Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/2Sjl1CTZzI0ugDXV7otd0oQ3uJ4.roa
File: 2Sjl1CTZzI0ugDXV7otd0oQ3uJ4.roa (raw, json)
Hash identifier: ZlBSpfX1ZBCjAouMP+Imq52DggOD82QG4KQ/fJXZHCY=
Subject key identifier: D9:28:E5:D4:24:D9:CC:8D:2E:80:35:D5:EE:8B:5D:D2:84:37:B8:9E
Certificate issuer: /CN=cebf65e0069dbcc76b7b556e8c1d705889df27e9
Certificate serial: 0191EB2B24F8EA341360FF7703AD7B36934F
Authority key identifier: CE:BF:65:E0:06:9D:BC:C7:6B:7B:55:6E:8C:1D:70:58:89:DF:27:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zr9l4AadvMdre1VujB1wWInfJ-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/2Sjl1CTZzI0ugDXV7otd0oQ3uJ4.roa
Signing time: Fri 13 Sep 2024 11:35:58 +0000
ROA not before: Fri 13 Sep 2024 11:35:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2856
IP address blocks: 185.119.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Sep 2024 17:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:eb:2b:24:f8:ea:34:13:60:ff:77:03:ad:7b:36:93:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cebf65e0069dbcc76b7b556e8c1d705889df27e9
Validity
Not Before: Sep 13 11:35:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d928e5d424d9cc8d2e8035d5ee8b5dd28437b89e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f5:87:25:ae:71:4b:27:c5:74:3c:56:ce:00:
0c:91:fc:f2:68:58:0a:af:42:4a:0a:c5:4d:e6:c4:
e5:1f:c7:08:f7:bd:62:d7:aa:f5:a5:68:5d:33:a1:
c3:4b:c5:7c:18:22:47:d9:db:d2:e0:9c:7e:51:95:
e6:b2:71:03:73:bf:63:8e:16:a0:0c:3a:22:6a:0d:
18:a6:74:63:4f:54:c9:44:83:f9:fa:2a:4f:60:24:
79:c2:75:48:6f:e5:8b:7d:91:50:c9:e2:9d:67:e8:
d3:21:36:14:df:91:89:d9:5b:84:aa:11:15:2e:fe:
eb:79:c2:b5:83:89:22:8f:f8:04:c4:b7:14:bd:93:
71:9e:68:75:ac:d6:80:ef:92:35:b4:1b:7d:27:a1:
15:18:a3:b2:d8:14:a3:25:3b:a5:cb:97:19:c0:91:
4c:9a:eb:a3:77:97:d8:f8:f5:21:44:d4:25:a2:17:
12:39:fc:04:f9:63:e0:66:4c:a8:5b:b2:c8:0f:96:
56:7d:bf:3b:1b:c9:9a:97:50:97:2e:ef:9c:8a:11:
3b:83:d9:4d:6c:4e:c0:d9:a7:1e:99:91:83:ad:9d:
41:64:31:4f:95:c3:d9:6c:7f:cb:30:6c:36:4e:f4:
5f:08:63:60:2d:f2:e4:08:89:9d:06:d5:f9:f3:88:
4f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:28:E5:D4:24:D9:CC:8D:2E:80:35:D5:EE:8B:5D:D2:84:37:B8:9E
X509v3 Authority Key Identifier:
keyid:CE:BF:65:E0:06:9D:BC:C7:6B:7B:55:6E:8C:1D:70:58:89:DF:27:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zr9l4AadvMdre1VujB1wWInfJ-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/2Sjl1CTZzI0ugDXV7otd0oQ3uJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/zr9l4AadvMdre1VujB1wWInfJ-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.110.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:f3:28:33:ef:5a:33:17:d2:79:bb:bc:83:91:3e:61:83:50:
