Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/GsVA7WLZzAa2oanWirrAo1g4oUc.roa
File: GsVA7WLZzAa2oanWirrAo1g4oUc.roa (raw, json)
Hash identifier: jJ8GLa1i96qNa2MrzLylq0HXUdjb4k4ikR0dBOdd16Y=
Subject key identifier: 1A:C5:40:ED:62:D9:CC:06:B6:A1:A9:D6:8A:BA:C0:A3:58:38:A1:47
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E7B187916849C754F17F34B093584D5CE
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/GsVA7WLZzAa2oanWirrAo1g4oUc.roa
Signing time: Tue 26 Mar 2024 14:09:45 +0000
ROA not before: Tue 26 Mar 2024 14:09:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
Validation: Failed, certificate revoked on Tue 26 Mar 2024 15:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7b:18:79:16:84:9c:75:4f:17:f3:4b:09:35:84:d5:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 26 14:09:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ac540ed62d9cc06b6a1a9d68abac0a35838a147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0a:a1:dd:31:e8:fb:0c:3c:a2:f8:b7:ed:75:
34:d6:5f:ab:ae:c7:be:90:bc:86:4d:c0:57:0d:92:
f5:6d:01:a4:f6:ce:c6:c9:19:a1:f8:47:da:77:97:
3a:87:1c:aa:06:f6:aa:4f:81:b9:13:bd:49:54:92:
fc:af:86:30:3d:14:7a:70:07:23:6b:8b:45:0e:63:
42:3a:20:ed:13:b1:f7:09:9f:df:9b:36:5a:42:6c:
b0:f6:4b:42:82:61:08:16:8e:bc:e0:3d:b2:5f:f3:
b2:2c:9f:64:fb:c0:81:d5:d9:bc:56:93:93:8e:88:
26:4b:22:49:c7:fd:74:66:ca:a5:45:7f:89:81:2f:
23:5a:83:e6:69:b5:59:0e:d2:0c:90:12:f7:20:c7:
87:61:5e:ad:b9:04:d0:78:9b:43:fc:5c:85:bb:e6:
ed:19:2f:c7:69:82:b4:eb:c2:f9:ad:77:da:7a:2e:
52:89:0e:54:4a:c4:1a:f7:61:a7:7b:19:67:f2:22:
f2:f9:4c:f2:2f:0d:15:5c:57:37:35:0e:00:2f:ec:
85:d1:6c:d1:2e:69:f6:8d:9c:f9:3f:07:1b:1a:21:
06:77:af:ec:7d:8a:c0:71:ec:fa:df:a9:70:c8:4e:
ec:c4:46:66:69:49:3d:30:aa:4d:60:90:7b:f3:9d:
ff:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:C5:40:ED:62:D9:CC:06:B6:A1:A9:D6:8A:BA:C0:A3:58:38:A1:47
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/GsVA7WLZzAa2oanWirrAo1g4oUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
79:e0:d1:ce:f5:62:e2:e9:8f:58:ea:6d:8b:77:12:ac:cf:8c:
80:03:5a:f6:dc:e9:66:ed:4d:8f:19:0f:9f:1e:8b:a3:2e:e1:
08:a2:bd:41:67:3a:b5:9c:17:92:1b:66:21:47:f9:9e:19:31:
a5:04:f6:50:37:87:18:16:be:fd:de:8e:c3:24:df:1f:c3:43:
8f:e2:b2:7b:c3:d2:ff:7e:98:5a:2f:31:7f:89:d9:27:bf:62:
ca:10:f1:82:c5:45:35:c3:9b:e2:51:ec:48:4d:35:8d:f5:04:
a9:c7:34:76:ea:d0:dd:ba:bd:e5:9e:70:5b:e5:d8:77:11:87:
4c:03:4c:39:b8:c3:2e:e1:e6:aa:54:d3:32:54:b6:d1:91:04:
6c:3d:97:6b:6f:d7:9a:10:55:87:3c:19:79:7e:4d:2c:d7:12:
20:89:15:80:a5:7b:c1:5d:ef:fa:7f:92:25:ba:5f:85:58:bd:
0f:8d:c7:0a:a0:f2:55:9b:24:69:cc:8f:21:fe:e0:09:95:72:
a4:a0:4b:7b:9b:ba:0a:a8:df:6e:19:33:f5:20:16:e5:79:d0:
47:e6:2f:8b:26:4a:e9:aa:16:a3:38:6b:59:2c:bb:55:aa:fc:
8e:a7:5f:fb:97:0c:9d:ba:f1:06:de:d6:60:b0:e9:23:00:c0:
18:31:f6:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 21:16:50 2024 by rpki-client on console.sobornost.net