Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7TqnW48JvgoasWTM0DSe4lr34-4.roa
File: 7TqnW48JvgoasWTM0DSe4lr34-4.roa (raw, json)
Hash identifier: 53VOwSfsryT/KDbqNunlezvDFplu3foGQjaqZ/B748c=
Subject key identifier: ED:3A:A7:5B:8F:09:BE:0A:1A:B1:64:CC:D0:34:9E:E2:5A:F7:E3:EE
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F0F993045ECDA9FD20F193F5E6F1EA7C6
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7TqnW48JvgoasWTM0DSe4lr34-4.roa
Signing time: Wed 24 Apr 2024 10:14:08 +0000
ROA not before: Wed 24 Apr 2024 10:14:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 24 Apr 2024 11:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0f:99:30:45:ec:da:9f:d2:0f:19:3f:5e:6f:1e:a7:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 24 10:14:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed3aa75b8f09be0a1ab164ccd0349ee25af7e3ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f9:63:f0:1e:99:2f:86:c6:79:b4:7b:7c:fb:
cd:c6:81:bc:32:a2:52:fa:17:51:95:58:8d:52:33:
ee:d8:c5:3a:78:bd:40:05:0f:39:d3:64:fb:d0:35:
07:a7:cd:8e:39:02:f5:c9:8f:b3:3e:b8:23:35:09:
4d:94:79:fa:4c:70:db:cd:eb:85:56:b5:4a:fd:20:
ba:b4:cf:0f:53:48:2d:eb:18:df:66:bc:19:53:9b:
69:26:10:f8:4b:c3:c2:e6:fc:27:dc:b4:e5:10:b0:
61:66:cc:77:bc:fd:0d:f3:a0:0e:b8:19:06:49:7f:
a1:d3:1f:2a:97:26:c9:6d:9d:80:f8:ac:03:e3:f8:
e0:04:71:a7:3f:ee:80:f4:f9:df:80:b4:35:92:6c:
ad:04:54:1f:52:a1:4a:98:89:2e:28:ef:94:74:6e:
c3:19:eb:ab:5b:fe:70:e7:d4:09:a3:77:5a:60:73:
d5:e6:79:a0:26:3d:a2:7b:7e:6a:26:bb:b0:78:a3:
1f:5c:5d:61:15:ab:3b:9c:bf:48:0b:7e:94:5a:27:
4a:38:df:95:64:d3:bf:22:f0:e9:d5:be:d4:f3:fc:
cd:06:2d:be:f9:bd:5b:b1:eb:bb:8a:12:5a:c5:24:
0c:b2:94:7e:fb:72:66:94:bc:e4:c8:b9:ae:7c:28:
93:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3A:A7:5B:8F:09:BE:0A:1A:B1:64:CC:D0:34:9E:E2:5A:F7:E3:EE
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7TqnW48JvgoasWTM0DSe4lr34-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
7e:90:d3:91:12:84:00:73:4d:60:ca:16:fb:12:a0:72:9f:34:
19:c3:ca:08:1a:cb:64:73:68:23:b1:d3:55:c9:e4:cc:18:8d:
31:39:6a:72:fb:b5:f0:30:2b:78:96:95:f7:2b:ad:13:0e:2b:
1e:52:fa:27:56:60:07:8b:8f:f8:01:08:6f:c7:83:76:95:39:
7f:48:e6:b0:ff:72:3e:0a:ea:44:ba:01:f9:fb:f1:62:5f:b5:
53:77:64:51:ad:74:38:a3:4b:36:37:ca:c9:0e:3f:4b:f4:6e:
ce:62:71:ea:56:03:d9:ee:0b:91:04:4a:16:5e:d1:df:f7:73:
42:1c:a5:3b:3a:ce:11:a6:e6:64:05:e7:39:c7:32:84:75:40:
eb:12:32:59:2d:ea:b1:f6:d8:e3:b3:f3:d6:07:40:5f:12:dc:
1a:90:25:5e:2f:40:b5:24:ee:79:72:3b:40:d1:59:cb:f1:9f:
0a:37:0c:f0:83:15:af:69:37:8b:43:db:f8:92:69:ac:3d:b8:
67:41:ab:71:9d:c9:20:0d:d8:0a:3a:10:05:96:3b:52:79:6e:
20:51:71:67:1b:5e:de:73:fc:09:d6:4e:1e:46:ff:a4:d3:f5:
c5:1b:5e:10:41:a0:6d:5d:34:90:b5:b1:15:fc:83:ff:ed:5b:
ed:88:e4:7c
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAY8PmTBF7Nqf0g8ZP15vHqfGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNDI0MTAxNDA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDNhYTc1YjhmMDliZTBhMWFiMTY0Y2NkMDM0OWVlMjVhZjdlM2VlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0flj8B6ZL4bGebR7fPvNxoG8MqJS
+hdRlViNUjPu2MU6eL1ABQ8502T70DUHp82OOQL1yY+zPrgjNQlNlHn6THDbzeuF
VrVK/SC6tM8PU0gt6xjfZrwZU5tpJhD4S8PC5vwn3LTlELBhZsx3vP0N86AOuBkG
SX+h0x8qlybJbZ2A+KwD4/jgBHGnP+6A9PnfgLQ1kmytBFQfUqFKmIkuKO+UdG7D
GeurW/5w59QJo3daYHPV5nmgJj2ie35qJruweKMfXF1hFas7nL9IC36UWidKON+V
ZNO/IvDp1b7U8/zNBi2++b1bseu7ihJaxSQMspR++3JmlLzkyLmufCiT0wIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFO06p1uPCb4KGrFkzNA0nuJa9+PuMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvN1Rxblc0OEp2Z29hc1dUTTBEU2U0bHIzNC00LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAMBAIAATAGAwQDwQAYMBkE
AgACMBMDEQAgAQZ8AGT//wAAAY8FQ55BMA0GCSqGSIb3DQEBCwUAA4IBAQB+kNOR
EoQAc01gyhb7EqBynzQZw8oIGstkc2gjsdNVyeTMGI0xOWpy+7XwMCt4lpX3K60T
DiseUvonVmAHi4/4AQhvx4N2lTl/SOaw/3I+CupEugH5+/FiX7VTd2RRrXQ4o0s2
N8rJDj9L9G7OYnHqVgPZ7guRBEoWXtHf93NCHKU7Os4RpuZkBec5xzKEdUDrEjJZ
Leqx9tjjs/PWB0BfEtwakCVeL0C1JO55cjtA0VnL8Z8KNwzwgxWvaTeLQ9v4kmms
PbhnQatxnckgDdgKOhAFljtSeW4gUXFnG17ec/wJ1k4eRv+k0/XFG14QQaBtXTSQ
tbEV/IP/7VvtiOR8
-----END CERTIFICATE-----
Generated at Wed Apr 24 17:55:41 2024 by rpki-client on console.sobornost.net