Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/AmACxJb252lFea5Iiao-kNNQkfY.roa
File: AmACxJb252lFea5Iiao-kNNQkfY.roa (raw, json)
Hash identifier: fZ/V7Kf8nqSSAGNZK+uztIHr3XyX8A6G2YNSZgwftxA=
Subject key identifier: 02:60:02:C4:96:F6:E7:69:45:79:AE:48:89:AA:3E:90:D3:50:91:F6
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CD68A2A5EAE18715AA24F39E1C5E40B86
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/AmACxJb252lFea5Iiao-kNNQkfY.roa
Signing time: Thu 04 Jan 2024 22:13:48 +0000
ROA not before: Thu 04 Jan 2024 22:13:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d6:8a:2a:5e:ae:18:71:5a:a2:4f:39:e1:c5:e4:0b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 4 22:13:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=026002c496f6e7694579ae4889aa3e90d35091f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:26:7b:f7:b7:5f:6e:a2:77:3a:dc:2e:77:86:
a0:10:34:32:83:65:b8:f5:c2:a6:cd:9e:4c:00:64:
19:4f:b7:31:30:ef:3b:f7:8d:76:f1:b5:79:0b:d2:
af:6a:56:fe:8c:dc:fe:92:81:3f:3a:4f:15:3c:17:
97:cc:b5:2d:7d:53:29:12:b0:a4:76:38:35:8d:eb:
c2:cf:cb:f2:55:b8:56:43:24:80:d3:47:7d:f7:60:
2a:02:15:09:89:1b:9f:76:3e:e4:3c:bd:91:2c:9b:
06:9e:d3:04:1a:04:bd:79:9d:7c:88:6e:0a:a5:8a:
ba:48:28:42:34:32:5f:94:5f:50:d6:50:e5:89:c1:
44:81:43:6f:f0:c4:7b:64:68:67:bc:96:bf:9e:c1:
b4:9e:4a:37:00:1a:5e:4f:d4:bb:7c:ac:de:23:5f:
ab:f7:a2:f3:09:19:e7:76:ec:96:74:50:4b:8a:af:
c9:43:63:3f:2a:70:45:97:07:32:e8:c1:1a:62:50:
39:b1:c1:b6:4e:2c:07:4a:5a:bb:cb:b4:08:99:2d:
bb:92:eb:6a:9b:e3:f4:0e:41:3d:a4:42:0a:ed:e8:
e7:6a:f6:ca:f4:e4:2b:30:25:d3:8a:45:a0:8d:8a:
3e:d0:9e:1f:1f:79:7c:47:16:f9:14:07:cc:9c:f6:
27:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:60:02:C4:96:F6:E7:69:45:79:AE:48:89:AA:3E:90:D3:50:91:F6
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/AmACxJb252lFea5Iiao-kNNQkfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6e:16:a5:ab:82:86:39:ef:87:75:22:d1:f2:8e:4d:a8:5a:d2:
9b:2f:21:e2:74:9e:14:cf:23:e6:df:24:8c:aa:5c:a8:54:21:
52:39:f9:34:97:ea:91:5b:8f:b2:e1:22:c9:af:6b:47:b6:51:
70:d6:64:85:d2:61:be:dc:ca:f6:8f:19:3e:9a:63:89:fd:81:
52:18:a7:cc:7e:78:56:af:76:09:1f:b5:29:7c:38:a9:90:ea:
b3:15:be:88:4a:85:c2:1a:a3:3f:f4:f8:28:5f:b3:38:8c:67:
6b:67:d8:51:79:64:59:e0:7b:7b:c2:be:0a:0a:d9:9f:36:33:
28:52:08:1a:f8:d8:f6:08:d8:09:79:dd:3c:d8:ab:ee:aa:f6:
a6:fe:fa:d9:1e:d7:45:f2:5a:35:81:66:f5:37:a6:30:27:c2:
48:27:6d:81:6e:34:76:5e:7c:7d:1a:a6:5c:f5:43:8e:9d:52:
18:bd:e8:e7:17:47:df:5e:d6:21:72:85:0a:f8:cc:6b:ab:0d:
de:88:cf:c2:52:48:1e:46:67:71:7b:2b:2a:09:cc:18:3e:e7:
a3:65:e5:c3:67:54:18:7d:ec:bb:ea:1c:81:30:d9:4a:f4:08:
a5:c8:13:6b:40:f3:73:a6:a7:b3:e8:ff:15:ce:a0:b7:d3:12:
db:e7:f0:55
-----BEGIN CERTIFICATE-----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Generated at Fri Jan 5 02:19:45 2024 by rpki-client on console.sobornost.net