418E1351F1B51FB4461DF
Authority key identifier: CE:BF:65:E0:06:9D:BC:C7:6B:7B:55:6E:8C:1D:70:58:89:DF:27:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zr9l4AadvMdre1VujB1wWInfJ-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/sBRyIQU92C6IEJSXkVqQEHuBKJE.roa
Signing time: Tue 02 Jan 2024 00:31:45 +0000
ROA not before: Tue 02 Jan 2024 00:31:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5413
IP address blocks: 185.119.108.0/24 maxlen: 24
185.119.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 12:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:65:55:c9:e4:18:e1:35:1f:1b:51:fb:44:61:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cebf65e0069dbcc76b7b556e8c1d705889df27e9
Validity
Not Before: Jan 2 00:31:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b0147221053dd82e88109497915a90107b812891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e8:30:f1:f1:9e:9f:c7:18:56:cc:9d:a9:9e:
9a:9e:65:c2:82:32:6d:02:63:4c:62:f5:7c:af:02:
b6:46:48:dc:a1:11:23:79:85:69:c1:7d:b4:09:31:
c1:ae:fa:fa:25:c0:08:42:08:78:3c:70:86:45:a2:
5a:51:2f:5c:b6:09:1b:6a:d4:dd:26:3d:80:cc:30:
f5:b8:cb:36:c6:c8:46:e6:f9:c2:f7:22:21:bb:2e:
32:eb:15:17:0c:c8:b6:3d:40:e2:ef:86:c1:e7:c0:
0e:b6:89:50:ef:5e:93:df:59:54:e2:47:68:c1:79:
2a:3d:e2:dc:a6:65:8c:86:7e:4a:6e:d9:f8:06:7f:
8e:4b:50:be:a8:00:44:d6:8a:b9:9a:42:21:f7:0e:
d4:b4:5a:92:40:65:91:9e:89:72:1d:eb:03:76:c8:
c4:13:60:e3:bd:b7:94:58:7b:28:05:13:b6:de:00:
fc:30:bc:85:03:38:15:b0:35:03:81:96:61:bc:ea:
89:c5:5f:b7:71:de:15:2b:17:0b:af:be:05:07:8b:
04:23:c5:23:de:07:52:39:9d:86:1c:88:aa:f2:ab:
6e:1d:d1:ae:36:ee:fa:cf:a5:08:11:45:f9:a9:69:
9b:61:34:d9:d7:14:6d:7b:4f:6e:be:62:63:c9:28:
8c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:14:72:21:05:3D:D8:2E:88:10:94:97:91:5A:90:10:7B:81:28:91
X509v3 Authority Key Identifier:
keyid:CE:BF:65:E0:06:9D:BC:C7:6B:7B:55:6E:8C:1D:70:58:89:DF:27:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zr9l4AadvMdre1VujB1wWInfJ-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/sBRyIQU92C6IEJSXkVqQEHuBKJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/zr9l4AadvMdre1VujB1wWInfJ-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.108.0/24
185.119.111.0/24
Signature Algorithm: sha256WithRSAEncryption
83:8e:29:6f:99:d6:b8:72:96:d9:7b:28:9b:a7:d8:a8:77:a5:
71:7c:63:1f:55:cb:4a:bd:a0:18:3d:d9:bb:8e:03:fa:a1:25:
a7:e7:dc:eb:fb:3c:f0:5d:bb:3b:04:b8:0e:f5:55:07:22:ef:
1f:54:4a:86:52:1f:bc:48:72:50:39:50:41:d9:c9:fa:fb:43:
e5:6c:09:99:36:c0:88:14:ed:e4:93:af:66:c7:47:ad:0a:57:
ab:be:ab:72:d1:b2:8c:1f:27:ce:6b:e0:80:96:b4:1a:e1:ee:
fc:45:d0:1f:96:74:87:19:e7:e6:b0:fd:db:2a:0b:ed:99:3c:
96:94:f6:aa:5e:3a:1d:fa:85:87:8b:ba:5b:0a:7d:5f:df:78:
fd:e7:5d:d4:2b:ca:bc:22:41:7d:9d:22:3e:ed:f7:32:80:0d:
fb:3e:e3:c7:4c:f5:a0:bf:78:36:fb:54:b8:74:6c:74:ea:31:
4f:c9:e1:d7:83:76:34:e0:47:7c:c4:c9:6c:ed:e9:5d:1f:c7:
8e:0f:76:18:cb:42:09:58:b4:a4:04:cf:72:ee:41:86:c7:68:
a5:f8:18:3e:59:6d:4e:48:ac:b3:7a:0c:c1:91:db:43:68:03:
65:5f:35:65:11:cb:9f:1f:c6:59:30:a0:3f:b2:3f:b7:e8:36:
e3:3b:00:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 18:13:37 2024 by rpki-client on console.sobornost.net