Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/44_K-JrtLdvePXcOI1I0LzoCJRw.roa
File: 44_K-JrtLdvePXcOI1I0LzoCJRw.roa (raw, json)
Hash identifier: 3p5f9yiFZygr+p3SwT/6fNv6KFFhLKtD1Ekw5PQxibU=
Subject key identifier: E3:8F:CA:F8:9A:ED:2D:DB:DE:3D:77:0E:23:52:34:2F:3A:02:25:1C
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E60B5B5BC1011832CB3FA88E57A766CCD
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/44_K-JrtLdvePXcOI1I0LzoCJRw.roa
Signing time: Thu 21 Mar 2024 11:11:45 +0000
ROA not before: Thu 21 Mar 2024 11:11:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, certificate revoked on Thu 21 Mar 2024 12:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:60:b5:b5:bc:10:11:83:2c:b3:fa:88:e5:7a:76:6c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 21 11:11:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e38fcaf89aed2ddbde3d770e2352342f3a02251c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:da:a2:ad:e9:1c:c4:aa:97:d8:08:f3:24:ac:
3c:e1:e0:55:07:a7:33:d1:ce:ad:2f:aa:3c:12:21:
28:72:64:75:28:8a:68:4c:b5:9c:36:b9:1c:ca:bc:
15:6b:a4:78:78:a6:61:e8:34:cd:01:b9:a1:7c:4b:
1a:7e:8f:db:e4:7b:56:54:92:56:38:20:31:2e:3a:
cd:99:b0:96:98:ec:91:1e:e4:4b:e5:a7:09:c7:75:
e2:9b:7c:b8:ff:76:9a:4a:f3:70:24:85:f3:f6:8f:
02:aa:49:f7:e5:af:2c:57:e3:8d:7f:54:1a:91:2e:
b5:44:4c:f6:75:32:7b:15:2a:9b:31:ba:57:ef:9a:
b8:35:64:df:aa:e2:05:21:cb:02:fe:2c:43:04:de:
4a:d7:ff:e0:08:7d:c4:56:e1:e8:ed:24:aa:29:9f:
17:7f:68:25:57:94:f9:65:e6:44:81:2c:12:de:37:
1f:62:ca:91:10:11:6f:95:f0:ba:7c:c8:d2:7b:7e:
e5:b3:78:20:93:1c:9d:67:c2:a0:ab:0a:b1:3f:51:
1f:0a:5c:6d:0e:b0:1e:a8:59:37:1b:9b:fd:db:4d:
e4:81:de:45:b1:bd:8b:1f:c8:57:a8:6d:d2:ae:86:
f9:59:6e:53:79:4f:4f:46:c8:e2:7e:3d:58:98:12:
ea:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8F:CA:F8:9A:ED:2D:DB:DE:3D:77:0E:23:52:34:2F:3A:02:25:1C
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/44_K-JrtLdvePXcOI1I0LzoCJRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
11:d5:b0:3a:e3:4b:95:bd:30:42:bd:c5:52:c0:e0:2a:b6:af:
c8:22:04:22:c8:65:fc:a8:7a:19:4d:ee:9a:c6:00:7a:13:72:
cb:f4:9f:5a:dc:53:27:61:9f:ba:0c:bd:df:06:e7:d8:d9:3a:
7d:ad:75:8a:e1:3e:fa:bb:12:1d:ba:00:d4:f8:0c:f4:33:4d:
64:d9:f8:10:f1:60:a9:39:77:45:87:38:fa:b0:2b:21:b5:6a:
c3:19:3b:b1:e1:db:dc:7b:25:00:62:6a:48:65:a9:75:2d:e3:
5c:b1:a7:43:54:68:8c:96:cc:a6:3c:36:f0:9e:54:16:70:42:
57:15:14:b6:eb:25:6f:0d:4c:ea:95:8a:dc:3b:14:18:41:4b:
fd:c4:c0:4c:56:ab:ff:e0:84:29:d7:61:90:e1:9d:da:65:3d:
b8:a9:57:49:cc:08:a7:4f:65:04:87:b6:44:e6:5d:4e:58:0d:
63:07:41:a9:f7:6b:50:26:59:c8:9f:52:9a:e3:5e:11:14:f4:
63:d6:b9:44:93:e3:65:79:14:20:d2:95:53:8c:7a:21:cd:e7:
14:35:14:d1:58:89:59:e4:3a:44:69:ff:0b:be:49:17:7d:89:
16:99:c5:66:9c:58:52:1f:d1:bf:28:6c:76:3e:b6:af:06:d1:
27:f0:61:57
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY5gtbW8EBGDLLP6iOV6dmzNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMzIxMTExMTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzhmY2FmODlhZWQyZGRiZGUzZDc3MGUyMzUyMzQyZjNhMDIyNTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNqirekcxKqX2AjzJKw84eBVB6cz
0c6tL6o8EiEocmR1KIpoTLWcNrkcyrwVa6R4eKZh6DTNAbmhfEsafo/b5HtWVJJW
OCAxLjrNmbCWmOyRHuRL5acJx3Xim3y4/3aaSvNwJIXz9o8Cqkn35a8sV+ONf1Qa
kS61REz2dTJ7FSqbMbpX75q4NWTfquIFIcsC/ixDBN5K1//gCH3EVuHo7SSqKZ8X
f2glV5T5ZeZEgSwS3jcfYsqREBFvlfC6fMjSe37ls3ggkxydZ8KgqwqxP1EfClxt
DrAeqFk3G5v9203kgd5Fsb2LH8hXqG3Srob5WW5TeU9PRsjifj1YmBLqMwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFOOPyvia7S3b3j13DiNSNC86AiUcMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvNDRfSy1KcnRMZHZlUFhjT0kxSTBMem9DSlJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBABHVsDrjS5W9MEK9xVLA
4Cq2r8giBCLIZfyoehlN7prGAHoTcsv0n1rcUydhn7oMvd8G59jZOn2tdYrhPvq7
Eh26ANT4DPQzTWTZ+BDxYKk5d0WHOPqwKyG1asMZO7Hh29x7JQBiakhlqXUt41yx
p0NUaIyWzKY8NvCeVBZwQlcVFLbrJW8NTOqVitw7FBhBS/3EwExWq//ghCnXYZDh
ndplPbipV0nMCKdPZQSHtkTmXU5YDWMHQan3a1AmWcifUprjXhEU9GPWuUST42V5
FCDSlVOMeiHN5xQ1FNFYiVnkOkRp/wu+SRd9iRaZxWacWFIf0b8obHY+tq8G0Sfw
YVc=
-----END CERTIFICATE-----
Generated at Thu Mar 21 18:46:39 2024 by rpki-client on console.sobornost.net