Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/AkocVm2J3BB8LmTYfm2vL6Q_ZTg.roa
File: AkocVm2J3BB8LmTYfm2vL6Q_ZTg.roa (raw, json)
Hash identifier: zmCbDIDs5HZMp+K4e1hGUgEJrVs8qhiQZk4MOlYk7CE=
Subject key identifier: 02:4A:1C:56:6D:89:DC:10:7C:2E:64:D8:7E:6D:AF:2F:A4:3F:65:38
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CA8D40C4AEA6759D598BF6AA7888A938E
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/AkocVm2J3BB8LmTYfm2vL6Q_ZTg.roa
Signing time: Wed 27 Dec 2023 01:11:58 +0000
ROA not before: Wed 27 Dec 2023 01:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a8:d4:0c:4a:ea:67:59:d5:98:bf:6a:a7:88:8a:93:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 27 01:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=024a1c566d89dc107c2e64d87e6daf2fa43f6538
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1c:d6:f4:5b:1f:33:bb:38:7c:17:8e:30:56:
bf:9f:cd:d1:8f:c8:42:40:b3:3f:0c:bf:6e:35:f5:
34:a1:56:80:54:17:22:9a:ec:69:21:81:c5:6e:71:
3e:de:49:de:ff:e6:ae:9a:3c:8a:63:23:cd:5f:13:
47:c9:b2:f9:e1:eb:53:1e:c2:49:9c:9c:fc:36:9e:
09:55:d5:fe:aa:e7:94:92:62:7f:02:42:15:ff:ef:
12:20:47:9e:34:e0:7d:ab:64:40:43:56:4f:db:c6:
0c:cd:07:d8:cf:47:ba:30:dc:88:83:42:b2:5c:d3:
27:ab:23:69:c8:ee:6b:16:fe:16:a2:1e:77:fd:d7:
fd:98:aa:bf:ea:d5:c0:6f:1d:29:7c:b9:08:ce:33:
3d:11:7a:a4:48:16:56:7c:03:6f:f2:d5:ec:ea:20:
1b:49:84:8d:5f:09:d0:aa:f6:e3:79:94:36:fc:1a:
9b:55:5f:5f:1d:78:3b:54:f1:7a:e3:e0:0a:4a:17:
98:39:3b:12:5d:ee:6a:a0:f2:16:cb:cf:b5:6b:ee:
c7:49:f1:0b:9a:64:97:88:b6:65:48:c3:7e:ec:13:
8f:9a:6f:d8:1f:d1:d6:8e:1a:a4:e2:b5:10:e3:89:
83:bf:22:bb:e7:33:14:6b:ae:cf:b5:04:54:45:4d:
4d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:4A:1C:56:6D:89:DC:10:7C:2E:64:D8:7E:6D:AF:2F:A4:3F:65:38
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/AkocVm2J3BB8LmTYfm2vL6Q_ZTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7d:d0:cb:8b:5a:ec:00:85:15:f3:3d:a3:ee:83:7b:8f:ee:ce:
9b:11:aa:d0:e8:97:50:92:59:18:f3:dd:95:76:56:ca:da:78:
fa:fc:dd:63:0f:24:d7:f4:c5:bf:95:d9:d0:44:3a:06:30:a5:
47:51:49:ac:c6:57:cd:29:49:61:c7:d8:b1:99:aa:f9:bf:e5:
dc:55:76:02:7d:1f:1b:f6:c6:65:b5:54:54:65:11:84:34:bc:
3e:e7:f0:e2:26:78:d7:90:f2:92:9e:18:57:b2:58:ce:f3:9c:
d8:b6:ba:f8:4d:94:4c:ad:71:c1:3f:27:2c:95:af:7a:1b:9b:
1b:96:88:2e:25:28:3f:bb:7b:24:17:82:7f:95:78:8f:29:4c:
7d:34:3b:21:41:d0:13:c8:bf:64:80:17:80:a4:86:43:12:2f:
f7:a3:6c:28:51:e4:49:e0:04:24:9a:46:2d:93:95:4b:3a:26:
c4:4c:fe:81:be:64:1d:18:58:0d:4c:38:1d:ba:8f:cd:98:47:
c0:f5:ba:6d:0e:56:fb:6e:4f:ff:66:97:b9:8c:49:04:5d:40:
d5:ee:51:ad:73:41:4e:33:19:86:0d:01:ec:75:2c:c0:5e:e6:
dd:68:be:34:8f:2f:46:63:51:cc:e9:36:35:41:99:95:20:4d:
0d:e2:cf:d0
-----BEGIN CERTIFICATE-----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Generated at Wed Dec 27 03:06:09 2023 by rpki-client on console.sobornost.net