Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1_e5mSGoIcQT-KbejU6KfIAUmxs.roa
File: 1_e5mSGoIcQT-KbejU6KfIAUmxs.roa (raw, json)
Hash identifier: BraG2j7/s/kkt7/Toul2Epk02fYIj0OMvKZxNc4Oau8=
Subject key identifier: D7:F7:B9:99:21:A8:21:C4:13:F8:A6:DE:8D:4E:8A:7C:80:14:9B:1B
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CDFC34F50C4B2DD40624786B0D8C77BBB
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1_e5mSGoIcQT-KbejU6KfIAUmxs.roa
Signing time: Sat 06 Jan 2024 17:12:48 +0000
ROA not before: Sat 06 Jan 2024 17:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 06 Jan 2024 18:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:df:c3:4f:50:c4:b2:dd:40:62:47:86:b0:d8:c7:7b:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 6 17:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7f7b99921a821c413f8a6de8d4e8a7c80149b1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:bc:8a:99:70:b7:90:c9:48:c5:fe:7d:64:ff:
cd:6e:de:78:c4:a9:5e:44:f9:60:da:50:ba:e5:b0:
9f:1b:93:4a:79:8b:9a:a1:77:16:b3:d4:e8:7e:22:
04:84:bf:a6:f2:cf:9d:91:a9:2d:97:17:39:3a:05:
9b:90:aa:11:7f:05:5d:63:30:cb:1e:1f:e0:d5:a0:
f8:65:28:fb:76:b8:6e:20:bd:c3:53:47:7e:51:e0:
64:23:ba:26:f1:d2:ff:c8:cc:6e:9a:1c:5c:d7:4b:
7a:af:15:bd:e0:91:3b:56:f4:0d:81:8b:3f:89:fa:
c9:9d:7d:d4:58:10:15:ea:b3:5a:cb:41:2d:25:2e:
3e:a1:eb:a4:28:c3:b9:6c:49:76:e8:43:c1:ac:6b:
38:fd:46:e2:ad:a6:94:f0:61:f3:77:e9:ee:74:24:
be:b2:99:c8:43:56:14:43:ae:aa:38:0b:25:03:5e:
e5:75:dd:7d:e3:23:1d:58:ab:ad:0a:85:72:17:25:
7b:bc:94:1f:1d:aa:56:c9:f6:cf:b8:07:8c:da:03:
c8:de:88:35:c4:f5:2a:20:00:f7:a9:7e:df:fe:2d:
10:37:9a:bd:6c:0e:c3:bc:86:00:af:63:e5:3c:a8:
91:5f:ca:39:a4:2a:44:7d:97:d7:ab:01:a4:7b:23:
68:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F7:B9:99:21:A8:21:C4:13:F8:A6:DE:8D:4E:8A:7C:80:14:9B:1B
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1_e5mSGoIcQT-KbejU6KfIAUmxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
11:9b:f5:00:f6:19:2d:8e:74:14:03:da:94:5e:77:90:91:22:
8c:98:6d:1e:49:d2:ff:4b:3d:8a:ca:9e:8f:af:0c:d7:72:fa:
90:66:e9:0b:96:f9:90:ba:9d:b5:b1:e9:32:64:8e:0b:56:b8:
37:16:12:82:be:b5:86:36:99:fa:ce:12:d6:3d:15:6c:c5:3c:
a9:3d:39:bc:ba:e4:27:94:3b:df:57:30:2b:f9:1e:28:37:82:
02:20:53:62:ac:f4:44:a8:28:14:1f:12:f9:93:c8:53:af:12:
3b:cd:77:26:73:61:01:ef:13:12:c4:21:59:d1:79:aa:71:c1:
f5:fd:4b:15:c9:a5:4f:29:92:a1:5c:5a:84:8c:94:58:f6:01:
b7:4a:33:03:95:06:f1:8c:e9:e4:2a:98:d8:13:eb:71:6e:ce:
1f:11:06:e1:d8:c3:ab:b5:b4:f7:97:35:b1:fa:c7:ce:8a:f7:
16:48:1a:97:e4:83:bd:21:79:ab:01:74:f9:c7:5c:06:45:b3:
b2:e7:8e:ca:3c:9d:73:5c:7a:cd:2f:d7:93:c1:d1:f0:3d:66:
9b:4d:da:e6:d5:f4:3f:af:c9:ca:a2:47:8f:ab:11:43:64:95:
45:15:dc:92:5b:70:43:f1:91:f6:40:f6:af:7b:f4:b2:a7:12:
6d:46:c8:4d
-----BEGIN CERTIFICATE-----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Generated at Sat Jan 6 21:34:20 2024 by rpki-client on console.sobornost.net