Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/2agBrWC93fS70h_VW3E1jmfWcWw.roa
File: 2agBrWC93fS70h_VW3E1jmfWcWw.roa (raw, json)
Hash identifier: Y9qITu4HHQ6YRibxrRrWZSp9uCY6SnOyJfkNGaTdQPI=
Subject key identifier: D9:A8:01:AD:60:BD:DD:F4:BB:D2:1F:D5:5B:71:35:8E:67:D6:71:6C
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E41D078B55E211A45F07CDB6D60D6F48F
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/2agBrWC93fS70h_VW3E1jmfWcWw.roa
Signing time: Fri 15 Mar 2024 11:12:45 +0000
ROA not before: Fri 15 Mar 2024 11:12:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 15 Mar 2024 12:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:41:d0:78:b5:5e:21:1a:45:f0:7c:db:6d:60:d6:f4:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 15 11:12:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d9a801ad60bdddf4bbd21fd55b71358e67d6716c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:68:5e:95:d2:d2:3f:fb:aa:70:22:e6:60:49:
61:ae:fa:67:d1:9b:0e:3c:a8:8b:d1:f9:62:2a:30:
3a:30:5e:b4:40:77:b5:7d:c4:9f:a7:45:7c:0e:42:
db:14:3b:d5:0d:11:0e:54:e5:ae:a6:e1:5e:40:ac:
19:12:21:78:f4:17:c8:75:e8:66:22:a0:b6:29:48:
e7:bd:cd:08:ea:8d:f0:d6:74:0e:d5:6e:e4:fd:91:
a9:c4:1c:1e:39:dc:85:bb:12:f8:63:8a:87:50:27:
67:1e:09:62:27:57:f6:68:0d:4c:9e:c6:b5:93:f2:
77:22:87:0b:03:02:0f:36:be:62:e5:73:f9:d0:97:
60:e1:69:95:fd:53:12:8b:4b:97:4d:0f:42:82:f1:
64:0b:93:43:3f:90:b8:ac:10:f9:d5:4a:77:9a:4a:
4e:fc:39:63:bd:70:24:22:1a:95:74:00:13:96:eb:
99:50:5b:dc:fa:46:b6:36:05:d0:f9:3b:8b:50:22:
74:db:b5:f2:a3:9c:64:d4:aa:1f:3c:48:1c:b8:51:
a8:42:05:21:40:d8:8a:1e:a6:96:b7:4f:1d:04:27:
97:ac:55:47:82:43:a4:72:ed:62:e0:1a:1c:05:34:
bb:0a:c3:41:66:dc:90:73:68:34:78:17:61:e2:45:
e4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:A8:01:AD:60:BD:DD:F4:BB:D2:1F:D5:5B:71:35:8E:67:D6:71:6C
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/2agBrWC93fS70h_VW3E1jmfWcWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
13:3f:c9:78:2f:9c:01:c9:c2:19:a6:5a:6a:1b:a8:0f:93:28:
4a:de:89:e1:d2:e0:21:60:b4:3b:16:88:91:60:53:f7:29:82:
12:73:06:34:65:5f:46:89:cc:2c:79:b4:0d:5a:1c:a3:3e:16:
56:44:2f:f6:65:65:73:6b:e8:ed:a3:6a:cd:cb:6b:14:42:a8:
22:18:d1:71:97:0b:6f:50:6c:88:80:7a:99:11:c8:63:df:90:
8b:7e:b7:e1:65:aa:9a:81:fc:ca:99:ec:f2:9e:5d:ed:d9:c9:
55:88:f6:a1:96:dc:4f:a9:90:33:e2:19:16:e2:e6:be:ef:2c:
36:42:10:51:78:94:49:bd:c8:eb:12:3c:7a:6d:2f:a4:09:b9:
9e:fe:c3:88:8e:ee:14:9e:cf:6e:55:38:b4:ef:c5:0a:8d:09:
8c:8f:1a:bf:73:98:44:28:59:ed:54:7b:06:bc:e7:05:da:55:
9a:ab:8a:aa:af:9e:e5:4b:54:ce:4f:57:65:a0:ec:af:e4:bc:
d7:81:e9:cd:89:6a:2f:c3:ad:24:31:56:07:23:91:3e:34:f9:
e2:1c:ef:59:26:0a:94:36:a4:76:3c:98:69:a9:f2:30:1c:e8:
15:8a:1e:21:b4:52:11:fb:d0:e3:3f:9e:7e:34:96:f7:36:fe:
8f:8f:50:5a
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY5B0Hi1XiEaRfB8221g1vSPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMzE1MTExMjQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOWE4MDFhZDYwYmRkZGY0YmJkMjFmZDU1YjcxMzU4ZTY3ZDY3MTZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3mheldLSP/uqcCLmYElhrvpn0ZsO
PKiL0fliKjA6MF60QHe1fcSfp0V8DkLbFDvVDREOVOWupuFeQKwZEiF49BfIdehm
IqC2KUjnvc0I6o3w1nQO1W7k/ZGpxBweOdyFuxL4Y4qHUCdnHgliJ1f2aA1Mnsa1
k/J3IocLAwIPNr5i5XP50Jdg4WmV/VMSi0uXTQ9CgvFkC5NDP5C4rBD51Up3mkpO
/DljvXAkIhqVdAATluuZUFvc+ka2NgXQ+TuLUCJ027Xyo5xk1KofPEgcuFGoQgUh
QNiKHqaWt08dBCeXrFVHgkOkcu1i4BocBTS7CsNBZtyQc2g0eBdh4kXkjQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFNmoAa1gvd30u9If1VtxNY5n1nFsMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvMmFnQnJXQzkzZlM3MGhfVlczRTFqbWZXY1d3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBABM/yXgvnAHJwhmmWmob
qA+TKEreieHS4CFgtDsWiJFgU/cpghJzBjRlX0aJzCx5tA1aHKM+FlZEL/ZlZXNr
6O2jas3LaxRCqCIY0XGXC29QbIiAepkRyGPfkIt+t+FlqpqB/MqZ7PKeXe3ZyVWI
9qGW3E+pkDPiGRbi5r7vLDZCEFF4lEm9yOsSPHptL6QJuZ7+w4iO7hSez25VOLTv
xQqNCYyPGr9zmEQoWe1Uewa85wXaVZqriqqvnuVLVM5PV2Wg7K/kvNeB6c2Jai/D
rSQxVgcjkT40+eIc71kmCpQ2pHY8mGmp8jAc6BWKHiG0UhH70OM/nn40lvc2/o+P
UFo=
-----END CERTIFICATE-----
Generated at Fri Mar 15 18:48:26 2024 by rpki-client on console.sobornost.net