Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/EdoCj5dlM3BAu21Knw1mk7NwXdc.roa
File: EdoCj5dlM3BAu21Knw1mk7NwXdc.roa (raw, json)
Hash identifier: TXiLrI73lzf+CmmjNgg2CvPDS19D0/GkU1qIIDSOYhU=
Subject key identifier: 11:DA:02:8F:97:65:33:70:40:BB:6D:4A:9F:0D:66:93:B3:70:5D:D7
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EDBA8F5893D0C9AC566AF06A12234EC7E
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/EdoCj5dlM3BAu21Knw1mk7NwXdc.roa
Signing time: Sun 14 Apr 2024 08:11:06 +0000
ROA not before: Sun 14 Apr 2024 08:11:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 Apr 2024 09:05:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:db:a8:f5:89:3d:0c:9a:c5:66:af:06:a1:22:34:ec:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 14 08:11:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11da028f9765337040bb6d4a9f0d6693b3705dd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ae:5e:92:f0:93:77:c4:54:93:9b:97:9f:4b:
83:5f:65:df:00:e4:ec:25:43:67:7e:0b:c1:64:11:
48:84:39:51:e8:bf:be:96:b4:5c:b7:17:33:86:f8:
c0:8e:ac:10:8c:8c:03:14:0a:17:b8:70:bb:fa:02:
e8:9b:ce:2a:77:1c:f4:20:88:e1:99:de:9f:8c:78:
ed:6c:96:fb:dd:d6:bb:31:5a:c7:bb:5d:c3:33:ed:
8a:3e:cb:d1:70:75:e7:a8:39:13:ec:a3:7e:28:71:
c4:7f:6e:e4:c5:b2:7b:2f:7f:31:bb:a9:ce:5c:1f:
aa:b3:e6:d4:b2:27:5d:f0:55:bf:53:0f:b4:3a:bb:
a2:10:4c:3f:27:3c:78:cf:ac:2f:7f:68:91:d2:7e:
0c:1d:cf:dc:47:06:e5:5a:c3:76:b6:f8:3c:71:91:
45:88:8a:26:db:8b:49:b1:ee:d4:b3:70:49:ff:23:
73:22:78:17:47:ab:d0:31:ef:cb:74:a7:7c:80:ee:
32:90:cd:9d:20:7e:4c:7d:cb:21:84:4b:42:b0:1e:
87:b0:e7:5d:d2:d3:36:eb:cd:f5:e8:8b:0f:27:ca:
7a:a5:48:4a:46:2b:42:61:4d:62:fa:61:6f:df:a5:
b3:bb:7c:dd:bf:71:b0:e8:4e:d5:87:a9:a8:b6:57:
61:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:DA:02:8F:97:65:33:70:40:BB:6D:4A:9F:0D:66:93:B3:70:5D:D7
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/EdoCj5dlM3BAu21Knw1mk7NwXdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5c:04:f0:a1:c5:49:ac:c7:42:82:44:a0:1d:1d:fc:90:1d:ed:
77:10:7f:a0:4c:a2:fb:aa:a1:db:cc:7b:22:e0:ab:89:68:e2:
81:83:8e:5d:41:73:af:57:0a:ad:a6:05:ae:a6:39:a0:19:ad:
a0:14:19:cd:17:2f:0a:83:90:f4:86:ba:fe:9f:9a:f9:31:f1:
27:44:32:cd:50:2c:76:7f:45:f9:7d:48:ee:f5:4e:f2:43:8b:
d1:b3:9a:6a:49:fa:e8:74:8f:01:33:a5:0e:fe:a8:56:a6:81:
05:a9:34:03:4c:5e:1c:99:f6:7f:43:fc:24:c6:83:63:f0:3c:
3e:86:de:6d:aa:d4:3f:cb:9d:cd:2e:d4:fd:d0:17:38:29:dd:
a9:38:4f:39:ca:ee:1d:21:50:3e:e6:5f:ce:f0:4b:d4:bc:1e:
dc:c8:34:4e:dd:61:8f:cb:30:53:46:1d:ea:39:b9:9f:80:c7:
7b:17:97:3c:65:0b:c8:ca:67:a3:2f:c4:b5:8d:91:64:9f:1a:
25:ad:65:f1:1f:f8:ae:b8:4b:5b:c9:82:f8:8a:20:23:3f:be:
d8:08:78:3c:2e:c1:87:ab:28:2d:67:26:a7:0d:50:ff:f3:73:
fc:3b:f6:3b:e3:62:40:29:26:8b:2c:92:96:b8:5d:47:d4:5a:
d7:9a:08:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 14 14:43:39 2024 by rpki-client on console.sobornost.net