Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/qT2jPfpgzfYekw67yYaSXsTh-Cg.roa
File: qT2jPfpgzfYekw67yYaSXsTh-Cg.roa (raw, json)
Hash identifier: IehHTxqF7ffUHpnImhgTS4lmChpxlz5ktcJhIwJQBvY=
Subject key identifier: A9:3D:A3:3D:FA:60:CD:F6:1E:93:0E:BB:C9:86:92:5E:C4:E1:F8:28
Certificate issuer: /CN=cebf65e0069dbcc76b7b556e8c1d705889df27e9
Certificate serial: 01856BC11869FF6E0166B38415A42C69FA9A
Authority key identifier: CE:BF:65:E0:06:9D:BC:C7:6B:7B:55:6E:8C:1D:70:58:89:DF:27:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zr9l4AadvMdre1VujB1wWInfJ-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/qT2jPfpgzfYekw67yYaSXsTh-Cg.roa
Signing time: Sun 01 Jan 2023 05:14:54 +0000
ROA not before: Sun 01 Jan 2023 05:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 185.119.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:c1:18:69:ff:6e:01:66:b3:84:15:a4:2c:69:fa:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cebf65e0069dbcc76b7b556e8c1d705889df27e9
Validity
Not Before: Jan 1 05:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a93da33dfa60cdf61e930ebbc986925ec4e1f828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d8:95:24:e0:cb:4b:fb:4a:d4:96:6f:df:2d:
52:d4:9b:ae:6f:65:de:a7:9f:6c:ba:33:9d:ed:d5:
0b:dd:70:3d:bb:1d:20:1a:e1:49:07:dd:de:50:44:
d7:5e:f6:06:27:b5:bd:4c:26:1e:4f:87:6b:b6:66:
95:9b:04:85:7e:0a:66:ed:7c:13:af:de:b0:e7:86:
87:5c:b3:f7:35:c7:c2:55:62:0a:98:59:7c:6f:40:
70:cf:95:2e:f5:5a:37:9c:38:a4:3a:05:e3:dd:df:
7f:03:83:56:64:01:45:9e:4f:32:12:4b:dc:48:f2:
d3:51:05:e2:83:e5:06:75:7e:50:9a:69:2f:5f:3c:
04:96:fd:d6:5e:03:68:1d:f1:8e:ef:e0:d6:f1:ae:
68:da:16:aa:62:37:84:80:dc:91:1b:99:44:3a:6e:
7c:41:90:a7:99:f9:c2:58:1b:e2:fe:d2:66:5b:fc:
c3:4c:90:aa:9d:65:cb:54:76:b5:8f:df:25:43:25:
9d:77:da:b6:74:6e:f6:01:ac:6a:29:1e:7b:38:2f:
84:b0:c7:72:2f:97:0c:b5:db:c0:87:1b:0e:d5:16:
16:8b:d5:ef:84:d1:64:c5:c5:ea:0b:3e:e6:25:a1:
f7:56:5a:91:e6:c7:79:b0:b9:38:46:8f:d4:dc:5d:
27:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:3D:A3:3D:FA:60:CD:F6:1E:93:0E:BB:C9:86:92:5E:C4:E1:F8:28
X509v3 Authority Key Identifier:
keyid:CE:BF:65:E0:06:9D:BC:C7:6B:7B:55:6E:8C:1D:70:58:89:DF:27:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zr9l4AadvMdre1VujB1wWInfJ-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/qT2jPfpgzfYekw67yYaSXsTh-Cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/zr9l4AadvMdre1VujB1wWInfJ-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.110.0/24
Signature Algorithm: sha256WithRSAEncryption
23:0a:7c:b8:3d:6a:84:10:68:aa:7b:b2:7c:40:a0:d0:80:92:
d7:de:03:6b:10:c2:ec:7b:a2:ac:c3:84:eb:9c:82:41:77:f4:
08:9d:0c:84:b2:d3:69:f8:80:2c:98:6c:50:e5:c3:d7:45:28:
9b:a7:b3:39:8c:05:ce:c1:f4:d0:0b:e6:17:36:d9:5e:f2:49:
58:dd:6e:1a:75:15:26:2a:ce:89:f4:d9:ec:34:bd:b6:cb:66:
ac:44:04:ae:97:10:c6:be:e4:27:1c:3f:d0:b9:46:96:5a:9f:
57:00:00:72:17:2a:a7:4e:ba:57:04:bd:c0:bf:5f:5f:43:4f:
12:b2:c6:c4:3c:1c:fa:9a:6c:7e:79:e2:5c:c7:c0:d2:4c:1c:
28:37:90:c6:40:10:65:ed:b1:29:8c:db:e7:4c:de:d0:a3:a0:
b9:34:91:1c:a3:0b:dd:9c:eb:c6:03:36:ed:ae:00:49:21:cc:
95:fe:26:98:29:ce:00:34:ea:0b:b5:78:72:dd:20:73:4f:59:
d7:2d:66:5a:05:79:90:8c:33:ee:68:61:ff:1b:d9:c9:ad:0d:
2b:1c:94:b6:91:6e:f9:15:72:a4:da:e5:33:aa:6d:ba:3d:2b:
49:24:df:ad:27:d5:21:f6:c4:55:d8:11:a6:c0:a0:5d:fe:2c:
69:99:04:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:41 2024 by rpki-client on console-ams.rpki-client.org