Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/29qWruT8mWN8bo-TORV2sgItZuQ.roa
File: 29qWruT8mWN8bo-TORV2sgItZuQ.roa (raw, json)
Hash identifier: BA2PEwLWrIAzB0ofGtNt3PnevrHofb23iwdp6Ng9Zxg=
Subject key identifier: DB:DA:96:AE:E4:FC:99:63:7C:6E:8F:93:39:15:76:B2:02:2D:66:E4
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E2926767CCB3778ADCCFE6D6D33B38997
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/29qWruT8mWN8bo-TORV2sgItZuQ.roa
Signing time: Sun 10 Mar 2024 16:16:10 +0000
ROA not before: Sun 10 Mar 2024 16:16:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 10 Mar 2024 17:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:29:26:76:7c:cb:37:78:ad:cc:fe:6d:6d:33:b3:89:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 10 16:16:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dbda96aee4fc99637c6e8f93391576b2022d66e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:eb:8b:8e:af:c2:ba:bb:a2:ff:00:3d:2c:3b:
8a:be:f2:33:1c:4e:f9:62:b1:48:cb:b2:dd:56:18:
48:56:fe:b5:52:91:4b:f1:c0:79:7f:f8:e5:cd:f0:
06:c8:3c:5e:93:f0:ce:cb:c3:26:1d:09:ac:75:a8:
1f:e8:48:0e:35:a6:f7:04:fd:e3:5e:fe:fe:dd:cc:
22:4c:02:a0:73:0c:7e:8a:52:5e:5e:95:89:c5:9d:
69:82:7c:59:7c:a5:ee:e2:c6:f9:4c:aa:87:64:15:
37:66:10:de:c6:60:50:56:0c:81:d4:32:ff:91:0a:
96:e4:04:e8:3d:ab:ef:33:2a:c4:ee:1f:c5:8c:e6:
91:9e:59:4b:ac:5a:67:6b:ab:b5:16:a0:90:70:05:
72:e1:87:c6:5b:cd:7f:8f:3b:10:db:aa:94:b2:3d:
bf:70:f7:81:5e:6c:80:c2:5c:5f:51:8a:74:71:70:
3d:c4:79:a1:2c:b5:e2:24:ce:07:e5:7b:9d:9f:cb:
1c:e2:97:29:3b:5c:95:a1:bd:82:38:71:b1:0a:78:
ee:dc:05:e7:67:7f:a0:e4:f3:5d:b9:c2:4a:70:26:
70:21:e1:1d:91:e3:2f:81:01:ed:3b:e7:2c:45:b3:
5b:af:2e:42:66:31:16:97:ec:67:bc:60:5d:7d:4b:
26:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:DA:96:AE:E4:FC:99:63:7C:6E:8F:93:39:15:76:B2:02:2D:66:E4
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/29qWruT8mWN8bo-TORV2sgItZuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
37:af:3d:dc:09:ed:7f:91:c6:77:8b:b4:a8:6d:c4:88:68:78:
74:9a:b2:9f:09:ac:f0:0d:23:d9:14:2f:dc:43:83:fd:37:90:
75:18:47:d7:b7:ba:30:58:66:30:d1:7c:95:23:95:18:b7:72:
06:08:e9:cd:05:0c:fc:b3:79:d3:eb:56:98:ca:7c:4e:10:16:
e4:b9:46:59:a3:2c:77:75:a8:57:12:34:2b:d7:98:61:3d:e7:
b2:4a:7e:74:19:5e:a1:46:da:d5:6b:27:5b:05:32:8b:f1:1f:
ad:23:26:92:45:99:20:55:e6:a0:38:80:56:de:32:67:99:57:
d1:df:f4:e8:ed:d5:7d:ca:d2:bb:52:f4:6c:e2:fd:66:b4:b3:
35:7e:7f:be:51:f8:06:a8:84:9e:51:b0:51:da:eb:a9:f6:cb:
84:4e:b5:f8:90:81:4a:b2:fe:06:3d:ff:4e:fb:09:6e:dc:bc:
85:2c:bd:4e:6c:7b:4e:c8:14:60:3e:9b:98:13:3c:ea:a4:9c:
dd:f6:57:3b:48:69:e8:12:bc:b8:1d:10:3b:81:09:28:f3:8c:
e4:f8:c0:13:5e:f3:44:1c:73:b3:af:8f:da:89:c9:3d:1e:3c:
8a:ae:dc:6a:de:63:87:e7:83:4e:cd:3b:6b:74:6c:b5:31:d4:
9c:d1:4a:e1
-----BEGIN CERTIFICATE-----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Generated at Sun Mar 10 20:56:21 2024 by rpki-client on console.sobornost.net