Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/9FKgtHF_6oOmDOxLjgJYtGgJPAI.roa
File: 9FKgtHF_6oOmDOxLjgJYtGgJPAI.roa (raw, json)
Hash identifier: uvY4KwsYkTd6oCCihIXdAEU+HisiuhRJQ3F0V6+uPc4=
Subject key identifier: F4:52:A0:B4:71:7F:EA:83:A6:0C:EC:4B:8E:02:58:B4:68:09:3C:02
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CA7F93C94705AFEF613A8F007E5B5F924
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/9FKgtHF_6oOmDOxLjgJYtGgJPAI.roa
Signing time: Tue 26 Dec 2023 21:12:58 +0000
ROA not before: Tue 26 Dec 2023 21:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a7:f9:3c:94:70:5a:fe:f6:13:a8:f0:07:e5:b5:f9:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 26 21:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f452a0b4717fea83a60cec4b8e0258b468093c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3b:2e:17:28:3e:b1:d5:cd:c6:6b:3f:89:bf:
f0:15:85:2c:2e:2b:e7:34:00:20:0c:10:01:bf:e3:
08:d3:2e:e8:0c:54:ae:e8:e5:48:83:3d:05:fc:29:
9b:87:7c:00:23:b8:07:1b:50:e8:a6:72:af:d1:50:
6f:cc:04:55:2e:90:60:5f:c3:f4:ac:52:ef:92:17:
45:09:29:3d:09:cd:c6:77:1f:58:57:bb:0b:63:ae:
f4:6c:05:5b:71:82:e1:2e:9d:b5:8e:74:12:bb:22:
53:6a:a2:c2:cb:99:7e:cb:bf:47:49:3f:d8:29:84:
22:7b:64:8e:e6:1e:9a:64:10:9c:6f:5e:e0:0c:58:
99:53:6e:9a:1c:3f:15:15:be:f0:f8:b9:0a:52:3b:
67:fe:a0:a3:48:3d:02:ef:a6:e2:6d:b6:2c:9b:44:
67:be:b5:c7:6f:35:0d:f9:36:4d:b2:e3:e1:7f:54:
cd:b9:0f:85:49:52:e1:d0:7b:c5:bd:f1:5e:79:91:
e9:d9:d6:33:89:a2:12:45:b4:05:fe:ad:c4:60:8f:
8c:61:60:a6:64:c9:8f:a6:f8:6a:28:b4:96:ab:b3:
c3:bf:64:be:8e:4d:69:a2:96:83:17:cb:b5:e1:7d:
a2:34:8e:5c:ca:4a:a2:fc:73:0d:15:a0:00:45:27:
c4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:52:A0:B4:71:7F:EA:83:A6:0C:EC:4B:8E:02:58:B4:68:09:3C:02
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/9FKgtHF_6oOmDOxLjgJYtGgJPAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1a:a1:ab:fa:86:85:f8:9d:bc:36:6d:cd:a2:ef:de:d9:dd:dd:
f1:63:0e:75:cd:2a:1e:6a:34:25:71:4b:da:af:92:49:fa:9c:
b0:8a:e3:c0:3e:cc:f2:bc:3c:07:98:9b:28:ca:cd:a2:c5:fc:
52:9c:ef:31:ea:47:f2:57:7d:08:4e:78:71:dc:0b:b4:ef:a9:
26:b9:32:e0:5d:3d:91:56:08:bf:1b:f5:68:d9:99:ea:38:f6:
6e:7a:dc:30:da:1b:3d:38:d6:cb:4a:6f:e3:ab:f9:5c:f1:94:
cb:9c:d1:c1:ad:53:d3:cb:f7:5f:e7:3a:3a:55:63:cf:80:82:
b3:25:c4:ac:4a:68:d2:8a:6c:ca:24:37:8c:24:dd:76:87:f8:
77:9f:f5:69:2d:0e:76:aa:b6:a9:41:25:d0:f4:f0:2e:8c:0b:
d3:09:e6:13:44:65:9b:40:09:00:49:7e:be:a2:e8:4e:40:43:
42:64:f6:93:50:ee:91:4c:42:c3:65:76:eb:87:ec:f3:f6:60:
4c:40:66:e4:dc:5e:40:76:da:ae:a1:9e:db:78:4a:d0:8d:8a:
f0:d0:74:e5:59:b8:b9:bb:3e:48:48:35:c8:9a:d1:d5:09:96:
86:4b:ad:f7:17:09:61:c0:ab:61:22:7f:ea:6b:4d:d9:3a:51:
6a:ef:06:84
-----BEGIN CERTIFICATE-----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Generated at Tue Dec 26 22:56:16 2023 by rpki-client on console.sobornost.net