Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/6Gm62elkm1uyQpvjL3PHG1nMGQg.roa
File: 6Gm62elkm1uyQpvjL3PHG1nMGQg.roa (raw, json)
Hash identifier: 4eDfPBwjNDH1S3s/8g0vij5+cnpMOSnUOrl0EkSXi6E=
Subject key identifier: E8:69:BA:D9:E9:64:9B:5B:B2:42:9B:E3:2F:73:C7:1B:59:CC:19:08
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CB1334C27AC5AFFFE7794B70C510391A1
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/6Gm62elkm1uyQpvjL3PHG1nMGQg.roa
Signing time: Thu 28 Dec 2023 16:12:58 +0000
ROA not before: Thu 28 Dec 2023 16:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b1:33:4c:27:ac:5a:ff:fe:77:94:b7:0c:51:03:91:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 28 16:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e869bad9e9649b5bb2429be32f73c71b59cc1908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a2:5b:f3:63:5f:70:78:aa:3c:e7:f2:79:48:
91:81:8a:47:b0:f3:4d:f3:ce:4c:0a:08:7f:a5:c9:
77:29:05:f0:c1:9a:60:e6:09:30:aa:c4:29:b6:a7:
7b:65:31:75:ff:2a:cc:7f:82:12:12:6a:0e:b6:6e:
2f:1c:20:7c:af:15:43:1c:db:37:42:cd:5b:1d:10:
08:3b:57:0e:3a:c7:ea:8a:2e:a8:b3:4b:13:f7:c6:
aa:54:b5:3f:70:45:86:49:36:a8:ae:20:4e:14:e1:
07:f6:f1:45:8d:7b:3d:f2:0f:aa:76:7c:2c:e6:4c:
49:b2:48:3f:2a:64:de:4b:2f:f9:c8:76:d0:9f:94:
2e:38:10:b4:b8:45:2e:71:44:1f:fd:ba:b9:5d:12:
2b:6a:6c:ba:ea:1c:9b:69:9c:b2:26:34:40:0b:d6:
ac:ce:bc:0a:b7:1d:a8:1b:48:df:2b:d4:18:75:4c:
94:06:5b:33:ed:36:75:36:a6:a5:f4:4f:34:e5:6c:
ff:9d:b2:b0:3f:9c:75:3c:53:bb:c4:0f:ed:5a:88:
f8:3b:26:49:20:ab:8d:22:b7:65:52:43:38:2f:e9:
fb:6b:77:f7:c5:a7:fe:42:4e:5f:da:28:56:21:e1:
3c:57:03:7e:97:58:1a:e7:c1:86:77:e2:19:5e:d4:
54:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:69:BA:D9:E9:64:9B:5B:B2:42:9B:E3:2F:73:C7:1B:59:CC:19:08
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/6Gm62elkm1uyQpvjL3PHG1nMGQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9e:13:24:74:6f:2c:70:5d:42:92:46:40:52:b0:66:6d:41:c3:
23:40:ef:c0:5b:b6:24:55:a1:6d:94:a5:c1:7c:cc:aa:17:65:
bb:f7:6e:f0:da:ea:6d:43:25:e4:09:cd:27:06:37:0a:57:d1:
69:9d:aa:85:01:aa:d2:05:32:7f:47:e8:ec:d9:7e:36:a7:aa:
37:44:8d:2d:89:d6:03:f4:a7:a7:5c:d3:7a:70:cb:62:0e:41:
d3:77:8a:ee:6b:2c:a2:fb:05:44:8f:ac:c9:15:d2:b1:d8:23:
f6:60:75:a1:7d:ab:2a:6b:d9:e4:ea:a8:1d:f0:b4:31:00:54:
72:5a:23:1f:02:07:de:de:19:31:f4:8c:77:e5:f0:28:98:8b:
93:83:46:da:51:2e:87:1b:d7:66:4e:9b:cd:f0:15:9a:e1:26:
6c:36:c1:71:29:3d:eb:62:f1:72:b6:f1:b8:00:0a:49:0d:91:
74:16:66:77:0c:38:06:d2:c6:0e:cd:3e:66:31:74:97:13:55:
e7:99:af:4c:fc:c7:9a:99:52:25:da:d3:e5:5b:43:8a:be:4d:
8d:2d:97:91:db:28:13:2b:e4:a7:82:fc:72:ad:7f:07:40:20:
fc:dd:f8:a7:84:82:fa:38:dc:e9:97:16:af:77:a2:0e:10:c7:
69:88:86:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 28 19:35:58 2023 by rpki-client on console.sobornost.net