Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7GdBU6i6b2u56V5XAo6BFU_Zhis.roa
File: 7GdBU6i6b2u56V5XAo6BFU_Zhis.roa (raw, json)
Hash identifier: hHebkZQCYzBh7jC1zBQ5ydL41P1m5JzCscKGh4aDUPg=
Subject key identifier: EC:67:41:53:A8:BA:6F:6B:B9:E9:5E:57:02:8E:81:15:4F:D9:86:2B
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F11518FD1C57AB2B75CD9BF98FB9D627D
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7GdBU6i6b2u56V5XAo6BFU_Zhis.roa
Signing time: Wed 24 Apr 2024 18:15:08 +0000
ROA not before: Wed 24 Apr 2024 18:15:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 24 Apr 2024 19:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:11:51:8f:d1:c5:7a:b2:b7:5c:d9:bf:98:fb:9d:62:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 24 18:15:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec674153a8ba6f6bb9e95e57028e81154fd9862b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7d:fa:69:92:62:e3:26:e1:6d:c1:25:fb:a1:
01:65:28:63:f9:41:bf:59:7d:22:7c:4b:63:a5:65:
10:84:22:57:b7:50:1e:8c:9e:6c:39:38:0a:95:63:
31:0e:77:89:a1:81:93:56:ff:27:dc:07:e4:45:80:
4c:d6:89:37:30:94:0d:99:cf:72:3f:9b:3e:37:94:
0a:30:52:cf:47:25:cf:8e:f1:6a:d5:78:84:fb:e8:
a4:bd:26:b7:33:86:44:f2:78:05:42:31:d5:14:34:
fb:dd:62:7f:19:e6:a3:88:f7:77:8e:f8:23:d2:f7:
5f:d1:3e:eb:96:c9:89:1b:a4:25:8f:81:d2:2a:4d:
b2:d0:e7:3f:84:95:ae:e2:73:a5:20:c6:cd:fb:18:
b4:77:06:b2:7f:1a:06:e2:bc:77:cc:77:88:5b:10:
31:a7:5e:a6:29:de:a6:99:1b:b3:aa:1b:32:35:9e:
1b:2c:64:5c:c6:42:c9:62:47:8d:42:3c:7e:f3:71:
93:4a:5f:72:36:e0:fc:66:10:93:bf:61:5b:12:76:
44:a9:c6:9d:a9:ae:a1:55:15:a6:46:9b:6b:47:4e:
22:60:55:ea:67:f1:9a:55:ec:59:62:35:de:08:2b:
01:ae:94:2a:a8:a7:fb:20:b8:2c:64:9e:7a:4f:26:
3c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:67:41:53:A8:BA:6F:6B:B9:E9:5E:57:02:8E:81:15:4F:D9:86:2B
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7GdBU6i6b2u56V5XAo6BFU_Zhis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
25:59:94:c1:91:a4:e3:e2:13:f4:dc:b6:b9:09:3a:fd:64:0f:
f6:d4:a9:6a:15:ba:0d:44:47:56:59:8e:ff:3c:12:88:4c:37:
29:f0:17:82:78:69:12:20:e5:c8:14:2f:dc:6b:59:5c:42:9c:
fb:c6:dd:5b:84:9d:7c:3d:83:41:0c:65:81:7f:86:af:9a:4a:
e8:e7:4f:20:98:54:c6:f8:93:31:a9:fd:5b:67:26:6a:9d:1e:
b8:19:83:f0:63:50:f6:97:c6:e3:95:36:f6:b2:38:c7:7f:f9:
d0:70:04:ea:21:8e:d5:c2:0d:37:ad:05:14:c3:56:a7:bc:ae:
82:c7:1f:88:bb:06:e5:af:dd:76:15:a0:a0:47:ca:5a:02:d9:
ca:0b:4e:d0:ce:d7:81:11:9c:d2:e9:31:30:38:50:23:c8:d7:
fb:3a:b1:92:ca:26:59:7a:01:4d:5c:7c:fa:ec:08:c1:20:69:
0a:ab:53:10:d7:18:0d:5f:9d:a1:a7:88:d5:24:10:54:ea:a7:
f9:dd:da:ba:c9:14:84:27:0a:61:57:b7:02:12:58:81:6c:d2:
07:9e:45:e4:c7:06:24:9c:25:c4:6e:b3:d5:43:de:79:ab:95:
5c:69:79:20:d9:39:6a:3a:17:e0:a4:e6:71:23:b5:63:b2:0e:
a8:37:96:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 02:29:23 2024 by rpki-client on console.sobornost.net