97:de:52:ec:a2:d6:7e:c2:f2:b3:f5:4f:46:eb:4a:1b:04:e6:
df:b1:ca:a0:50:76:99:49:5b:d3:26:6a:1f:bd:dd:65:d9:e8:
88:63:8d:bb:08:13:e2:b3:f0:40:4a:47:49:57:5a:f2:88:07:
72:b7:f8:54:00:3a:78:e7:65:21:8b:09:4b:3f:28:91:b4:53:
93:26:9c:7d:61:7f:25:90:19:23:e7:2e:61:e8:49:78:25:d2:
97:3b:0c:90:f6:5c:06:bf:5f:20:0a:7e:84:79:cc:7d:43:b6:
9e:7a:3a:86:c5:38:6f:68:03:6f:d4:48:ba:9a:9b:8f:9e:24:
76:96:86:93:ec:3a:28:a2:c6:c5:e4:8c:08:80:1a:57:b7:df:
14:a0:98:b6:1c:3e:19:d9:1f:f3:cb:cd:de:a2:43:b9:63:c4:
53:f7:f4:b6:f0:de:33:6c:bf:25:d6:29:bd:3d:36:b5:6c:a4:
28:f6:62:29:1c:52:7f:d2:bd:20:9a:70:02:42:ae:b4:c8:e6:
63:31:0b:b9:e8:d2:9b:13:a2:3b:27:21:87:dc:c3:12:23:db:
c3:a7:9f:18:7e:d6:59:8d:20:6d:a3:50:1e:a0:24:6e:e4:e0:
31:40:52:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHrKyT46jQTYP93A617NpNPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlYmY2NWUwMDY5ZGJjYzc2YjdiNTU2ZThjMWQ3MDU4ODlk
ZjI3ZTkwHhcNMjQwOTEzMTEzNTU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTI4ZTVkNDI0ZDljYzhkMmU4MDM1ZDVlZThiNWRkMjg0MzdiODllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfWHJa5xSyfFdDxWzgAMkfzyaFgK
r0JKCsVN5sTlH8cI971i16r1pWhdM6HDS8V8GCJH2dvS4Jx+UZXmsnEDc79jjhag
DDoiag0YpnRjT1TJRIP5+ipPYCR5wnVIb+WLfZFQyeKdZ+jTITYU35GJ2VuEqhEV
Lv7recK1g4kij/gExLcUvZNxnmh1rNaA75I1tBt9J6EVGKOy2BSjJTuly5cZwJFM
muujd5fY+PUhRNQlohcSOfwE+WPgZkyoW7LID5ZWfb87G8mal1CXLu+cihE7g9lN
bE7A2acemZGDrZ1BZDFPlcPZbH/LMGw2TvRfCGNgLfLkCImdBtX584hPxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNko5dQk2cyNLoA11e6LXdKEN7ieMB8GA1UdIwQY
MBaAFM6/ZeAGnbzHa3tVbowdcFiJ3yfpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenI5bDRBYWR2TWRyZTFWdWpCMXdXSW5mSi1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9lYWQ3OWEtZDhhMS00ZTg3LWJhY2Yt
MjNiYTRhOTFhMTA1LzEvMlNqbDFDVFp6STB1Z0RYVjdvdGQwb1EzdUo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS9lYWQ3OWEtZDhhMS00ZTg3LWJhY2YtMjNiYTRhOTFhMTA1
LzEvenI5bDRBYWR2TWRyZTFWdWpCMXdXSW5mSi1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXduMA0G
CSqGSIb3DQEBCwUAA4IBAQCr8ygz71ozF9J5u7yDkT5hg1CX3lLsotZ+wvKz9U9G
60obBObfscqgUHaZSVvTJmofvd1l2eiIY427CBPis/BASkdJV1ryiAdyt/hUADp4
52UhiwlLPyiRtFOTJpx9YX8lkBkj5y5h6El4JdKXOwyQ9lwGv18gCn6Eecx9Q7ae
ejqGxThvaANv1Ei6mpuPniR2loaT7DooosbF5IwIgBpXt98UoJi2HD4Z2R/zy83e
okO5Y8RT9/S28N4zbL8l1im9PTa1bKQo9mIpHFJ/0r0gmnACQq60yOZjMQu56NKb
E6I7JyGH3MMSI9vDp58YftZZjSBto1AeoCRu5OAxQFK0
-----END CERTIFICATE-----
Generated at Wed Apr 30 07:36:38 2025 by rpki-client