Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ueD3cGQ0tAiSZycYiLx1LfWwCKc.roa
File: ueD3cGQ0tAiSZycYiLx1LfWwCKc.roa (raw, json)
Hash identifier: mf1OVmmsBXZVLslo3Bajkq7bnjDHy7Ork2IUBIK4pc8=
Subject key identifier: B9:E0:F7:70:64:34:B4:08:92:67:27:18:88:BC:75:2D:F5:B0:08:A7
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F6EDAFE14DF1C68B572AC38AED2909C00
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ueD3cGQ0tAiSZycYiLx1LfWwCKc.roa
Signing time: Sun 12 May 2024 22:09:56 +0000
ROA not before: Sun 12 May 2024 22:09:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 12 May 2024 23:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:6e:da:fe:14:df:1c:68:b5:72:ac:38:ae:d2:90:9c:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 12 22:09:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9e0f7706434b4089267271888bc752df5b008a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:55:38:c5:df:5b:57:59:e4:fe:fd:c9:05:79:
4c:79:15:cc:ca:31:cc:e2:08:4a:89:eb:66:f6:29:
ad:ac:98:11:d4:1a:3a:bf:b0:77:52:dc:3c:e4:e8:
5f:32:a2:49:b2:f1:d3:48:b4:1a:53:18:d3:53:3d:
f4:f1:1d:d8:cb:26:ef:87:60:27:3f:53:2d:c8:20:
67:65:ed:75:70:74:23:d6:9b:9c:75:17:31:7a:21:
a2:1b:16:01:0e:f1:71:6a:69:f9:02:8f:aa:b9:7a:
07:a0:16:61:0d:4c:85:bd:9a:17:99:5c:27:5c:31:
77:3e:73:f6:fd:99:bb:71:c4:e0:bb:b0:31:de:7c:
ac:3d:b3:4c:27:49:47:15:3e:07:06:55:94:c9:45:
0f:9b:41:42:97:f3:a5:49:32:1b:7a:fb:81:36:e1:
10:4c:30:da:16:ea:a7:bb:03:9e:df:72:fd:39:ae:
d6:47:eb:bd:29:35:f5:d1:de:ae:3f:b1:20:99:77:
b7:f1:7c:11:c8:f2:5b:d3:5e:38:6a:f2:4e:e8:5a:
f2:b2:5d:30:8a:ff:6d:7e:15:d1:78:f6:96:36:0a:
ac:f3:c6:54:0c:94:c5:2e:f4:7e:60:02:03:43:8d:
01:6b:c5:aa:b7:9e:fc:78:2c:ef:3b:7f:5e:6e:61:
ba:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E0:F7:70:64:34:B4:08:92:67:27:18:88:BC:75:2D:F5:B0:08:A7
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ueD3cGQ0tAiSZycYiLx1LfWwCKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6e:25:45:cb:6b:03:fe:39:53:bc:7a:ac:ea:90:83:bd:6d:82:
ca:d5:a1:71:2e:28:6a:23:d3:23:7e:e8:77:60:e8:10:04:13:
21:ef:37:ee:d1:b4:21:6f:2d:db:17:1a:ce:a0:7b:01:03:85:
31:f3:9a:f7:1d:8a:60:2e:d4:56:68:11:bc:be:74:56:25:9e:
42:a9:d9:52:1a:38:d0:11:81:e7:f2:f0:f2:c6:b7:95:1a:df:
8f:5c:68:2b:a1:b0:7c:4d:82:e3:55:5e:ee:19:aa:29:32:0b:
84:70:91:a8:44:fd:9d:5d:ac:2c:9f:c4:c0:91:a8:f1:64:d5:
d0:56:05:ea:d8:16:75:17:d3:42:8e:2b:95:7a:14:2d:be:ce:
d7:13:d2:12:f5:f7:cd:f9:48:4d:e4:22:27:57:8f:b3:b3:56:
fc:30:28:62:5f:0a:c0:63:44:75:dd:44:25:3f:0e:04:f5:3b:
96:4a:bd:da:28:cf:38:60:d8:84:07:66:33:9c:44:0f:46:91:
b9:68:1e:b6:ac:db:d2:0a:56:79:83:34:60:8a:10:6d:b1:25:
4f:c1:08:47:6e:f6:0f:57:6d:7b:b1:73:b7:5d:8e:03:c7:82:
37:dd:22:9d:9e:7f:80:9a:11:85:02:2e:cf:ae:6d:22:84:36:
e0:a7:49:fe
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY9u2v4U3xxotXKsOK7SkJwAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNTEyMjIwOTU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOWUwZjc3MDY0MzRiNDA4OTI2NzI3MTg4OGJjNzUyZGY1YjAwOGE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFU4xd9bV1nk/v3JBXlMeRXMyjHM
4ghKietm9imtrJgR1Bo6v7B3Utw85OhfMqJJsvHTSLQaUxjTUz308R3Yyybvh2An
P1MtyCBnZe11cHQj1pucdRcxeiGiGxYBDvFxamn5Ao+quXoHoBZhDUyFvZoXmVwn
XDF3PnP2/Zm7ccTgu7Ax3nysPbNMJ0lHFT4HBlWUyUUPm0FCl/OlSTIbevuBNuEQ
TDDaFuqnuwOe33L9Oa7WR+u9KTX10d6uP7EgmXe38XwRyPJb0144avJO6Frysl0w
iv9tfhXRePaWNgqs88ZUDJTFLvR+YAIDQ40Ba8Wqt578eCzvO39ebmG65wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLng93BkNLQIkmcnGIi8dS31sAinMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvdWVEM2NHUTB0QWlTWnljWWlMeDFMZld3Q0tjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAG4lRctrA/45U7x6rOqQ
g71tgsrVoXEuKGoj0yN+6Hdg6BAEEyHvN+7RtCFvLdsXGs6gewEDhTHzmvcdimAu
1FZoEby+dFYlnkKp2VIaONARgefy8PLGt5Ua349caCuhsHxNguNVXu4ZqikyC4Rw
kahE/Z1drCyfxMCRqPFk1dBWBerYFnUX00KOK5V6FC2+ztcT0hL19835SE3kIidX
j7OzVvwwKGJfCsBjRHXdRCU/DgT1O5ZKvdoozzhg2IQHZjOcRA9GkbloHras29IK
VnmDNGCKEG2xJU/BCEdu9g9XbXuxc7ddjgPHgjfdIp2ef4CaEYUCLs+ubSKENuCn
Sf4=
-----END CERTIFICATE-----
Generated at Mon May 13 02:36:55 2024 by rpki-client on console.sobornost.net