Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/qJLAHB3YdouFPdPD9lDEDS95pB4.roa
File: qJLAHB3YdouFPdPD9lDEDS95pB4.roa (raw, json)
Hash identifier: NSlnoisLwPwh+Rf9BgKozj8Opz1r4jIpkFiA14vq7Xo=
Subject key identifier: A8:92:C0:1C:1D:D8:76:8B:85:3D:D3:C3:F6:50:C4:0D:2F:79:A4:1E
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F92753069EF762795CAAB8818C0933B63
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/qJLAHB3YdouFPdPD9lDEDS95pB4.roa
Signing time: Sun 19 May 2024 20:05:04 +0000
ROA not before: Sun 19 May 2024 20:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:9274:8421/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 19 May 2024 20:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:92:75:30:69:ef:76:27:95:ca:ab:88:18:c0:93:3b:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 19 20:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a892c01c1dd8768b853dd3c3f650c40d2f79a41e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:19:01:51:0b:d3:f3:bc:95:29:88:7e:47:fa:
c7:80:d2:cb:d2:f4:31:af:06:e0:b2:e7:40:05:c0:
17:e8:e2:0f:74:50:cb:9d:26:3e:90:6d:fc:b5:40:
bd:0f:26:25:2d:34:18:7e:9d:94:e4:45:a8:0b:f0:
ae:65:bc:3c:a8:b6:74:b0:6e:3b:b5:c7:77:0a:1b:
2d:da:19:16:f6:72:a8:01:7f:d9:23:16:e1:77:db:
70:83:03:b7:6a:22:2e:e2:a4:e2:13:96:cb:84:27:
c1:57:64:46:85:ae:25:f7:e1:0d:11:99:35:04:b3:
f9:4d:14:cf:56:24:33:4e:67:93:b4:bf:5c:24:73:
c9:b1:98:39:1a:ab:b7:47:ee:ef:1d:e2:17:75:bc:
f3:a0:c6:13:bd:94:30:78:f5:25:89:95:4a:4c:4f:
15:42:69:e6:04:ff:6b:3c:d4:a0:75:38:17:6e:51:
8b:bb:7a:73:30:34:70:47:3e:33:73:9b:60:c7:ca:
2b:fd:76:a5:1f:05:37:da:20:e8:91:a3:20:0f:19:
24:b7:aa:6f:35:c2:f7:d8:96:74:36:79:66:bc:4b:
07:19:63:d2:12:71:27:3c:46:f0:61:d3:13:89:4b:
d6:d2:1a:f0:47:c2:75:ca:d5:0c:5d:f6:1f:48:17:
26:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:92:C0:1C:1D:D8:76:8B:85:3D:D3:C3:F6:50:C4:0D:2F:79:A4:1E
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/qJLAHB3YdouFPdPD9lDEDS95pB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6a:33:33:cb:4c:1e:b2:54:38:b9:2a:b5:42:3e:02:c7:31:2e:
d5:1b:1a:10:1f:95:08:02:12:4f:41:bc:f9:24:73:70:59:ee:
62:62:2e:8e:d7:90:97:0a:a1:83:db:b2:af:d8:dc:6c:89:cc:
09:a2:51:26:ee:76:34:27:56:90:c3:3d:e5:ad:18:3a:3b:d7:
2c:cd:31:ae:8a:e1:15:9b:20:71:cd:fc:5e:f9:d5:56:e8:a4:
37:04:8b:f3:33:7a:e9:52:98:23:f0:1c:fb:bd:73:bf:d3:6d:
78:32:62:76:bc:75:26:41:4d:33:5c:25:42:9c:04:61:8e:51:
29:8d:47:d0:78:cf:41:a1:48:94:07:e1:aa:6f:bd:03:23:e6:
e3:93:d1:36:c7:e1:a5:49:e2:0a:94:cc:8e:fc:20:97:bb:e1:
ac:04:23:24:03:71:b7:02:73:da:d6:0f:c0:09:f5:37:67:68:
af:de:99:9d:bc:ac:4a:c5:ab:7c:53:c6:74:d9:b5:b3:af:4a:
8e:71:0d:08:7a:0b:33:cf:d6:bd:0d:cd:09:21:c6:0e:07:e0:
aa:43:68:db:87:3f:d7:58:c1:e3:8a:ba:89:8a:ae:68:40:a6:
23:17:fd:5d:c1:cd:25:cd:4c:80:6f:f0:fc:04:2a:e2:9b:81:
ec:3c:53:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 01:20:48 2024 by rpki-client on console.sobornost.net